Chapter 12: Troubleshooting Ethernet LAN's Flashcards

1
Q

Which answers describe a good practice in applying good troubleshooting method- ologies? (Choose two answers.)

a. Perform problem isolation as fast as possible, including not slowing down to document your findings.
b. The last step in a good troubleshooting process should be to take action to resolve the root cause of the problem.
c. The last step in a good troubleshooting process should include monitoring the status to ensure that the problem is indeed solved and does not recur.
d. Each worker should know and use the escalation process when they cannot resolve a particular problem.

A

C,D

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

The output of the show interfaces status command on a 2960 switch shows interface Fa0/1 in a “disabled” state. Which of the following is true about interface Fa0/1? (Choose three answers.)
a. The interface is configured with the shutdown command.
b. The show interfaces fa0/1 command will list the interface with two status codes
of administratively down and line protocol down.
c. The show interfaces fa0/1 command will list the interface with two status codes of up and down.
d. The interface cannot currently be used to forward frames.
e. The interface can currently be used to forward frames.

A

A,B,D

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Switch SW1 uses its Gigabit 0/1 interface to connect to switch SW2’s Gigabit 0/2 interface. SW2’s Gi0/2 interface is configured with the speed 1000 and duplex full commands. SW1 uses all defaults for interface configuration commands on its Gi0/1 interface. Which of the following are true about the link after it comes up? (Choose two answers.)
a. The link works at 1000 Mbps (1 Gbps).
b. SW1 attempts to run at 10 Mbps because SW2 has effectively disabled IEEE
standard autonegotiation.
c. The link runs at 1 Gbps, but SW1 uses half-duplex and SW2 uses full duplex.
d. Both switches use full duplex.

A

A,D

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

In the following line taken from a show interfaces fa0/1 command, which of the fol- lowing are true about the interface? (Choose two answers.)
Full-duplex, 100Mbps, media type is 10/100BaseTX
a. The speed was definitely configured with the speed 100 interface subcommand.
b. The speed might have been configured with the speed 100 interface
subcommand.
c. The duplex was definitely configured with the duplex full interface subcommand.
d. The duplex might have been configured with the duplex full interface subcommand.

A

B,D

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Which of the following commands list the MAC address table entries for MAC addresses configured by port security? (Choose two answers.)

a. show mac address-table dynamic
b. show mac address-table
c. show mac address-table static
d. show mac address-table port-security

A

B,C

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

On a Cisco Catalyst switch, you issue a show mac address-table command. Which of the following answers list information you would likely see in most lines of output? (Choose two answers.)

a. A MAC address
b. An IP address
c. A VLAN ID
d. Type (broadcast, multicast, or unicast)

A

A,C

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

The show port-security interface f0/1 command lists a port status of secure-down. Which one of the following answers must be true about this interface at this time?

a. The show interface status command lists the interface status as connected.
b. The show interface status command lists the interface status as err-disabled.
c. The show port-security interface command could list a mode of shutdown or restrict, but not protect.
d. The show port-security interface command could list a violation counter value of 10.

A

B

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

The show interfaces g0/1 switchport command on SW1 shows the trunking status on a link connected to switch SW2. Based on the output, which of the following must be true on SW2’s port connected to this link?
SW1# show interfaces gigabit0/1 switchport
Name: Gi0/1
Switchport: Enabled Administrative Mode: trunk Operational Mode: trunk
a. The operational state per show interfaces switchport must be “trunk.”
b. The administrative state per show interfaces switchport must be “trunk.”
c. SW2 must use the switchport mode trunk configuration command on G0/2, or the link will not use trunking.
d. SW2 can use the switchport mode dynamic auto configuration command as one option to make the link use trunking.

A

D

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Three steps in applying troubleshooting methodologies:

A

Problem isolation and documentation

Resolve or escalate

Verify or monitor

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Four troubleshooting topics for the 105 exam.

A
  1. Examining interface status and statistics
  2. Analyzing where switches will forward frames
  3. Analyzing port security
  4. Analyzing VLANs and VLAN trunking
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Which two commands list the two-code status named the line status and protocol status?

A
  1. show interfaces

2. show interfaces description

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

The line status refers to which layer ?

A

Layer 1

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

The protocol status refers to which layer ?

A

Layer 2

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Which command lists the interface status with a one word description that corresponds to the line/protocol description of the show interfaces command?

A

Show interfaces status

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Name the line status,protocol status, and interface status associated with the following: The shutdown command is configured on the interface.

A

Line Status: Admin down

Protocol Status: down

Interface Status: disabled

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Name the line status,protocol status, and interface status associated with the following: No cable; bad cable; wrong cable pinouts; speed mismatch; neighboring device is (a) powered off, (b) shutdown, or (c) error disabled.

A

Line Status: down

Protocol Status: down

Interface Status: notconnect

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q

Name the line status,protocol status, and interface status associated with the following: Not expected on LAN switch physical interfaces.

A

Line Status: up

Protocol Status: down

Interface Status: notconnect

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q

Name the line status,protocol status, and interface status associated with the following: Port security has disabled the interface.

A

Line Status: down

Protocol Status: down(err-disabled)

Interface Status: err-disabled

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q

Name the line status,protocol status, and interface status associated with the following:The interface is working.

A

Line Status: up

Protocol Status: up

Interface Status: connected

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q

With both configured, a switch or router disables the IEEE-standard autonegotiation process on that interface:

A

Speed int command

Duplex int command

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q

commands list both the actual speed and duplex settings on an interface:

A

The show interfaces and show interfaces status commands

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q

Which command implies how the switch determined the speed and duplex settings?

A

Show int status

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q

When one device has disabled autonegotiation, and the other device uses autonegotiation, the device using autonegotia- tion chooses the default duplex setting based on the current speed. The defaults are as follows:

A

■ If the speed is not known through any means, use 10 Mbps, half duplex.
■ If the switch successfully senses the speed without IEEE autonegotiation, by just looking
at the signal on the cable:
■ If the speed is 10 or 100 Mbps, default to use half duplex.
■ If the speed is 1,000 Mbps, default to use full duplex.

24
Q

Finding a duplex mismatch can be much more difficult than finding a speed mismatch, because:

A

if the duplex settings do not match on the ends of an Ethernet segment, the switch interface will still be in a connected (up/up) state.

25
Q

To identify duplex mismatch problems:

A

check the duplex setting on each end of the link and watch for incrementing collision and late collision counters

26
Q

How can you check for late collisions on a interface configured to half duplex?

A

keep repeating the show interfaces command, and if you see the late collisions counter incrementing on a half- duplex interface, you might have a duplex mismatch problem.

27
Q

Summarize switch forwarding logic including the LAN switching features discussed in this book:

A

Step 1.
Process functions on the incoming interface, if the interface is currently in an up/up (connected) state, as follows:
A. If configured, apply port security logic to filter the frame as appropriate.
B. If the port is an access port,determine the interface’s accessVLAN.
C. If the port is a trunk, determine the frame’s tagged VLAN.

Step 2.
Make a forwarding decision. Look for the frame’s destination MAC address in the MAC address table, but only for entries in the VLAN identified in Step 1. If the destination MAC is…
A. Found (unicast), forward the frame out the only interface listed in the matched address table entry.
B. Not found(unicast),flood the frame out all other access ports(except the incoming port) in that same VLAN, plus out trunks that have not restricted the VLAN from that trunk (as discussed in Chapter 11, “Implementing Ethernet Virtual LANs,” as related to the show interfaces trunk command).
C. Broadcast, flood the frame, with the same rules as the previous step.

28
Q

Which commands will identify the interfaces that have port security enabled?

A
  1. Show running-config

2. Show port-security

29
Q

The general process to find port security issues is as follows:

A

Step 1
Identify all interfaces on which port security is enabled (show running-config or show port-security)
Step 2
Determine whether a security violation is currently occurring based in part on the violation mode of the interface’s port security configuration, as follows:
A. shutdown: The interface will be in an err-disabled state, and the port security port status will be secure-down.
B. restrict:The interface will be in a connected state,the port security port status will be secure-up, but the show port-security interface command will show an incrementing violations counter.
C. protect: The interface will be in a connected state, and the show port-security interface command will not show an incrementing violations counter.

Step 3
In all cases, compare the port security configuration to the diagram and to the Last Source Address field in the output of the show port-security interface command.

30
Q

To recover from an err-disabled state:

A

the interface must be shut down with the shutdown command, and then enabled with the no shutdown command

31
Q

Behavior of ports secured with Restrict and

Protect mode:

A

These modes still discard offending traffic, but the interface remains in a connected (up/ up) state, and in a port security state of secure-up. As a result, the port continues to forward good traffic and discard offending traffic.

32
Q

In _______ mode, the show port-security interface command reveals practically nothing about whether the interfaces happen to be discarding traffic or not.

A

protect

33
Q

Why does the show port-security interface command reveal practically nothing about whether the interfaces happen to be discarding traffic or not.

A

The command output shows the disallowed PC’s MAC address as the last source MAC address in a received frame. However, if another frame with an allowed MAC address arrived , the next instance of the show command would list that last source address. In particular, note that the interface remains in a secure-up state, and the violation counter does not increment.

34
Q

Violation mode restrict:

A

the port status would have also remained in a secure-up state; however, IOS would show some indication of port security activity, such as the incrementing violation counter as well as syslog messages.

35
Q

Troubleshooting the four potential VLAN trunking issues that affect whether the a switch can forward a frame over a VLAN trunk:

A

Step 1.
Identify all access interfaces and their assigned access VLANs and reassign into the correct VLANs as needed.

Step 2.
Determine whether the VLANs both exist (configured or learned with VTP) and are active on each switch. If not, configure and activate the VLANs to resolve problems as needed.

Step 3.
Check the allowed VLAN lists, on the switches on both ends of the trunk, and ensure that the lists of allowed VLANs are the same.

Step 4.
Check for incorrect configuration settings that result in one switch operating as a trunk, with the neighboring switch not operating as a trunk.

36
Q

List the show commands helpful to determine which switch interfaces are access interfaces instead of trunk interfaces, determine the assigned access VLANs on each interface, and compare the infomation to the documentation.

A
  1. show vlan brief, show vlan. (Lists each VLAN and all interfaces assigned to that VLAN (but does not include operational trunks)
  2. show vlan id(num). (Lists both access and trunk ports in the VLAN.)
  3. Show interfaces (type number) switchport.(Identifies the interface’s access VLAN and voice VLAN, plus the configured and operational mode (access or trunk)).
  4. Show mac address-table.(Lists MAC table entries, including the associated VLAN).
37
Q

command to learn the current VTP mode of a switch

A

show vtp status

38
Q

command always lists all VLANs known to the switch:

A

show vlan

39
Q

command should list one of two VLAN state values, depending on the current state: either active or act/lshut.

A

show vlan

40
Q

command to learn the current VTP mode of a switch:

A

show vtp status

41
Q

two similar configuration methods with which to disable (shutdown) and enable (no shutdown) a VLAN.:

A
  1. using the global command [no] shutdown vlan number and then using the VLAN mode subcommand [no] shutdown.
42
Q

What is the most common incorrect configuration—which results in both switches not trunking?

A

a configuration that uses the switchport mode dynamic auto command on both switches on
the link.

43
Q

What is the result of A different incorrect trunking configuration results in one switch with an operational state of “trunk,” while the other switch has an operational state of “static access.”

A

The interface works a little. The status on each end will be up/up or connected. Traffic in the native VLAN will actually cross the link successfully. However, traffic in all the rest of the VLANs will not cross the link. The switch with the trunk port in the state of Access would view any frame that arrives with an 802.1Q header as illegal and discard any 802.1Q frames received on that port.

44
Q

Interface subcommands that administratively disable and enable an interface, respectively

A

shutdown no shutdown

45
Q

Interface subcommand that tells the switch what to do if an inappropriate MAC address tries to access the network through a secure switch port

A

switchport port-security violation {protect | restrict | shutdown}

46
Q

Interface subcommand that manually sets the interface speed

A

speed {auto | 10 | 100 | 1000}

In

47
Q

Interface subcommand that manually sets the interface duplex

A

duplex {auto | full | half}

48
Q

Displays the MAC address table. The static option displays information about the restricted or static settings.

A

show mac address-table [dynamic | static] [address hw-addr] [interface interface-id] [vlan vlan-id]

49
Q

Displays information about security options configured on an interface.

A

how port-security [interface interface-id] [address]

50
Q

Displays detailed information about interface status, settings, and counters.

A

show interfaces [type number]

51
Q

Displays one line of information per interface, with a two-item status (similar to the show interfaces command status), and includes any description that is configured on the interfaces.

A

show interfaces description

52
Q

Displays summary information about interface status and settings, including actual speed and duplex, a single-item status code, and whether the interface was autonegotiated.

A

show interfaces [type number] status

53
Q

Displays a large variety of configuration settings and current operational status, including VLAN trunking details, access and voice VLAN, and native VLAN.

A

show interfaces [type number] switchport

54
Q

Lists information about the currently operational trunks (or just for the trunk listed in the command) and the VLANs supported on those trunks.

A

show interfaces [type number] trunk

55
Q

Lists each VLAN and all interfaces assigned to that VLAN but does not include trunks.

A

show vlan brief, show vlan

56
Q

Lists both access and trunk ports in the VLAN.

A

show vlan id num

57
Q

Lists the current VTP status, including the current mode.

A

show vtp status