Chapter 1: Packet Forwarding

Question 1

How does a switch populate the MAC address table?

Answer 1

Source MAC

Question 2

A switch receives a packet with a destination MAC that is not in the switch’s MAC table. What does the switch do with the packet?

Answer 2

Forwards the packet out every port except the port it was received on.

Question 3

_______ create multiple broadcast domains on the same switch.

Answer 3

VLANs

Question 4

How many bits does the the 802.1Q header add to the frame?

Answer 4

32 bits (4 bytes)

Question 5

What 4 fields are part of the 802.1Q header?

Answer 5

Tag protocol identifier (TPID)
Priority code point (PCP)
Drop eligible indicator (DEI)
VLAN identifier (VLAN ID)

Question 6

16-bit field set to 0x8100.
Identifies packet as an 802.1Q packet.

A. VLAN Identifier (VLAN ID)
B. Priority Code Point (PCP)
C. Drop Eligible Indicator (DEI)
D. Tag Protocol Identifier (TPID)

Answer 6

D. Tag Protocol Identifier (TPID)

Question 7

3-bit field.
Indicates a CoS as part of L2 QoS between switches.

A. VLAN Identifier (VLAN ID)
B. Priority Code Point (PCP)
C. Drop Eligible Indicator (DEI)
D. Tag Protocol Identifier (TPID)

Answer 7

B. Priority Code Point (PCP)

Question 8

1-bit field that indicates if the packet can be dropped when bandwidth congestion occurs.

A. VLAN Identifier (VLAN ID)
B. Priority Code Point (PCP)
C. Drop Eligible Indicator (DEI)
D. Tag Protocol Identifier (TPID)

Answer 8

C. Drop Eligible Indicator (DEI)

Question 9

12-bit field. IDs VLAN associated with a network packet.

A. VLAN Identifier (VLAN ID)
B. Priority Code Point (PCP)
C. Drop Eligible Indicator (DEI)
D. Tag Protocol Identifier (TPID)

Answer 9

A. VLAN Identifier (VLAN ID)

Question 10

The VLAN Identifier has ____ bits.

How many VLANs does this provide?

Answer 10

12 bits
4094 VLANs  (2^12)

Question 11

What are the normal range VLANs?

Answer 11

2-1001

Can be added, deleted, modified.

Question 12

What is the default VLAN?

Answer 12

VLAN 1

Question 13

VLAN 0 is reserved for ___ ______?

Answer 13

802.1P traffic

Question 14

Can VLAN 0 be modified or deleted?

Answer 14

No

Question 15

What VLANs are reserved and cannot be modified or deleted?

Answer 15

VLAN 1002-1005

Question 16

What VLANs are in the extended range?

Answer 16

VLAN 1006-4094

Can be added, deleted, modified.

Question 17

At what point is the VLAN actually created?

Answer 17

When the CLI has been moved back to global config or a different VLAN identifier.

Question 18

How many VLANs is an access port assigned to?

Answer 18

1

Question 19

What type of port adds or removes the 802.1Q header to the frame?

Answer 19

Trunk

Question 20

By default, what kind of port are switch ports?

Answer 20

Access

Question 21

What kind of port carries multiple VLANs?

Answer 21

Trunk

Question 22

When are trunk ports used?

Answer 22

When multiple VLANs need connectivity between a switch and another switch/router/firewall.

Question 23

What happens when a frame is received on a trunk port?

Answer 23

1. Headers are examined.
2. Traffic is associated to the proper VLAN.
3. 802.1Q headers are removed.
4. Traffic is forwarded to the next port, based on MAC address for that VLAN.

Question 24

Traffic sent or received on a trunk port without the VLAN tag is associated to what VLAN?

Answer 24

Native VLAN

Question 25

What info does ‘show interface trunk’ display?

Answer 25

Trunk ports;
Port status;
Association to etherchannel;
Native vlan;
List of vlans allowed on port;
Vlans in forwarding state on switch.

Question 26

What VLAN does switch control plane traffic use?

Answer 26

VLAN 1

Question 27

Where is the MAC address table stored?

Answer 27

CAM (Content Addressable Memory)

Question 28

What maps L3 addresses to L2 addresses?

Answer 28

ARP

Question 29

What does the ARP table contain?

Answer 29

MAC addresses for devices the host has communicated with AND are on the same IP network segment.

MAC address of next-hop interface.

Question 30

What device responds to an ARP request?

Answer 30

The device with the matching IP address.

Question 31

What kind of response is the ARP reply?

Answer 31

Unicast

Question 32

A computer on subnet A is sent to a computer on subnet B. What 2 fields in the packer are rewritten when the packet is sent through the router?

Answer 32

Source MAC and Destination MAC.

Question 33

What command is used to associate a VLAN with a router subinterface?

Answer 33

encapsulation dot1q

Question 34

How is a SVI created?

Answer 34

(config)#interface vlan [#]

Question 35

How is a switch port configured to operate as an L3 port?

Answer 35

no switchport

Question 36

What is in charge of switching in Process Switching?

Answer 36

CPU

Question 37

What type of packets are process switched?

Answer 37

Packets that cannot be handled by CEF.

1. Packet sourced or destined to router (control traffic or routing protocols).
2. Packets too complex for hardware to handle (packets with IP options).
3. Packets that require extra info that is unknown (ARP).

Question 38

What does the RIB contain?

Answer 38

Routes learned from static routes, directly connected routes, and dynamic routing protocols.

Question 39

What is the default switching mechanism on most Cisco devices?

Answer 39

CEF

Question 40

What happens to a packet when it arrives on a router with a TTL of 0?

Answer 40

The packet is discarded.

Question 41

What happens when a packet is punted to the CPU for processing?

Answer 41

1. The ip_input process consults the routing table and ARP table to obtain the next-hop
   router’s IP address, outgoing interface, and MAC address.
2. DMAC of the packet is overwritten with next-hop router’s MAC. SMAC is is overwritten with the egress L3 interface MAC.
3. TTL decremented.
4. IP header checksum recalculated.
5. Packet sent to next-hop.

Question 42

What are the types of CEF adjacencies?

Answer 42

Glean
Null
Drop
Discard
Punt

Question 43

Glean Adjacency

Answer 43

When a router is directly connected to a segment shared by multiple hosts, the FIB table on the router maintains a prefix for the subnet, rather than an individual prefix for each host.

Question 44

Null Adjacency

Answer 44

Packets destined for a Null0 interface are dropped.

Question 45

Drop Adjacency

Answer 45

Used to switch packets that cannot be forwarded normally.

Ex. encapsulation error, no valid route, unsupported protocol.

Question 46

Discard Adjacency

Answer 46

Used when packets must be discarded because of an access-list or other policy decision.

Question 47

Punt Adjacency

Answer 47

Packets are sent to the L3 forwarding engine for processing.

Question 48

Define ARP throttling

Answer 48

When FIB entry is in glean state, additional packets to that host are dropped so input queues do not fill.

Question 49

Examples of packets that get punted to the CPU for processing:

Answer 49

ARP requests and replies.
Packets requiring response from router.
IP broadcasts that will be relayed as unicast.
Routing protocol updates.
CDP packets.
Packets needing encryption.
Packets triggering NAT.

Question 50

What does TCAM allow for?

Answer 50

Matching and evaluating a packet on more than one field.

Inbound/outbound ACLs, QoS, L2/L3 forwarding decisions occur simultaneously.

Question 51

A TCAM search provides what results?

Answer 51

0=True
1=False
X=Do not care

Question 52

How are TCAM entries stored?

Answer 52

VMR format

Value, Mask, Result

Question 53

Cisco IOS software has 2 components that are part of TCAM operation. What are they and what do they do?

Answer 53

Feature Manager (FM): Merges ACEs into entries in the TCAM.

Switching Database Manager (SDM): Configures TCAM partitions to provide enough space for switching functions.

Question 54

Value in VMR format

Answer 54

134-bits.

Indicates the fields that should be searched.

Ex. IP address and protocol fields

Question 55

Mask in VMR format

Answer 55

134-bits.

Indicates the field that is of interest and that should be queried.

Question 56

Result in VMR format

Answer 56

Indicates the action that should be taken with a match on the value and mask.

Question 57

What does Hardware CEF use to make forwarding decisions?

Answer 57

TCAM

Question 58

What does Software CEF use to make forwarding decisions?

Answer 58

FIB

Adjacency table

Question 59

What is centralized forwarding?

Answer 59

A route processor (RP) engine is equipped with a forwarding engine so that it can make all the packet switching decisions.

Question 60

Centralized forwarding steps

Answer 60

1. Packet received on ingress line card.
2. Packet transmitted to the forwarding engine on the RP.
3. Forwarding engine exams the packet’s headers and determines the packet will be sent out a port on the egress line card.
4. Packet is sent to egress line card.

Question 61

CEF is distributed across each line card. A central L3 engine generates the FIB, which is then stored on each line card.

Answer 61

Distributed CEF (dCEF)

Question 62

A type of CEF in which a portion of the FIB is downloaded to each line card, resulting in a FIB cache containing entries likely to be used again.

Answer 62

Accelerated forwarding (aCEF)

Question 63

What is stateful switchover? (SSO)

Answer 63

A redundancy feature that allows a Cisco router with two RPs to synchronize router configuration and control plane state information.

Question 64

Define checkpointing

Answer 64

The process of mirroring information between RPs.