Chapter 5 - IP Multicast and Network Management Flashcards

Question 1

Q

What does IGMP stand for?

Interior Group Management Protocol
Internet Group Management Protocol
Interior Gateway Routing Protocol
Interior Gateway Media Protocol

Answer

A

B. You use IGMP between hosts and local routers to register with multicast groups.

Question 2

Q

How many bits are mapped from the Layer 3 IPv4 multicast address to a Layer 2 MAC address?

16 bits
23 bits
24 bits
32 bits

Answer

A

B. The lower 23 bits of the IP multicast address are mapped to the last 23 bits of the Layer 2 MAC address.

Question 3

Q

Which version of SNMP introduces security extensions for authentication and encryption?

SNMPv1
SNMPv2
SNMPv3
SNMPv4

Answer

A

C. SNMPv3 introduces authentication and encryption for SNMP.

Question 4

Q

Which SNMP component contains an agent?

Managed device
Agent
NMS manager
MIB

Answer

A

A. Managed devices contain SNMP agents.

Question 5

Q

Which of the following is correct regarding an OOB management network?

It can be used as a backup network.
It uses the same infrastructure as the primary network.
It uses a separate physical network.
It provides no segmentation.

Answer

A

C. An OOB management network uses separate infrastructure.

Question 6

Q

Which multicast protocol eliminates the RP and shared trees?

PIM-SM
BIDIR-PIM
SSM
MSDP

Answer

A

C. SSM eliminates the RPs and shared trees and only builds a SPT.

The Source Specific Multicast feature is an extension of IP Multicast where datagram traffic is forwarded to receivers from only those multicast sources to which the receivers have explicitly joined.

Question 7

Q

Which SNMP operation obtains full table information from an agent?

Get
GetNext
GetBulk
Inform

Answer

A

C. The NMS manager uses the GetBulk operation to retrieve large blocks of data, such as multiple rows in a table.

Question 8

Q

RMON1 provides information at what levels of the OSI model?

Data link and physical
Network, data link, and physical
Transport and network
Application to network

Answer

A

A. RMON1 is focused on the data link and physical layers of the OSI model.

Question 9

Q

Which of the following is not an SNMP operation?

Get
Community
Set
Trap

Answer

A

B. Community is not an SNMP operation.

Question 10

Q

Which are called shortest-path trees (SPTs)?

Source trees
Shared trees
Spanning trees
Routing trees

Answer

A

A. Source trees are also called shortest-path trees (SPTs) because they create paths without having to go through a rendezvous point (RP).

Question 11

Q

True or false: IGMP snooping and CGMP are methods to reduce the multicast traffic at Layer 2.

Answer

A

True.

IGMP snooping is an IP multicast constraining mechanism that runs on a Layer 2 LAN switch. IGMP snooping requires the LAN switch to examine, or “snoop,” some Layer 3 information (IGMP Join/Leave messages) in the IGMP packets sent between the hosts and the router.

When the switch receives the IGMP host report from a host for a particular multicast group, the switch adds the port number of the host to the associated multicast table entry. When the switch hears the IGMP Leave group message from a host, the switch removes the table entry of the host.

Question 12

Q

True or false: PIM has a hop count limit of 32.

Answer

A

False. PIM does not have a hop count limit. DVMRP has a hop count limit of 32.

The Distance Vector Multicast Routing Protocol (DVMRP) is a routing protocol used to share information between routers to facilitate the transportation of IP multicast packets among networks.

Question 13

Q

True or false: PIM-SM routers use the multicast address 224.0.0.13 to request a multicast group from the RP.

Question 14

Q

Match each IP multicast address with its description.
224.0.0.1
224.0.0.2
224.0.0.5
224.0.0.10
All OSPF routers
All routers
EIGRP routers
All hosts

Answer

A

i = D

ii = B

iii = A

iv = C

Question 15

Q

Match each IPv6 multicast address with its description.
FF02::1
FF02::2
FF02::5
FF02::9
FF02::A
OSPFv3 routers
RIPng routers
All routers
EIGRP routers
All nodes

Answer

A

FF02::1 - All nodes
FF02::2 - All routers
FF02::5 - All OSPF routers
FF02::9 - RIPng routers
FF02::A - EIGRP for IPv6 routers

Note: FF02 is the ‘link-local scope’

Remember that FF01 is the ‘interface-local scope’

Question 16

Q

PIM-SM is configured on the network. Which protocol prevents media streams from being broadcast on the access switch?

PIM-SM
RD
IGMPv3
Auto-RP
IGMP snooping

Answer

A

D.

Multicast PIM sparse mode requires an RP (Rendezvous Point) as a meeting point in the network for all multicast traffic. These RPs must be manually configured the on all routers.

Luyckily, there are two discovery protocols that we can use to automatically find an RP on the network:

Auto-RP
PIMv2 bootstrap router (BSR)

Auto-RP is a Cisco proprietary protocol that uses two different roles:

Candidate RP
Mapping Agent

The candidate RP is a router that announces itself that it wants to be an RP for the network. It does so by sending RP announcement packets to the 224.0.1.39 multicast address.

The mapping agent listens to the RP announcement packets from our RP candidates and makes a list of all possible RPs. It will then elect an RP and informs the rest of the network with RP mapping packets that are sent to multicast address 224.0.1.40.

Question 17

Q

CDP runs at what layer of the OSI model?

Answer

A

Data link layer.

Question 18

Q

What is the name of syslog level 5 severity?

Answer

A

Notice level.

“Ernie Always Cries, Even When Nobody Is Dying.”

Emergency, Alert, Critical, Error, Warning, Notification, Informational, Debug.

Question 19

Q

True or false: RMON provides more scalability than NetFlow.

Question 20

Q

True or false: NetFlow provides detailed information on the number of bytes and packets per conversation.

Question 21

Q

What information can be obtained from a neighbor by using CDP?

Answer

A

Device ID, IP address, capabilities, OS version, model number, and port ID.

Question 22

Q

What SNMP message is sent by an agent when an event occurs?

Get
Set
GetResponse
Trap

Answer

A

D. A trap message is sent by the agent when a significant event occurs.

Question 23

Q

What SNMP message is sent to an agent to obtain an instance of an object?

Get
Set
GetResponse
Trap

Answer

A

A. The NMS manager uses the Get operation to retrieve the value-specific MIB variable from an agent.

Question 24

Q

What SNMP message is used to configure a managed device?

Get
Set
GetResponse
Trap

Answer

A

B. The NMS manager uses the Set operation to set values of the object instance within an agent.

Question 25

Q

About how many facilities are available for syslog in Cisco routers?

25
100
500
1000

Answer

A

C. More than 500 syslog facilities can be configured on Cisco IOS.

Question 26

Q

Which SNMPv3 provides authentication with no encryption?

authPriv
authNoPriv
noAuthNoPriv
noauthPriv

Answer

A

B. At the authNoPriv level, authentication is provided, but encryption is not.

Question 27

Q

What encryption standard does SNMPv3 use?

3DES
CBC-DES
HMAC-MD5
MD5

Answer

A

B. CBC-DES is the encryption algorithm used by SNMPv3.

Question 28

Q

Which of the following are true about CDP? (Choose three.)

It uses UDP.
It is a data link protocol.
It provides information on neighboring routers and switches.
It is media and protocol independent.
It uses syslog and RMON.

Answer

A

B, C, and D.

Question 29

Q

RMON2 provides information at what levels of the OSI model?

Data link and physical
Network, data link, and physical
Transport and network only
Network to application

Answer

A

D. RMON2 provides monitoring information from the network to the application layers.

Question 30

Q

Which SNMPv3 level provides authentication and privacy?

authPriv
authNoPriv
noAuthNoPriv
noauthPriv

Answer

A

A. The authPriv level provides authentication and encryption.

Question 31

Q

Match each RMON group with its description.

Statistics
Matrix
Application Layer Host
protocoldir
Stores statistics for conversations between two hosts
Lists the protocols that the device supports
Contains real-time statistics for interfaces, including packets sent, bytes, CRC errors, and fragments
Contains application layer statistics for traffic sent to or from each host

Answer

A

i = C

ii = A

iii = D

iv = B

Question 32

Q

What is the most critical syslog priority level?

0
1
6
7

Answer

A

A. Syslog level 0 indicates an emergency and that the system is unusable.

Question 33

Q

Which management protocol can help a company concentrate on Layer 4 monitoring and gain information to assist in long-term trending analysis?

SNMPv3
RMON2
NetFlow
CDP
MIB

Answer

A

B. RMON2 allows for Layer 4 monitoring. NetFlow is not a long-term trending solution.

Question 34

Q

Which management protocol performs network traffic analysis?

SNMPv3
RMON2
NetFlow
CDP
MIB

Answer

A

C. NetFlow does network traffic analysis.

Question 35

Q

What virtual information store is used by SNMP?

SNMPv3
RMON2
ASN.1
CDP
MIB

Answer

A

E. MIB is the database that stores information.

Question 36

Q

What standard language is used by SNMP?
SNMPv3
RMON2
ASN.1
CDP
MIB

Answer

A

C. ASN.1 is used to define information being stored.

Question 37

Q

Which SNMPv3 method provides authentication but no encryption?

noAuthNoPriv
authPriv
authNoPriv
noauthPriv

Answer

A

C. authNoPriv provides authentication and no encryption.

Question 38

Q

Which is not an SNMP operation?

GetNext
Trap
Inform
Request
Community
GetBulk

Answer

A

D. Community is not an SNMP operation.

Question 39

Q

Which protocol allows for vendor-specific information?

SNMPv3
RMON2
ASN.1
CDP
MIB

Answer

A

E. Private MIBs can be used for vendor-specific information.

Question 40

Q

Which protocol allows for ISPs to bill customers for network usage?

SNMPv3
RMON2
NetFlow
CDP
MIB

Answer

A

C. NetFlow allows for network planning, traffic engineering, usage-based network billing, accounting, denial-of-service monitoring, and application monitoring. One big benefit is that NetFlow provides the data necessary for billing of network usage.

Question 41

Q

Which solution can be customized in each interface to include data timestamping across a large number of interfaces?

SNMPv3
RMON2
NetFlow
CDP
MIB

Answer

A

C. NetFlow can be configured to provide timestamped data on multiple interfaces.

Question 42

Q

Which of the following are components of Cisco NetFlow? (Choose three.)

NetFlow accounting
FlowCollector
NetFlow billing server
Network data analyzer
NetFlow traffic generator tool

Answer

A

A, B, and D. NetFlow consists of three major components: NetFlow accounting, flow collector engines, and network data analyzers.

Question 43

Q

What is multicast RPF information used for?

To enable forwarding loops
To prevent forwarding loops
To reverse forwarding loops
None of the above

Answer

A

B. Multicast RPF is used to prevent forwarding loops.

Question 44

Q

In PIM-SM, which router knows about all sources in the network?

The IGMP router
The RP source hop router
The RP
The SSM router

Answer

A

C. The RP knows of all sources in the network.

Question 45

Q

What does (*,G) mean?

From any source to the global group
From source G to any group
From any source to group G
From *.* to group G

Answer

A

C. (*,G) means any source to group G.

Question 46

Q

What are two benefits of BIDIR-PIM?

No packets are encapsulated and there are no (S,G) states.
The first packets from the source are not encapsulated and there are no (S,G) states.
All packets are encapsulated and there are no (*,G) states.
The last packets are not encapsulated and there are no (*,G) states.

Answer

A

B. With BIDIR-PIM, the first packets from the source are not encapsulated, and there are no (S,G) states. (Video-conferencing is a good use case.)

Bidirectional PIM is a different flavor of multicast than what you are probably used to (sparse, dense and sparse-dense mode). Most multicast networks have a couple of sources and many receivers. Bidirectional PIM has been invented for networks where we have many sources and receivers talking to each other. An example of this is videoconferencing where it’s not just 1 source with many listeners but all the participants are communicating with each other.

The downside of using PIM sparse mode with many active sources and receivers is that we will see many mroute state entries that can take quite some resources. Using PIM sparse mode the RP builds 2 entries:

(*,G)

(S,G)

When we use PIM bidirectional mode the RP will never build a (S,G) entry and we only allow the (*,G) entry for the shared tree. PIM routers will never build the SPT (Shortest Path Tree) towards the source.

Another difference between PIM sparse mode and PIM bidirectional mode is that with sparse mode traffic only flows down the shared tree. Using PIM bidir mode traffic will flow up and down the shared tree! Also PIM bidirectional does not use the PIM register / register-stop mechanism to register sources to the RP. Each source is able to start sending to the source whenever they want.

When the multicast packets arrive at the RP they will be forwarded down the shared tree (if there are receivers) or dropped (when we don’t have receivers). There is however no way for the RP to tell the source to stop sending multicast traffic.

Design-wise you really have to think about where to place the RP in your network as it should be somewhere in the middle between the sources and receivers in the network.

Last but not least…PIM bidirectional has no RPF check. There is a different solution to prevent loops, we will use a DF (Designated Forwarder). This designated forwarder is the only router on the segment that is allowed to send multicast traffic towards the RP. When there is only 1 router per segment that forwards multicast traffic there will be no loops.

Question 47

Q

When is SSM recommended?

For broadcast applications
For well-known sources
For well-known receivers
For nonbroadcast applications
Answers A and B
Answers B and D

Answer

A

E. SSM is recommended for broadcast applications and well-known sources.

Question 48

Q

What solution used to interconnect PIM-SM domains is recommended?

BIDIR-PIM
SSM
MSDP
Auto-RP

Answer

A

C. MSDP is used to interconnect PIM-SM domains.

MSDP is a mechanism to connect multiple PIM-SM domains. The purpose of MSDP is to discover multicast sources in other PIM domains. The main advantage of MSDP is that it reduces the complexity of interconnecting multiple PIM-SM domains by allowing PIM-SM domains to use an interdomain source tree (rather than a common shared tree). When MSDP is configured in a network, RPs exchange source information with RPs in other domains. An RP can join the interdomain source tree for sources that are sending to groups for which it has receivers. The RP can do that because it is the root of the shared tree within its domain, which has branches to all points in the domain where there are active receivers. When a last-hop router learns of a new source outside the PIM-SM domain (through the arrival of a multicast packet from the source down the shared tree), it then can send a join toward the source and join the interdomain source tree.

Question 49

Q

Which Layer 2 CoS classification should be assigned to network management traffic?

2
3
5
6
40

Answer

A

A. Network management traffic should be assigned CoS of 2.

Question 50

Q

What solution eliminates the RPs and shared trees and only builds an SPT?

BIDIR-PIM
SSM
MSDP
Auto-RP

Answer

A

B. SSM eliminates the RPs and shared trees of sparse mode and only builds an SPT.

Question 51

Q

Multicast addressing uses Class D addresses from the IPv4 protocol. Class D addresses range from ________ to __________.

Answer

A

Multicast addressing uses Class D addresses from the IPv4 protocol. Class D addresses range from 224.0.0.0 to 239.255.255.255.

Question 52

Q

What do the following multicast addresses reach?

0.0.1
0.0.2
0.0.5
0.0.6
0.0.9
0.0.10

Answer

A

.1 - All hosts or all systems on the subnet

.2 - All multicast routers

.5 - All OSPF routers

.6 - All OSPF DR routers

.9 - RIPv2 routers

.10 - EIGRP routers

Question 53

Q

What does IGMP stand for? What entities use it for communication with respect to multicast?

Answer

A

Internet Group Management Protocol (IGMP) is the protocol used in multicast implementations between the end hosts and the local router.

Question 54

Q

IP hosts use IGMP to report their multicast group memberships to _______.

Answer

A

IP hosts use IGMP to report their multicast group memberships to routers.

Question 55

Q

T/F: IGMP messages are limited to the local interface and are not routed.

Question 56

Q

T/F: You enable IGMP on an interface when you enable a multicast routing protocol, such as PIM. You can configure the interface for IGMPv1, IGMPv2, or IGMPv3.

Question 57

Q

T/F: IGMPv3 provides the extensions required to support Source-Specific Multicast (SSM). It is designed to be backward compatible with the two earlier versions of IGMP.

Question 58

Q

IGMPv3 has two message types, plus three for backward compatibility. Matchy-matchy time.

Membership query:
Version 3 membership report:
Version 2 membership report:
Version 2 leave group:
Version 1 membership report:
Used for backward compatibility with IGMPv1 hosts.
Sent to the group address with the multicast group members (IP addresses). It is sent by hosts to request and remain in multicast groups on the segment. It is always sent to multicast 224.0.0.22.
Sent by the hosts to indicate that a host will leave a group, to destination 224.0.0.2. The message is sent without having to wait for the IGMPv2 membership report message. This message is used for backward compatibility with IGMPv2 hosts.
Sent to the group address with the multicast group members (IP addresses). It is sent by hosts to request and remain in multicast groups on the segment. It is sent to the multicast group address. This message is used for backward compatibility with IGMPv2 hosts.
Sent by the router to check that a host wants to join a group.

Answer

A

IGMPv3 has two message types, plus three for backward compatibility:

Membership query: Sent by the router to check that a host wants to join a group.

Version 3 membership report: Sent to the group address with the multicast group members (IP addresses). It is sent by hosts to request and remain in multicast groups on the segment. It is always sent to multicast 224.0.0.22.

Version 2 membership report: Sent to the group address with the multicast group members (IP addresses). It is sent by hosts to request and remain in multicast groups on the segment. It is sent to the multicast group address. This message is used for backward compatibility with IGMPv2 hosts.

Version 2 leave group: Sent by the hosts to indicate that a host will leave a group, to destination 224.0.0.2. The message is sent without having to wait for the IGMPv2 membership report message. This message is used for backward compatibility with IGMPv2 hosts.

Version 1 membership report: Used for backward compatibility with IGMPv1 hosts.

Question 59

Q

What is IGMP Snooping?

Answer

A

IGMP snooping is a standards-based method for switches to control multicast traffic at Layer 2.

Question 60

Q

Fact: IGMP Snooping listens to IGMP messages between the hosts and routers.

If a router or an IGMP querier host sends an IGMP query message, the switch adds the host to the _________ group and permits that port to receive ________ traffic.

The port is removed from ________ traffic if the host sends an IGMP leave message to the router.

Answer

A

multicast, multicast, multicast!

Question 61

Q

What is the disadvantage of IGMP snooping?

Answer

A

The disadvantage of IGMP snooping is that it has to process every IGMP control message, which can impact the CPU utilization of the switch.

Question 62

Q

Multicast destinations are represented in the following form:

(*,G): This means ________________________.
(S,G): This means ________________________.

Answer

A

IP multicast traffic for a particular (source, destination group) multicast pair is transmitted from the source to the receivers using a spanning tree from the source that connects all the hosts in the group.

Multicast destinations are represented in the following form:

(*,G): This means any source is sending to group G.
(S,G): This means source S is sending to group G.

Question 63

Q

In an multicast transmission like (S,G), what type of address is S and what type is G?

Answer

A

Any multicast transmission has a Class D multicast group address, G.

A multicast group can have more than one source, and each such source will also have a “regular” (Class A, B, or C or CIDR) Internet address, S.

Question 64

Q

T/F: Each destination host registers itself as a member of interesting multicast groups through the use of PIM.

Answer

A

False.

Each destination host registers itself as a member of interesting multicast groups through the use of IGMP.

Answer 59

A

Protocol-Independent Multicast–Dense Mode (PIM-DM)

Answer 60

A

True.

This approach to multicast routing assumes that multicast group members are sparsely distributed throughout the network, that not all devices want to receive multicast traffic, and that bandwidth is not necessarily widely available.

Answer 61

A

Protocol- Independent Multicast–Sparse Mode (PIM-SM)

Answer 62

A

The two types of distribution trees are source and shared.

Answer 63

A

True.

Source trees are also called shortest-path trees (SPTs) because they create paths without having to go through a rendezvous point (RP).

With source trees, the tree roots from the source of the multicast group and then expands throughout the network in spanning-tree fashion to the destination hosts.

Answer 64

A

The drawback is that all routers through the path must use memory resources to maintain a list of all multicast groups.

Answer 65

A

PIM-DM uses a source-based tree.

Answer 66

A

True.

The root is called the RP, the Rendezvous Point.

Answer 67

A

The tree is created from the RP in spanning-tree fashion with no loops.

Sources initially send their multicast packets to the RP, which, in turn, forwards data to the member of the group in the shared tree.

Answer 68

A

The advantage of shared trees is that they reduce the memory requirements of routers in the multicast network.

Answer 69

A

PIM-SM uses shared trees and RPs to reach widely dispersed group members with reasonable protocol bandwidth efficiency.

PIM-DM uses source trees and reverse path forwarding (RPF) to reach relatively close group members with reasonable processor and memory efficiency in the network devices of the distribution trees.

Answer 70

A

True.

With RPF, Reverse Path Forwarding, received multicast packets are forwarded out all other interfaces, allowing the data stream to reach all segments.

If no hosts are members of a multicast group on any of the router’s attached or downstream subnets, the router sends a prune message up the distribution tree (the reverse path) to tell the upstream router not to send packets for the multicast group.

So, the analogy for PIM-DM is the push method for sending junk mail, and the intermediate router must tell upstream devices to stop sending it.

Answer 71

A

PIM-SM assumes that no hosts want to receive multicast traffic unless it is specifically requested.

Answer 72

A

With PIM-SM, the RP gathers the information from senders and makes the information available to receivers.

Answer 73

A

True.

The end-host receivers request multicast group membership using IGMP with their local last-hop routers. The routers serving the end systems then register as traffic receivers with the RPs for the specified group in the multicast network. Senders register with the RP via the first-hop router.

Answer 74

A

False. Different multicast groups can use separate RPs within a PIM domain.

Answer 75

A

A designated router is selected in multiaccess segments running PIM.

The PIM DR is responsible for sending join, prune, and register messages to the RP.

The PIM router with the highest IP address is selected as the DR.

Answer 76

A

When a client requests to join a multicast group and that group is not in the multicast table, the router adds the interface to the multicast table and sends a join message to the RP with multicast address 224.0.0.13 (all PIM routers) requesting the multicast group.

Answer 77

A

When a PIM-SM does not have any more multicast receiving hosts or receiving routers out any of its interfaces, it sends a prune message to the RP.

The prune message includes the group to be pruned or removed.

Answer 78

A

True.

This process is called auto-RP.

Answer 79

A

Candidate RPs send their announcements to RP mapping agents with multicast address 224.0.1.39

The 224.0.1.40 address used in auto-RP discovery is the destination address for messages from the RP mapping agent to discover candidates.

Answer 80

A

Source-Specific Multicast (SSM) is a variant of PIM-SM that builds trees that are rooted in just one source. SSM, defined in RFC 3569, eliminates the RPs and shared trees of sparse mode and only builds an SPT. SSM trees are built directly based on the receipt of group membership reports that request a given source. SSM is suitable for when well-known sources exist within the local PIM domain and for broadcast applications.

Answer 81

A

Bidirectional PIM (BIDIR-PIM) is a variant of PIM-SM that builds bidirectional shared trees connecting multicast sources and receivers. It never builds a shortest path tree, so it scales well because it does not need a source-specific state.

BIDIR-PIM eliminates the need for a first-hop route to encapsulate data packets being sent to the RP. BIDIR-PIM dispenses with both encapsulation and source state by allowing packets to be natively forwarded from a source to the RP using shared tree state.

Answer 82

A

Multicast Source Discovery Protocol (MSDP) is used to interconnect multiple PIM-SM domains. MSDP reduces the complexity of interconnecting multiple PIM-SM domains by allowing the PIM-SM domains to use an interdomain source tree.

With MSDP, the RPs exchange source information with RPs in other domains.

Answer 83

A

FF01::1 All nodes (node-local)

FF02::1 All nodes (link-local)

FF01::2 All routers (node-local)

FF02::2 All routers (link-local)

FF02::5 OSPFv3 routers

FF02::6 OSPFv3 DRs

FF02::9 Routing Information Protocol (RIPng)

FF02::A EIGRP routers

FF02::B Mobile agents

FF02::C DHCP servers/relay agents

FF02::D All PIM routers

Answer 84

A

True.

An in-band solution is not segmented from the primary traffic and address bandwidth usage.

For in-band network management, the IP subnet used is part of the internal routing domain and is trunked like any other VLAN in the network.

One common solution is to use a loopback address for network management, separate from the loopback address used for routing.

Answer 85

A

A Management Information Base (MIB) is a collection of information that is stored on the local agent of a managed device.

MIBs are organized hierarchically and are accessed by the NMS. MIBs are databases of objects organized in a tree-like structure, with each branch containing similar objects.

Answer 86

A

Each object has an object identifier (number) that uniquely identifies the managed object of the MIB hierarchy. Read and write community strings are used to control access to MIB information.

Answer 87

A

Standard MIBs are defined by RFCs.

Vendors define private branches that include managed objects for their products

Answer 88

A

Each manageable feature in the MIB is called an MIB variable.

Answer 89

A

The NMS manager uses the Get operation to retrieve the value-specific MIB variable from an agent. The GetNext operation is used to retrieve the next object instance in a table or list within an agent. The GetResponse contains the value of the requested variable.

Answer 90

A

The NMS manager uses the Set operation to set values of the object instance within an agent. For example, the Set operation can be used to set an IP address on an interface or to bring an interface up or down.

Agents use the Trap operation to inform the NMS manager of a significant alarm event. For example, a trap is generated when a WAN circuit goes down.

Answer 91

A

GetBulk: Reduces repetitive requests for MIB variables.The NMS manager uses the GetBulk operation to retrieve large blocks of data, such as multiple rows in a table. This is more efficient than repeating GetNext commands.
Inform Request: Alerts an SNMP manager about specific conditions with confirmation. The Inform operation allows one NMS manager to send trap information to other NMS managers and to receive information. The difference between Inform Request and Trap is that Inform Request requires an acknowledgement.

Answer 92

A

Get Request - Retrieves the value of a specific MIB variable.

Get Response - Contains the values of the requested variable.

Set Request - Modifies the value of a MIB variable

Trap - Transmits an unsolicited alarm condition.

GetBulk - Reduces repetitive requests for MIB variables

GetNext Request - Retrieves the next issuance of the MIB variable.

Inform Request - Alerts an SNMP manager about specific conditions with a confirmation.

.

Answer 93

A

False.

SNMPv3 also verifies each message to ensure that it has not been modified during transmission. SNMPv3 removes the use of community-based authentication strings sent in plaintext over the network.

Answer 94

A

SNMPv3 introduces three levels of security:

noAuthNoPriv: No authentication and no encryption
authNoPriv: Authentication and no encryption
authPriv: Authentication and encryption

Answer 95

A

Authentication for SNMPv3 is based on the Hash-Based Message Authentication Code–Message Digest 5 (HMAC-MD5) and HMAC–Secure Hash (HMAC-SHA) algorithms.

The Cipher Block Chaining–Data Encryption Standard (CBC-DES) standard is used for encryption.

Answer 96

A

See attached diagram.

Answer 97

A

Remote Monitoring (RMON) is a standard monitoring specification that enables network monitoring devices and console systems to exchange network monitoring data.

RMON looks at MAC-layer data and provides aggregate information on the statistics and LAN traffic.

RMON provides more information than SNMP, but it also requires more sophisticated data collection devices (network probes).

Answer 98

A

True.

Cisco Discovery Protocol (CDP) is a Cisco-proprietary protocol that can be used to discover only Cisco network devices. CDP is media and protocol independent, so it works over Ethernet, Frame Relay, ATM, and other media.

Answer 99

A

True.

Disable CDP on interfaces for which you do not want devices to be discovered, such as Internet connections.

Answer 100

A

Link Layer Discovery Protocol (LLDP), defined in the IEEE 802.1AB (LLDP) specification, is an option for discovering network devices in multivendor networks.

LLDP performs functions similar to those of CDP. With LLDP, devices send information at a fixed interval from each of their interfaces in the form of an Ethernet frame with Ethertype 0x88CC

Answer 101

A

Ernie Always Cries Even When Nobody Is Dying.

0 Emergency

1 Alert

2 Critical

3 Error

4 Warning

5 Notice

6 Informational

7 Debug

Brainscape's Knowledge GenomeTM

Chapter 5 - IP Multicast and Network Management Flashcards

Brainscape's Knowledge Genome^TM