Chapter 5 - Infrastructure Services Flashcards

1
Q
  1. Which method provides a distributed database that is used to resolve FQDNs to an IP address?
    A. Hostnames B. Hosts files C. DNS
    D. ARP
A
  1. C. Domain Name Services (DNS) is a distributed database of fully qualified domain names (FQDNs) to IP addresses.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q
  1. What statement is correct about forward lookups?
    A. Forward lookups resolve IP addresses from the queried DNS server, without the help of other DNS servers.
    B. Forward lookups resolve FQDNs to IP addresses.
    C. Forward lookups resolve IP addresses to FQDNs.
    D. A forward lookup forwards a request to another DNS server.
A
  1. B. Forward lookups resolve fully qualified domain names (FQDNs) to an IP address.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q
  1. Which protocol and port number does DNS use for direct queries? A. UDP/53
    B. TCP/53 C. UDP/55 D. UDP/68
A
  1. A. Domain Name Services direct queries are performed over the UDP protocol to port 53. The queries do not require the TCP setup and teardown because the queries are simple request and reply messages, so UDP is used for direct queries
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q
  1. Which statement describes FQDNs?
    A. A DNS server always processes the entire FQDN.
    B. FQDNs are always registered with a registrar.
    C. FQDNs are significant from left to right, starting with a period for the root.
    D. FQDNs are significant from right to left, starting with a period for the root.
A
  1. D. Fully qualified domain names are significant from right to left, starting with a period to signify the root. The period is normally not visible on the FQDN, but it is processed as the root lookup.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q
  1. Which statement is correct about reverse lookups?
    A. A reverse lookup is when the request needs to be reversed to another DNS server.
    B. A reverse lookup is the resolution of an IP address to FQDN.
    C. A reverse lookup is when the DNS queried can answer the request without asking another DNS server.
    D. A reverse lookup is the resolution of an FQDN to an IP address.
A
  1. B. A reverse lookup is when the fully qualified domain name (FQDN) is resolved from an IP address. This is useful when you want to identify an IP address. From the IP address, you can derive the FQDN.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q
  1. Which record type is used for an IPv4 address to FQDN for DNS queries?
    A. The A record
    B. The CName record C. The PTR record
    D. The AAAA record
A
  1. C. The PTR, or pointer record, is used to look up IP addresses and return FQDNs that are mapped to them. This is helpful to identify an IP address, and in the case of SSH, it is used to positively identify the host you are connecting to.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q
  1. What gets appended to hostname queries for DNS resolution?
    A. The DNS domain name B. The DNS zone
    C. The host header
    D. The hostname PTR record
A
  1. A. The configured DNS domain name is appended to the hostname query. As an example, if you query a hostname of routera and the configured domain name is network.local, the DNS server will see a query for rotuera.network.local.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q
  1. Which is the most secure method of name resolution for routers and switches? A. DNS
    B. PTR records
    C. Static hostname entries
    D. LLMNR
A
  1. C. Static hostname entries are the most secure name resolution method for routers and switches. This is because the switch or router does not need to forward-query a server. However, static hostname entries are not scalable.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q
  1. Which type of DNS record holds the IPv4 IP address for a hostname?
    A. The A record
    B. The CName record C. The PTR record
    D. The AAAA record
A
  1. A. The A record is the DNS record that is queried when you want to resolve a hostname to an IP address.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q
  1. What limits the amount of time that a DNS entry is available in DNS cache?
    A. Arecord B. TTL
    C. SOA
    D. Default of 5 minutes
A
  1. B. The time to live, or TTL, limits the amount of time in which a DNS entry will be available in the DNS cache. The TTL can be defined by the DNS administrator on the entry, or it can be defined in the SOA record as the default TTL.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q
11. Which is an alternative to DNS lookup on routers?
A. Static ARP
B. LLMNR
C. Hosts table file
D. Static hostname entries
A
  1. D. The alternative to DNS lookup on routers is configuring static hostname entries. This method unfortunately is not scalable.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q
  1. Which record type is used for IPv6 hostname lookup for DNS queries?
    A. The A record
    B. The CName record C. The PTR record
    D. The AAAA record
A
  1. D. The Quad-A (AAAA) record type is used for IPv6 hostname lookup on DNS servers.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q
  1. Which protocol and port number is used for DNS domain zone transfers?
    A. UDP/53 B. TCP/53 C. UDP/55
    D. UDP/68
A
  1. B. The protocol TCP and port number 53 are used for DNS domain zone transfers. UDP port 53 is used for iterative queries, since the message is short. However, zone transfers require the help of TCP because there is more information than there is in a query.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q
  1. What is a reason to configure DNS on a router or switch?
    A. ACLs can dynamically reverse hostnames to IPs.
    B. Configuration allows access to the router or switch by the FQDN.
    C. Configuration allows ease of administration from the router or switch when connecting to other devices by FQDN.
    D. Configuration allows secure communications via HTTPS.
A
  1. C. Configuring DNS on a router or switch allows for ease of administration from the router or switch. It enables DNS resolution from the console. It does not enable DNS resolution from external sources unless you have configured the hostnames on the DNS server.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q
15. You are were trying to type the ping command into the router and mistype it and receive the output of Translating "png". . . domain server (255.255.255.255), which halts you from continuing. Which command will stop this behavior?
A. RouterA#no domain-lookup
B. RouterA#no ip dns
C. RouterA(config)#no ip dns-lookup
D. RouterA(config)#no ip domain-lookup
A
  1. D. By default, all routers and switches are set for ip domain-lookup. Because no IP address is set, the router or switch will try to broadcast the DNS query. If you configure no ip domain-lookup, the query will just fail, and you will not need to break out of it.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q
  1. Which command will set the resolution of a host so that DNS does not need to be
    used for resolution?
    A. RouterA(config)#hostname routerb 10.1.2.3
    B. RouterA(config)#hostname 10.1.2.3 routerb
    C. RouterA(config)#ip hostname routerb 10.1.2.3
    D. RouterA(config)#ip host routerb 10.1.2.3
A
  1. D. The command ip host routerb 10.1.2.3 will configure the local resolution of the host routerb to an IP address of 10.1.2.3.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
17
Q
  1. Which command will configure the router or switch to use a specific DNS server
    for hostname lookups?
    A. RouterA(config)#ip domain server 172.16.1.5
    B. RouterA(config)#ip dns-server 172.16.1.5 C. RouterA(config)#ip name-server 172.16.1.5
    D. RouterA(config)#ip domain-server 172.16.1.5
A
  1. C. The command ip name-server 172.16.1.5 will configure the router or switch to query the DNS server of 172.16.1.5 for hostname lookups. You can specify multiple DNS servers by using a space as a delimiter between each name for fault tolerance
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
18
Q
  1. Which command will configure the domain name to append to a DNS query?
    A. RouterA(config)#ip domain sybex.com
    B. RouterA(config)#dns-domain sybex.com
    C. RouterA(config)#ip dns-domain sybex.com
    D. RouterA(config)#ip domain-name sybex.com
A
  1. D. The command ip domain-name sybex.com will set the appended domain name of sybex.com for DNS queries. This command will allow the proper FQDN to be resolved by DNS.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
19
Q
  1. What is at the end of all FQDN addresses?

A. A period, which signifies root
B. Top-level domain names
C. Generic top-level domain names
D. The domain name

A
  1. A. A period is always appended to all FQDNs. This is significant because it represents the root, where all DNS resolution begins. The root or period is not often visible, but it is part of the DNS recursion process.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
20
Q
  1. When configuring the name server(s) for domain lookup, what is a best practice? A. Always use public DNS servers.
    B. Always use TLD servers.
    C. Always use private DNS servers.
    D. Always use a mixture of public and private DNS servers for fault tolerance.
A
  1. C. A best practice for security is to always use a trusted DNS server. This is normally a server under the control of the enterprise, so it is a private DNS server.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
21
Q
  1. Which command will help verify the hostnames that are statically configured?
    A. RouterA#show hostname B. RouterA#show hosts
    C. RouterA#show ip hosts
    D. RouterA#show ip host-names
A
  1. B. The command show hosts will allow you to verify the statically configured hosts.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
22
Q
  1. Your DNS administrator has changed the DNS entry for RouterB. You clear the DNS cache and ping routerb.sybex.com again but still ping the original address. All other DNS addresses work fine. What is the problem?
    A. The router is configured to the wrong DNS server. B. RouterB has a host entry configured.
    C. The DNS administrator made an error.
    D. The domain name of the router is incorrect.
A
  1. B. If the cache is cleared after the change has been made to DNS and you still get the same IP address, the reason is most likely that there is a host entry configured. The command show running-configuration will show you if there is an entry.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
23
Q
  1. You have configured a router to point to the DNS server with the IP address 10.2.2.2 and configured the domain name of sybex.com. However, you cannot resolve the host routerb .sybex.com. Which Windows command will help you verify DNS name resolution?
    A. C:>ping routerb.sybex.com
    B. C:>tracert routerb.sybex.com C. C:>nslookup routerb.sybex.com
    D. C:>dig routerb.sybex.com
A
  1. C. The command nslookup routerb.sybex.com will allow you to positively verify name resolution. Ping should not be used because the failure of ICMP echo will make the command fail, giving you a false result.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
24
Q
24. Which command will allow you to verify the DNS server you are using for name
resolution?
A. RouterA#show hosts
B. RouterA#show running-configuration 
C. RouterA#show ip domain
D. RouterA#show dns
A
  1. B. The command to verify DNS server(s) configured for name lookup is show running-configuration. The line to look for in the output is ip name-server x.x.x.x.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
25
Q
  1. You have configured the domain name of sybex.com and the DNS server 10.2.3.4 on a router. However, after you type ping routerb, the console promptly returns “% Unrecognized host or address or protocol not running.” What is wrong?
    A. The DNS server is wrong.
    B. The domain server is wrong. C. The hostname is wrong.
    D. All of the above
A
  1. D. Options A, B, and C will return the error ““% Unrecognized host or address or protocol not running
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
26
Q
  1. Your DNS administrator has changed the DNS entry for RouterB. You ping routerb.sybex .com again, but still ping the original address. All other DNS addresses work fine. What is the problem?
    A. The DNS administrator made an error.
    B. The router is configured to the wrong DNS server. C. The router’s DNS cache needs to be cleared.
    D. The domain name of the router is incorrect.
A
  1. C. DNS changes can be made on-the-fly. However, the results will not be seen immediately unless all cache is cleared and routers request the new address. The problem would be that this router had resolved routerb.sybex.com already and the entry still exists in the cache, which needs to be cleared.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
27
Q
  1. Which command will remove the entry routerb.sybex.com out of the DNS cache or a switch without affecting the rest of the cache?
    A. Router#clear host
    B. Router#clear host *
    C. Router(config)#clear host routerb.sybex.com
    D. Router#clear host routerb.sybex.com
A
  1. D. The command to clear only the host routerb.sybex.com from the DNS cache is clear host routerb.sybex.com. This will remove only that particular host from the cache.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
28
Q
  1. Which statement is true about the Discover packet of DHCP? A. The layer 3 destination is a unicast to the DHCP server.
    B. The layer 2 destination is the MAC address of the DHCP server. C. The layer 2 source is the MAC address of the client.
    D. The layer 3 source is a link-local address of the client.
A
  1. C. The DHCP Discover packet is a broadcast to discover a DHCP server. The layer 3 packet and layer 2 frame are broadcasts. Since the client does not have an IP address yet, the layer 3 source address is all zeros. However, the layer 2 source MAC address is filled out in the frame.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
29
Q
  1. Which command will configure a router to use DHCP for IP address assignment?
    A. RouterA(config)#ip address dhcp
    B. RouterA(config-if)#ip address auto C. RouterA(config-if)#ip address dhcp
    D. RouterA(config)#ip address auto
A
  1. C. The command ip address dhcp will configure the router to use DHCP for IP address assignment. This command needs to be issued on the interface in which you want the IP address to be configured, similar to static IP address assignment
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
30
Q
  1. Which command will allow you to verify the IP address assigned to a router’s
    interface?
    A. Router#show ip dhcp bindings
    B. Router#show ip interface C. Router#show ip lease
    D. Router#show ip dhcp lease
A
  1. B. The command show ip interface will display the IP addresses configured on the router’s interfaces. It will detail which are static and which have been allocated through DHCP.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
31
Q
  1. Which port and protocol does the client use for DHCP messages?
    A. UDP/68 B. TCP/68 C. UDP/67
    D. TCP/67
A
  1. A. The DHCP client uses the source port UDP/68 to await connections back from the server. It keeps this protocol and port open in an active state until DHCP is complete.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
32
Q
  1. Which command will allow you to verify the active DHCP server that has assigned an IP address to the router?
    A. Router#show dhcp lease
    B. Router#show ip dhcp lease C. Router#show ip lease
    D. Router#show ip interface
A
  1. A. The command show dhcp lease will help you verify the IP address configured on the router, the DHCP server that served the lease, and the lease time in seconds.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
33
Q
  1. Which statement is true about the Offer packet of DHCP?
    A. The layer 3 destination is a unicast to the DHCP client.
    B. The layer 2 destination is the MAC address of the DHCP client.
    C. The layer 2 source is the MAC address of the server. D. The layer 3 source is a link-local address of the client.
A
  1. C. The DHCP Offer packet is a broadcast packet from the DHCP server to the DHCP client. The layer 3 packet and layer 2 frame are both broadcasts.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
34
Q
  1. Which command will configure a DHCP relay agent on an interface to the DHCP server of 10.10.1.101?
    A. Router(config)#ip dhcp server 10.10.1.101
    B. Router(config-if)#ip dhcp server 10.10.1.101 C. Router(config-if)#ip relay-agent 10.10.1.101
    D. Router(config-if)#ip helper-address 10.10.1.101
A
  1. D. The command ip helper-address 10.10.1.101 will configure the interface to become a DHCP relay agent. This command must be configured on the interface in which you want the DHCP relay agent to listen and respond
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
35
Q
  1. Which DHCP field helps a DHCP server decide which scope to serve to the DHCP
    relay agent?
    A. CIADDR B. GIADDR C. SIADDR
    D. CHADDR
A
  1. B. The Gateway Address (GIADDR) field is filled out by the DHCP relay agent before the DHCP packet is sent to the DHCP server. This field helps the DHCP server decide which scope to send an Offer message back for.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
36
Q
  1. Which port and protocol does the server use to await connections for DHCP?
    A. TCP/68 B. UDP/68 C. TCP/67
    D. UDP/67
A
  1. D. The DHCP server bind port of UDP/67 is used for awaiting connections from DHCP clients
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
37
Q
41. Which Windows command will allow you to see the DHCP server that has configured the client computer with an IP address?
A. C:\>ipconfig
B. C:\>ipconfig /all
C. C:\>ipconfig /showclassid
D. C:\>ipstatus
A
  1. B. The command ipconfig /all will display the generic information of IP, subnet mask, and gateway. It will also display the DHCP server that configured the client with an IP address
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
38
Q
  1. Which message is sent from the DHCP client to the DHCP server to confirm the
    offer of an IP address? A. Acknowledgment
    B. Discover C. Offer
    D. Request
A
  1. A. The DHCP acknowledgment message is sent from the DHCP client to the DHCP server to acknowledge that the IP address offered will be used by the client.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
39
Q
  1. What form of communications does a DHCP client use to initially acquire an IP address?
    A. Layer 3 broadcast B. Layer 3 multicast C. Layer 3 802.1Q
    D. Layer 3 unicast
A
  1. A. DHCP uses layer 3 broadcasts by sending packets to 255.255.255.255 for initial DHCP discovery
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
40
Q
  1. At what point of the lease time will the client ask for a renewal of the IP address from the DHCP server?
    A. One-quarter of the lease B. One-half of the lease
    C. Seven-eighths of the lease
    D. End of the lease
A
  1. B. DHCP clients request a renewal of the lease halfway through the lease time of the IP address
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
41
Q
  1. Which statement is correct about the DHCP process?
    A. The DHCP server is responsible for maintaining the life cycle of an IP address. B. DHCP uses multicasting between the client and server.
    C. The DHCP client is responsible for maintaining the life cycle of an IP address.
    D. The DHCP lease is negotiated between client and server.
A
  1. C. After the initial Discover, Offer, Request, and Acknowledge, it is the client’s responsibility to maintain the lease of the IP address. This includes release and renewal
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
42
Q
  1. Which transport protocol does DHCP use?

A. UDP B. ICMP C. TCP
D. RARP

A
  1. A. DHCP uses UDP as a connectionless protocol for the Discover, Offer, Request, and Acknowledge packets.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
43
Q
47. Which command will allow you to diagnose DHCP relay agent messages on a router or switch?
A. Router#debug dhcp
B. Router#show ip dhcp detail
C. Router#debug ip dhcp server packet
D. Router#debug ip dhcp
A
  1. C. The command debug ip dhcp server packet will show the details of a DHCP relay agent conversation. It will detail conversation between the client and router and the router and the DHCP server
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
44
Q
  1. What is DHCPv6 used for when a network is configured for Stateless Address
    Autoconfiguration (SLAAC)?
    A. Stateful configuration of clients for IPv6 addressing
    B. Configuration of clients with the IPv6 network IDs C. Configuration of clients with IPv6 options
    D. Stateless configuration of clients for IPv6 addressing
A
  1. C. Stateless Address Autoconfiguration (SLAAC) allows for the client to learn the network ID and calculate a host ID that is unique. However, SLAAC is lacking the ability to configure options such as DNS time servers, etc. DHCPv6 allows for the configuration of these options when used in conjunction with SLAAC.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
45
Q
  1. The DHCP server in the network went down. What happens to clients that have obtained IP addresses from the DHCP server?
    A. They lose their IP address immediately.
    B. They lose their IP address after one-half of their lease has expired.
    C. They lose their IP address after seven-eighths of their lease has expired.
    D. They lose their IP address after their entire lease has expired.
A
  1. D. They will lose their IP after their entire lease has expired. Until the lease expires, they will have functioning IP addresses.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
46
Q
  1. Which command will configure a router as a DHCPv6 relay agent for a stateful DHCPv6 server?
    A. Router(config)#ip dhcp server 2001:db8:1:2::2
    B. Router(config-if)#ipv6 dhcp relay destination 2001:db8:1:2::2 C. Router(config-if)#ip dhcp server 2001:db8:1:2::2
    D. Router(config-if)#ipv6 helper-address 2001:db8:1:2::2
A
  1. B. The command ipv6 dhcp relay destination 2001:db8:1:2::2 will configure the router interface to relay DHCP requests to 2001:db8:1:2::2. This command must be configured on the interface that is to listen for DHCPv6 requests
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
47
Q
  1. You need to configure a lease duration of 4 hours for a DHCP pool. Which
    command will achieve this?
    A. Router(dhcp-config)#lease 0 4 0
    B. Router(dhcp-config)#lease-duration 0 4 0 C. Router(dhcp-config)#lease 4 0 0
    D. Router(dhcp-config)#dhcp lease 0 4 0
A
  1. A. The command lease 0 4 0 will configure the DHCP pool for a duration of 0 days, 4 hours, and 0 minutes.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
48
Q
  1. Which command will create an exclusion of 192.168.1.16 to 192.168.1.31 in the
    DHCP pool?
    A. Router(dhcp-config)#exclusion 192.168.1.16 192.168.1.31
    B. Router(dhcp-config)#dhcp exclusion 192.168.1.16 192.168.1.31
    C. Router(dhcp-config)#ip dhcp exclusion-address 192.168.1.16 192.168.1.31
    D. Router(config)#ip dhcp exclusion-address 192.168.1.16 192.168.1.31
A
  1. D. The command ip dhcp exclusion-address 192.168.1.16 192.168.1.31 will configure an exclusion address range by specifying the low IP address and the high IP address. This command is configured from the global configuration prompt.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
49
Q
  1. When configuring a DHCP pool, which option(s) will configure the client to boot
    from a PXE server?
    A. Router(dhcp-config)#option pxe 10.1.1.5
    B. Router(dhcp-config)#option 66 10.1.1.5
    C. Router(dhcp-config)#option 60 ascii PXEClient
    Router(dhcp-config)#option 66 ip 10.1.1.5
    D. Router(dhcp-config)#option 66 ip 10.1.1.5 Router(dhcp-config)#bootfile boot\x86\wdsnbp.com
A
  1. D. The command option 66 ip 10.1.1.5 sets the TFTP server to boot from. The command bootfile boot\x86\wdsnbp.com sets the bootfile on the TFTP server to boot\x86\wdsnbp.com. Some clients may need other options, such as option 60, which is the vendor class identifier.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
50
Q
  1. Which command will configure the default gateway option for a DHCP pool? A. Router(dhcp-config)#option gateway 10.1.1.1
    B. Router(dhcp-config)#default-router 10.1.1.1 C. Router(dhcp-config)#default-gateway 10.1.1.1
    D. Router(dhcp-config)#gateway 10.1.1.
A
  1. B. The default gateway option is configured under the DHCP pool with the command default-router 10.1.1.1. This will set the default gateway to 10.1.1.1 for the DHCP clients.
51
Q
  1. Which option will configure the DNS servers for the DHCP clients?
    A. Router(dhcp-config)#dns-server 10.1.1.5 B. Router(dhcp-config)#dns 10.1.1.5
    C. Router(dhcp-config)#option 53 10.1.1.5
    D. Router(dhcp-config)#option 55 ip 10.1.1.5
A
  1. A. The DNS server is configured with the command dns-server 10.1.1.5. This command is used in lieu of the option command so that multiple DNS servers can be configured on the same line.
52
Q
  1. Which command will configure a DHCP pool to serve the IP addresses for
    192.168.1.0/24?
    A. Router(dhcp-config)#dhcp-range 192.168.1.0 B. Router(dhcp-config)#network 192.168.1.0
    C. Router(dhcp-config)#network 192.168.1.0 255.255.255.0
    D. Router(dhcp-config)#dhcp-network 192.168.1.0 255.255.255.0
A
  1. C. The command network 192.168.1.0 255.255.255.0 will configure the network ID and subnet mask required for DHCP.
53
Q
  1. Which statement is correct about stateful DHCPv6?
    A. Stateful DHCPv6 supplies the network ID and host ID.
    B. Stateful DHCPv6 supplies the network ID, host ID, and default router. C. Stateful DHCPv6 communicates via broadcasts.
    D. Stateful DHCPv6 works in conjunction with SLAAC.
A
  1. A. Stateful DHCPv6 supplies the network ID and host ID. The default router is discovered through the Neighbor Discovery Protocol.
54
Q
  1. Which command will configure a router interface to obtain its IP address via a stateful DHCPv6?
    A. RouterA(config)#ipv6 address dhcp gi 0/0 B. RouterA(config-if)#ipv6 address dhcpv6 C. RouterA(config-if)#ipv6 address dhcp
    D. RouterA(config)#ipv6 address stateless
A
  1. C. The command ipv6 address dhcp will configure the interface to obtain its IP address via stateful DHCPv6.
55
Q
  1. Which command will allow you to verify the IPv6 configuration for stateful
    DHCPv6?
    A. RouterA#show ipv6 dhcp bindings
    B. RouterA#show ipv6 dhcp interface C. RouterA#show ipv6 address
    D. RouterA#show ipv6 interface
A
  1. B. The command show ipv6 dhcp interface will display which mode the client is in, the address, and the DHCP Unique Identifier (DUID) as well as the stateful DHCPv6 server
56
Q
  1. What happens if you delete a current lease on the DHCP server?
    A. The server will contact the client to immediately relinquish the IP address.
    B. The client will immediately renew its lease for the current IP address.
    C. The server will offer the IP address to another node, which will cause a duplicate address.
    D. The server will offer the IP address to another node, at which time the original client will relinquish the IP address.
A
  1. C. When the lease for a node is deleted on the DHCP server, the DHCP server is free to hand out the lease to another node. This happens independently from the client, as there is no communication from server to client about the lease. The client will retain the IP address until the renewal period, which will cause a duplication of IP addressing.
57
Q
  1. What happens at the client when the lease for an IP address reaches seven-eighths of the lease cycle?
    A. The DHCP client will perform a DHCP rebinding. B. Nothing. The DHCP client will retain the lease. C. The DHCP client will renew its lease

D. The DHCP client will relinquish the use of the IP address.

A
  1. A. At seven-eighths of the lease cycle, the DHCP client will perform a rebinding. The rebinding process means that the original DHCP server was down at the one-half mark of the lease, so now the client will try to rebind with any responding DHCP server.
58
Q
  1. Which command is used on a router to request a renewal lease on a DHCP interface?
    A. Router#renew dhcp gi 0/0
    B. Router(config)#renew dhcp gi 0/0 C. Router#clear interface gi 0/0
    D. Router#clear dhcp gi 0/0
A
  1. A. The command renew dhcp gi 0/0 will force the DHCP client to renew the current lease.
59
Q
63. How are nodes and leased IPs tracked in the DHCP bindings table on a switch or
router?
A. GUID address
B. UUID address C. MAC address
D. DHCPID
A
  1. C. When the DHCP server issues an IP address to a client, it records the MAC address in the DHCP bindings table. This is recorded along with the lease expiration.
60
Q
  1. During the DHCP rebinding, which message is sent from the client?
    A. DHCPDiscover B. DHCPRequest C. DHCPAck
    D. DHCPOffer
A
  1. B. During the DHCP rebinding process, a DHCP Request is sent. However, it is not sent to the originating server since rebinding occurs after the renewal period was missed. So the DHCP Request is broadcast to any listening DHCP server.
61
Q
  1. You have configured a DHCP server on a router interface. You test a Windows client and receive the address 169.254.24.56. What can you conclude?
    A. You have successfully configured the scope of 169.254.24.0/24.
    B. The client had a static IP address of 169.254.24.0/24 configured.
    C. The DHCP server is not configured properly and the client has configured itself with a link-local address.
    D. The DHCP server is configured for APIPA.
A
  1. C. DHCP clients use a protocol called Gratuitous Address Resolution Protocol (GARP). The GARP packet is a broadcast to the other clients in the network. If no response is heard, there are no conflicts.
62
Q
  1. What happens when a router or switch detects a duplicate IP address for a DHCP process A. The IP address is still served to the client.
    B. The IP address is removed from the DHCP pool. C. The DHCP server will halt.
    D. The DHCP will serve the IP address in the future.
A
  1. B. When DHCP detects a duplicate IP address in the pool, it will remove the duplicate IP address from the DHCP pool and place it into the conflict table. It will require manual intervention to reserve the IP address.
63
Q
  1. Before you configure the DHCP pool and network, which option should you configure?
    A. Lease duration B. Options
    C. Exclusions
    D. Domain name
A
  1. C. It is recommended that you create an exclusion for the router interface and an
64
Q
70. Which command will allow you to check if the router or switch handed out a duplicate IP address?
A. Router#show ip conflict
B. Router#show ip dhcp conflict
C. Router#show ip dhcp duplication
D. Router#show ip duplication
A
  1. B. The command show ip dhcp conflict will display the IP address conflicts on the router or switch. The table will display how the conflict was discovered with GARP or Ping as well as the detection time.
65
Q
72. Which command will allow you to see the current utilization of the DHCP pools configured?
A. Router#show dhcp
B. Router#show ip dhcp
C. Router#show dhcp status
D. Router#show ip dhcp pool
A
  1. D. The command show ip dhcp pool will allow you to see the current utilization of the scopes configured on the router.
66
Q
  1. How can an address be removed from the DHCP conflict table?
    A. Router#clear ip conflict 192.168.1.6
    B. Router#clear ip dhcp conflict 192.168.1.6 C. Router#remove ip conflict 192.168.1.6
    D. Router(config)#clear ip dhcp conflict 192.168.1.6
A
  1. D. The command to remove an IP address from the conflict table is clear ip dhcp conflict 192.168.1.6. This command will remove a single IP address of 192.168.1.6 from the table and place it back in the DHCP pool. Alternatively, all of the conflicts can be cleared with an * in lieu of the IP address.
67
Q
  1. Which command will allow you to verify the current DHCP leases on a router or a switch?
    A. Router#show ip dhcp bindings B. Router#show ip interface
    C. Router#show ip lease
    D. Router#show ip dhcp lease
A
  1. A. The command show ip dhcp bindings will allow you to verify all of the current DHCP leases served by the router or switch.
68
Q
76. Which protocol is an IEEE standard that is supported openly as a first hop
redundancy protocol (FHRP)? A. Proxy ARP
B. VRRP
C. GLBP
D. HSRP
A
  1. B. Virtual Router Redundancy Protocol (VRRP) is an IEEE open standard that is supported freely on many router products.
69
Q
  1. In the MAC address 0000.0c07.ac0a, what is the well-known Hot standby Router Protocol (HSRP) ID?
    A. 0000.0c B. c007
    C. 0a
    D. 07.ac
A
  1. D. The well-known HSRP ID is 07.ac. Anytime you see the 07.ac in the second part of the MAC address along with the Cisco OUI, you can identify that HSRP is being employed
70
Q
  1. Which protocol is a Cisco Proprietary protocol for load-balancing routers?
    A. Proxy ARP B. VRRP
    C. GLBP
    D. HSRP
A
  1. C. Gateway Load Balancing Protocol (GLBP) is a Cisco Proprietary protocol that supports redundancy and per-subnet load balancing.
71
Q
  1. In the MAC address 0000.0c07.ac01, what is the HSRPv1 group number?
    A. 0000.0c B. c007
    C. 01
    D. 07.ac
A
  1. C. The HSRP group number in the MAC address 0000.0c07.ac05 is 01. After the Cisco OUI and well-known HSPR ID, the last two digits are the HSRP group identifier.
72
Q
  1. What is the default priority of HSRP?

A. 100
B. 110 C. 200
D. 10

A
  1. A. The default priority of HSRP is 100.
73
Q
  1. What is the maximum number of HSRPv1 groups that can be created? A. 8
    B. 16 C. 255 D. 256
A
  1. D. You can create up to 256 HSRP groups on a router. This would include group 0
    to 255 for a total of 256 groups.
74
Q
  1. Which port and protocol are used by HSRP for communications? A. UDP/1935
    B. UDP/1985
    C. UDP/1895
    D. UCP/3222
A
  1. B. HSRP routers communicate with each other on port 1985 using UDP.
75
Q
  1. Which statement is correct about HSRP?
    A. All routers in an HSRP group are active.
    B. Only one router in an HSRP group can be active.
    C. The virtual router sends hello packets to the HSRP group.
    D. HSRP allows for per-packet load balancing.
A
  1. B. Only one router can be active at a time in an HSRP group. All other routers are standby routers, until the active router fails
76
Q
  1. What type of communication is used between HSRP members?
    A. Unicast B. Broadcast C. Multicast
    D. Layer2flooding
A
  1. C. HSRP uses multicasting to communicate among HSRP group members. For HSRPv1, the address is 224.0.0.2, and for HSRPv2, the address is 224.0.0.102
77
Q
  1. When a host sends an outgoing packet to an HSRP group, which router provides the destination address for the default gateway?
    A. Virtual router B. Active router C. Standby router
    D. Monitorrouter
A
  1. A. The virtual router is responsible for host communications such as an ARP request for the host’s default gateway. Technically, this is served by the active router since it is hosting the virtual router. However, it is the virtual router’s IP address and MAC address that are used for outgoing packets.
78
Q
  1. Which timer must expire for a standby router in an HSRP group to become the active router?
    A. Hello timer
    B. Standby timer C. Holdtimer
    D. Virtual timer
A
  1. C. The hold timer must expire for the standby router to become an active router. The hold timer is three times the hello timer, so three hello packets must be missed before the standby becomes active.
79
Q
  1. Which port and protocol are used by Gateway Load Balancing Protocol (GLBP) for communications?
    A. UDP/1935 B. UDP/1985 C. UDP/1895 D. UDP/3222
A
  1. D. Gateway Load Balancing Protocol (GLBP) use the port number 3222 and the protocol UDP for router communications.
80
Q
  1. Which is a difference between HSRPv1 and HSRPv2? A. HSRPv2 does not use hello packets.
    B. HSRPv1 uses broadcasts, and HSRPv2 uses multicasts. C. HSRPv1 supports IPv6.
    D. HSRPv2 uses milliseconds.
A
  1. D. HSRP version 2 allows for timers to be configured in milliseconds in lieu of seconds. This allows for quicker failover between active and standby routers.
81
Q
  1. Which statement is correct about Gateway Load Balancing Protocol (GLBP)?
    A. The active router is responsible for responding to clients with the virtual router’s MAC address.
    B. The active virtual gateway will respond with a MAC address of the active router.
    C. The active virtual gateway will respond with a MAC address of an active virtual forwarder.
    D. The virtual router is responsible for responding to tracking requests.
A
  1. C. The active virtual gateway (AVG) is responsible for responding to ARP requests from hosts. The AVG will reply with the MAC address of any one of the active virtual forwarders (AVFs).
82
Q
  1. Which router is elected to become the GLBP active virtual gateway?
    A. The router with the lowest priority
    B. The router with the highest priority
    C. The router with the lowest priority and lowest IP address
    D. The router with the highest priority and highest IP address
A
  1. D. The router with the highest priority will become the AVG. However, if all routers have the same priority, then the router with the highest IP address configured becomes the tiebreaker.
83
Q
  1. How many active virtual forwarders are supported per the Gateway Load Balancing Protocol (GLBP) group?

A. 2
B. 4 C. 16
D. 1,024

A
  1. B. Gateway Load Balancing Protocol (GLBP) supports up to four active virtual forwarders per GLBP group.
84
Q
  1. Which command will allow Router B to always become the active router for HSRP?
    A. Router(config-if)#standby 1 priority 150 B. Router(config-if)#standby 1 priority 70 C. Router(config-if)#hsrp 1 priority 150
    D. Router(config-if)#hsrp 1 priority 90
A
  1. A. The command standby 1 priority 150 will set the HSRP group of 1 on this router to a priority of 150. As long as all other routers are set to the default of 100, this router will become the default router on the next election.
85
Q
  1. What is the maximum number of Hot Standby Router Protocol version 2 groups
    that can be created? A. 255
    B. 256 C. 1,024 D. 4,096
A
  1. D. You can create up to 4,096 HSRP groups on a router. This would include group 0 to 4096 for a total of 4,096 groups.
86
Q
  1. Your company is running a first hop redundancy protocol (FHRP). You notice that the MAC address of the default gateway is 0000.0c9f.f123. Which FHRP is being employed?
    A. HSRPv1 B. GLBP
    C. HSRPv2
    D. VRRP
A
  1. C. Hot Standby Router Protocol version 2 (HSRPv2) is being employed. It uses an OUI of 0000.0c and a well-known identifier of 9f.f, and the last three digits identify the HSRP group, which has been expanded from two digits in version 1.
87
Q
  1. What is the definition of preemption for Hot Standby Router Protocol (HSRP)?
    A. It allows the protocol to effectively load-balance per packet.
    B. It watches an upstream interface and fails over when the interface goes down.
    C. It ignores the priorities of the routers and elects an active router by highest IP address.
    D. When a standby router comes online, it allows for a re-election of the active router.
A
  1. D. Preemption allows for the election process to happen for a newly added HSRP router. If preemption is not enabled, then the newly added HSRP router will become a standby router
88
Q
  1. Which is a method of configuring Hot Standby Router Protocol (HSRP) so that traffic is not directed to one router?
    A. Configure version 2 for all HSRP groups.
    B. Configure an HSRP group per VLAN and alternate the priority above 100. C. Configure PPPoE on the router interfaces.
    D. Configure all routers in the HSRP as active routers.
A
  1. B. Hot Standby Router Protocol (HSRP) allows for only one active router per HSRP group. However, you can configure multiple VLANs with HSRP groups. You can then alternate a higher-than-default priority to force an active router per VLAN. This will give you a rudimentary way of balancing traffic.
89
Q
  1. Which command will allow you to verify the state of the current router for HSRP? A. RouterA#show hsrp
    B. RouterA#show ip standby C. RouterA#show standby
    D. RouterA#show ip hsrp
A
  1. C. The command show standby will allow you to verify the state of the current router for HSRP.
90
Q
  1. You have just changed the priority on Router A to 150. All other routers have the default priority. What is wrong?
    A. The default priority is 150.
    B. The hold timer is set too high and needs to timeout. C. The HSRP group is not set for preemption.
    D. Router A has too low of an IP address.
A
  1. C. The HSRP group is not set for preemption, which is the default behavior for HSRP. You need to enable preemption, which will allow a reelection when the priority is changed or if a new standby router comes online. If preemption is disabled, the active router will have affinity.
91
Q
  1. Which command will allow you to enable preemption for HSRP?
    A. Router(config)#standby 1 preemption
    B. Router(config-if)#standby 1 preemption C. Router(config-if)#hsrp 1 preempt
    D. Router(config-if)#standby 1 preempt
A
  1. D. The command standby 1 preempt will configure HSRP group 1 for preemption. This command must be configured under the interface on which HSRP has been enabled. The command show standby will allow you to verify this.
92
Q
  1. Which command will configure VRRP on an interface with an IP address of
    10.1.2.3?
    A. Router(config)#vrrp 1 10.1.2.3 gi 0/0
    B. Router(config-if)#vrrp 1 ip 10.1.2.3
    C. Router(config-if)#vrrp 1 10.1.2.3
    D. Router(config-if)#standby 1 10.1.2.3 Router(config-if)#standby 1 vrrp
A
  1. B. The command vrrp 1 ip 10.1.2.3 will configure the interface with VRRP with a virtual IP address of 10.1.2.3.
93
Q
  1. Which command from the host will allow you to see the router your packets have been routed with?
    A. C:\ping 10.1.2.33
    B. C:\tracert 10.1.2.33 C. C:\arp -g
    D. C:\ipconfig /all
A
  1. B. The command tracert 10.1.2.33 will allow you to see the real IP address on the router that is responding for the ICMP packet. With HSRP, the virtual MAC address is returned for the virtual IP address of the default gateway. However, when ping is used the ping packet enters the real interface, and then the interface responds with the real IP address.
94
Q
  1. Which command will allow you to see real-time diagnostics of HSRP?
    A. Router#show ip hsrp
    B. Router#debug ip hsrp C. Router#debug standby
    D. Router#debug ip standby
A
  1. C. The command debug standby will allow you to see real-time information from HSRP on the router on which you have entered the command.
95
Q
  1. Which statement is correct about GLBP?
    A. GLBP allows for per-host load balancing.
    B. The active virtual gateway will respond with a MAC address of the active router. C. GLBP allows for per-subnet load balancing.
    D. The virtual router is responsible for responding to tracking requests.
A
  1. A. GLBP allows for per-host load balancing. It does this by allowing the active virtual router to respond for the virtual IP address. The AVG then hands out the MAC address in the ARP request for one of the active virtual forwarders. It does this in a round-robin fashion.
96
Q
  1. Which command will allow you to set the hello and hold timer for HSRPv2 to a hello of 200 milliseconds and a hold of 700 milliseconds?
    A. RouterA(config-if)#standby 1 timers msec 200 msec 700 B. RouterA(config-if)#standby 1 timers 200 msec 700 msec C. RouterA(config-if)#standby 1 timers 700 msec 200 msec D. RouterA(config-if)#standby 1 timers msec 700 msec 200
A
  1. A. The command standby 1 timers msec 200 msec 700 will set the HSRP group of 1 with a hello timer of 200 milliseconds and a hold timer of 700 milliseconds. This is configured inside of the interface in which the HSRP group was created.
97
Q
  1. Which method will allow you to use RFC 1918 addresses for Internet requests? A. CIDR
    B. Classful addressing C. NAT
    D. VPN
A
  1. C. Network Address Translation (NAT) was created to slow the depletion of Internet addresses. It does this by translating RFC 1918 privatized addresses to one or many public IP addresses. It allows the packets to masquerade as the public IP address on the Internet until is it translated back to the private IP address.
98
Q
  1. Which is a disadvantage of using NAT?
    A. Creates switching path delays B. Introduces security weaknesses C. Requires address renumbering
    D. Increases bandwidth utilizatio
A
  1. A. Network Address Translation creates packet switching path delay. This is because each address traveling through the NAT process requires lookup time for the translation.
99
Q
108. Which type of Network Address Translation is used for one-to-one mapping between local and global addresses?
A. Dynamic NAT
B. Static NAT
C. NATOverloading
D. Symmetric NAT
A
  1. B. Static Network Address Translation is a one-to-one mapping between a local (private) and global (public) IP address. This is used for servers, such as web servers and email servers, so that they are Internet reachable.
100
Q
110. Which type of Network Address Translation is used for one-to-one mapping (sometimes called many-to-many) on the fly between local and global addresses that are allocated from a pool of addresses?
A. Dynamic NAT
B. Static NAT
C. NATOverloading
D. Full cone NAT
A
  1. A. Dynamic Network Address Translation is a one-to-one mapping on the fly in which the IP address is allocated from a pool of addresses. This is often called many- to-many. When a host makes an attempt to go through the NAT process, an IP address is mapped to the host from the global pool. This type of NAT is useful in network address overlap situations because there is less latency than NAT Overloading
101
Q
111. Which type of Network Address Translation is used for a many-to-one translation in which the source and destination ports are tracked?
A. Dynamic NAT
B. Static NAT
C. NATOverloading
D. Full cone NAT
A
  1. C. Network Address Translation overloading, sometimes called Port Address Translation, allows for one public IP address to be used for NAT. The conversations between local and global IPs are sorted using the source and destination ports for the various applications. This is the most common NAT and can be found in any home, small office, or enterprise.
102
Q
  1. Which statement is correct about static NAT?
    A. The translation is always present in the NAT table.
    B. The translation is never present in the NAT table. C. Static NAT is less secure than dynamic NAT.
    D. Static NAT has less latency than dynamic NAT.
A
  1. A. Static NAT translation entries are always present in the NAT table. Static NAT entries have the same amount of security and latency as dynamic NAT.
103
Q
  1. Network Address Translation overloading is also called what?
    A. Static NAT B. PAT
    C. CEF NAT
    D. I-NAT
A
  1. B. Network Address Translation overloading is also called Port Address Translation. This is because a single IP address can allow up to 65,535 simulations inside local connections, which are segregated in the NAT table by source and destination port number.
104
Q
  1. What is an advantage of Network Address Translation?
    A. Decreased memory utilization
    B. Decreased utilization of public IP addresses C. Decreased latency of packets
    D. Increased network application compatibility
A
  1. B. A decrease in public IP address utilization is a direct benefit of using NAT. Memory utilization will increase, latency of packets will increase, and some network applications could have problems with NAT.
105
Q
  1. Which is a practical application of static Network Address Translation?
    A. Address overlap for an enterprise
    B. Internet access for an enterprise from private IP addressing
    C. Publishing a web server on the Internet from a private IP address
    D. All of the above
A
  1. C. Static NAT is mainly used for publishing internal resources on the Internet, Such services are email servers, web servers, collaboration servers, and so on.
106
Q
  1. Which term describes the IP address of the internal host before NAT?
    A. Inside local B. Outside local C. Inside global
    D. Outside global
A
  1. A. The inside local address is “inside” the enterprise and under “local” control of the enterprise. This term is from the perspective of the NAT device.
107
Q
  1. Which of the following is an advantage to using Port Address Translation?
    A. Lower levels of jitter
    B. Lower levels of packet loss
    C. Flexibility of Internet connections
    D. Lower memory usage than other NAT types
A
  1. C. The flexibility of Internet connections is usually a driving factor for PAT (NAT Overloading). Memory is significantly higher with PAT, since the source and destination port numbers must be recorded in the NAT table. There is no effect on packet loss, and jitter is marginally affected.
108
Q
  1. Which command would you configure on the private network interface for NAT? A. Router(config-if)#ip nat outside
    B. Router(config)#ip nat inside gi0/0 C. Router(config-if)#ip nat private
    D. Router(config-if)#ip nat inside
A
  1. D. The command to configure the private side of the network interface for NAT is ip nat inside. This command is configured on the interface in which you want to define it as the “inside” of your network.
109
Q
  1. Which command will allow you to view the NAT translations active on the router?
    A. Router#show ip nat translations B. Router#show nat translations
    C. Router#debug ip nat translations
    D. Router#show translations na
A
  1. A. The command show ip nat translations will allow you to view the active NAT translations on the router.
110
Q
  1. Which command will allow you to view the current number of active NAT
    translations on the router?
    A. Router#show ip nat translations
    B. Router#show ip nat summary C. Router#show ip nat status
    D. Router#show ip nat statistics
A
  1. D. The command show ip nat statistics will allow you to view the number of active NAT translations on the router. In addition, it will provide you with the current inside and outside interfaces.
111
Q
  1. When configuring dynamic NAT, why must you configure an access list? A. The access list allows incoming access from outside global addresses.
    B. The access list allows outgoing access from inside local addresses. C. The access list allows outgoing access from outside local addresses. D. The access list allows outgoing access from inside global addresses.
A
  1. B. The access list allows the inside local address to pass through the NAT process.
112
Q
  1. Which command will wipe out all current NAT translations in the NAT table? A. Router#no ip nat translation
    B. Router#clear ip nat translation C. Router#clear ip nat translation *
    D. Router#clear ip nat
A
  1. C. The command clear ip nat translation * will clear all IP NAT translations out of the NAT table. The asterisk is used as a wildcard for all addresses. You can alternatively specify a specific inside or outside NAT address.
113
Q
  1. What happens to host communications when the NAT table is manually cleared?
    A. No disturbance in communications will be observed.
    B. Established UDP sessions will need to reestablish and will disturb communications.
    C. Established TCP sessions will need to reestablish and will disturb communications.
    D. Established TCP sessions will need to reestablish and will not disturb communications.
A
  1. C. When the NAT table clears, established TCP sessions will need to reestablish via the three-way handshake. This creates a problem for some secure protocols such as SSH, which will drop the established connection and not reestablish a new connection. UDP does not have a state to its connection, so little or no disturbance will be seen.
114
Q
  1. Which command will allow you to see real time Network Address Translations? A. Router#show ip translations
    B. Router#debug ip nat
    C. Router#debug ip translations
    D. Router#show ip nat
A
  1. B. The command debug ip nat will allow you to see real-time NAT translations. When you issue this command, you should know that each NAT translation will log to the screen or logging server and will spike CPU usage.
115
Q
  1. Which protocol helps synchronize time for routers and switches? A. SNMP
    B. NTP C. Syslog
    D. ICMP
A
  1. B. The Network Time Protocol (NTP) is used to synchronize time for routers and switches.
116
Q
  1. Why is time synchronization important for routers and switches?
    A. It is important for serialized communication frame alignment. B. It is important for quality of service queuing.
    C. It is important for logging accuracy.
    D. It helps delivery of packets via timed queues.
A
  1. C. Time synchronization is important for logging accuracy. Serial communication frame alignment is timed via DCE clocking and packet queues are timed by how fast they can respond.
117
Q
  1. Which command will allow your router to synchronize with a time source of 129.6.15.28?

A. Router(config)#ntp server 129.6.15.28 B. Router#ntp server 129.6.15.28
C. Router(config)#ntp client 129.6.15.28
D. Router#ntp client 129.6.15.28

A
  1. A. The command ntp server 129.6.15.28 will configure your router to connect to the server 129.6.15.28 as an NTP source. This command must be entered in global configuration mode.
118
Q
134. Which command configures the router or switch to trust its internal time clock?
A. Router(config)#ntp server
B. Router(config)#ntp master
C. Router(config)#ntp clock source
D. Router(config)#ntp trusted
A
  1. B. The command ntp master configures the router or switch to trust its internal time clock
119
Q
  1. Which command will allow you to see if the router or switch is using NTP?
    A. Router#show clock detail B. Router#show ntp
    C. Router#show time
    D. Router#show time source
A
  1. A. The command show clock detail will result in either no time source or time source is NTP if the router or switch is configured to slave off a server for time.
120
Q
136. Which command will allow you to view the time details from a configured server?
A. Router#show clock detail
B. Router#show ntp detail
C. Router#show ntp associations detail
D. Router#show ntp skew
A
  1. C. The command show ntp associations detail will allow you to view the NTP clock details from the master NTP server.
121
Q
  1. Which protocol and port does NTP use for time synchronization?
    A. TCP/161 B. TCP/123 C. UDP/69
    D. UDP/123
A
  1. D. The Network Time Protocol uses UDP port 123 for time synchronization.
122
Q
138. Which command will help you diagnose if the router or switch is getting an answer back from an NTP server?
A. Router#show ntp
B. Router#show ip ntp
C. Router#debug ntp packets
D. Router#debug ntp messages
A
  1. C. The command debug ntp packets will allow you to verify packets received
    from an NTP server.
123
Q
  1. Which is a best practice for setting up NTP?
    A. Always configure the time source to a DNS address.
    B. Configure all devices to a public NTP server.
    C. Configure all devices to different NTP servers for redundancy.
    D. Configure all devices as master servers.
A
  1. A. A best practice is to configure the main router in your network to a known good trusted time source by its DNS address. All devices in your network should then be configured to point to this trusted router. All time sources should pyramid out from the central source of time in your network.
124
Q
  1. Which command will allow you to view the time drift observed by NTP?
    A. Router#show ntp
    B. Router#show ip ntp status C. Router#show ntp status
    D. Router#debug ntp drift
A
  1. C. The command show ntp status will allow you to see the current time source, the precision of the time source, and the drift from your internal time clock.