Chapter 1

Question 1

What is the main objective of the Basic Device Configuration module?

Answer 1

Configure devices using security best practices.

Question 2

What are the five steps in the switch boot sequence after powering on?

Answer 2

• Load POST program stored in ROM
• Load boot loader software
• Perform low-level CPU initialization
• Initialize the flash file system
• Load default IOS operating system

Question 3

What does the System LED (SYST) indicate on a switch?

Answer 3

Shows whether the system is receiving power and functioning properly.

Question 4

What does the Port Status LED (STAT) indicate when it is green?

Answer 4

Indicates port status mode is selected.

Question 5

What is the purpose of configuring a switch with an IP address and a subnet mask?

Answer 5

To prepare the switch for remote management access.

Question 6

What is the recommended VLAN for management access on a switch?

Answer 6

Use a VLAN other than VLAN 1 for the management VLAN.

Question 7

Fill in the blank: The command to enter global configuration mode is _______.

Answer 7

configure terminal

Question 8

What command is used to verify the status of both physical and virtual interfaces?

Answer 8

show ip interface brief and show ipv6 interface brief.

Question 9

What is the definition of full-duplex communication?

Answer 9

Allows both ends of a connection to transmit and receive data simultaneously.

Question 10

What is the default setting for duplex and speed on Cisco Catalyst switches?

Answer 10

Auto.

Question 11

What are the IOS commands to configure the duplex and speed for a switch interface?

Answer 11

• duplex full
• speed 100

Question 12

True or False: Auto-MDIX allows either straight-through or crossover cables to be used.

Answer 12

True.

Question 13

What does the command ‘show interfaces’ display?

Answer 13

Interface status and configuration.

Question 14

What does it mean if the output of ‘show interfaces’ shows ‘FastEthernet0/18 is up’?

Answer 14

The hardware layer is operational.

Question 15

What is the purpose of the Telnet protocol?

Answer 15

To provide remote access to devices using unsecure plaintext transmission.

Question 16

What is the TCP port used by Telnet?

Answer 16

23.

Question 17

What kind of communication does half-duplex mode represent?

Answer 17

Unidirectional communication.

Question 18

What is the effect of mismatched duplex settings on switch ports?

Answer 18

Can cause connectivity issues.

Question 19

What is the command to save the running configuration to startup configuration?

Answer 19

copy running-config startup-config.

Question 20

Fill in the blank: For IPv6, a switch does not require an IPv6 default gateway because it receives its default gateway information from _______.

Answer 20

a router advertisement (RA) message.

Question 21

What command is used to examine the auto-MDIX setting for a specific interface?

Answer 21

show controllers ethernet-controller.

Question 22

What does the Port Duplex LED (DUPLX) indicate when it is green?

Answer 22

Indicates port duplex mode is selected.

Question 23

What should be done if the line protocol is down but the interface is up?

Answer 23

Check for encapsulation type mismatch or hardware problems.

Question 24

What is the significance of the command ‘show mac-address-table’?

Answer 24

Displays the MAC address table.

Question 25

What TCP port does Telnet use?

Answer 25

TCP port 23 ## Footnote Telnet operates over this port for unsecure plaintext transmission.

Question 26

What is a major security issue with Telnet?

Answer 26

Unsecure plaintext transmission of login credentials and data ## Footnote This makes it vulnerable to packet monitoring by threat actors.

Question 27

What TCP port does SSH use?

Answer 27

TCP port 22 ## Footnote SSH is a secure protocol designed to replace Telnet.

Question 28

What does SSH provide for remote connections?

Answer 28

Strong encryption for authentication and transmitted data ## Footnote This ensures that usernames and passwords are encrypted.

Question 29

What command is used to verify SSH support on a switch?

Answer 29

show ip ssh ## Footnote This command checks if the switch supports SSH.

Question 30

What must be included in the IOS filename to support SSH?

Answer 30

The combination 'k9' ## Footnote This indicates the IOS includes cryptographic features.

Question 31

What is the first step to configure SSH on a switch?

Answer 31

Verify SSH support using the show ip ssh command ## Footnote If the command is unrecognized, the IOS does not support SSH.

Question 32

What command is used to generate RSA key pairs for SSH?

Answer 32

crypto key generate rsa ## Footnote This command enables the SSH server on the switch.

Question 33

Fill in the blank: To delete the RSA key pair, use the _______ command.

Answer 33

crypto key zeroize rsa ## Footnote This action automatically disables the SSH server.

Question 34

What is required to configure user authentication for SSH?

Answer 34

Create a username and password pair ## Footnote Use the username username secret password command.

Question 35

What command enables the SSH protocol on the vty lines?

Answer 35

transport input ssh ## Footnote This command is used in line configuration mode.

Question 36

What version of SSH should be enabled for improved security?

Answer 36

SSH version 2 ## Footnote This can be enabled using the ip ssh version 2 command.

Question 37

What is the purpose of a loopback interface?

Answer 37

It is a logical interface used for testing and managing a Cisco IOS device ## Footnote It ensures that at least one interface will always be operational.

Question 38

What command is used to display a summary of all interfaces on a router?

Answer 38

show ip interface brief ## Footnote This command shows operational status and IP addresses of interfaces.

Question 39

What does a 'C' code signify in the routing table?

Answer 39

It indicates a directly connected network ## Footnote This is shown when the interface is configured with a global unicast address.

Question 40

What is required for an interface to be operational?

Answer 40

Configured with at least one IP address and activated using no shutdown ## Footnote Interfaces must also be connected to another device.

Question 41

What command reveals the detailed configuration of a specific interface?

Answer 41

show running-config interface interface-id ## Footnote This command displays the commands applied to the specified interface.

Question 42

True or False: A link-local address is automatically added to an IPv6 interface when a global unicast address is assigned.

Answer 42

True ## Footnote Link-local addresses are required for IPv6 interfaces.

Question 43

What command is used to verify the routes in the routing table?

Answer 43

show ip route ## Footnote This command displays the contents of the IPv4 routing table.

Question 44

List three items that need to be configured in a switch for remote management access.

Answer 44

* Unique hostname * Correct network connectivity settings * User authentication configuration ## Footnote These configurations are essential for secure remote access.

Question 45

What does the command copy running-config startup-config do?

Answer 45

Saves the current configuration to NVRAM ## Footnote This ensures that the configuration persists after a reboot.

Question 46

How does full-duplex communication increase bandwidth efficiency?

Answer 46

Allows simultaneous transmission and reception of data ## Footnote This effectively doubles the available bandwidth compared to half-duplex communication.

Question 47

What feature must be enabled for a switch interface to automatically detect the required cable connection type?

Answer 47

Auto-MDI/MDIX ## Footnote This feature allows automatic detection of the cable type.

Question 48

What is the difference between Telnet and SSH?

Answer 48

Telnet transmits data in plaintext while SSH encrypts data ## Footnote SSH provides a secure alternative to Telnet.