Chapter 7 - Infrastracture Management

Question 1

1. Which version of Simple Network Management Protocol (SNMP) supports the Inform SNMP message?
   A. SNMP version 1 B. SNMP version v2 C. SNMP version 2c
   D. SNMP version 3

Answer 1

1. C. The introduction of SNMP version 2c added the Inform and Get-bulk messages for SNMP.

Question 2

2. Which protocol and port number does SNMP use for polling from the NMS?
   A. UDP/161 B. TCP/162 C. UDP/162
   D. UDP/514

Answer 2

2. A. SNMP uses UDP port 161 for communication from an SNMP network management station to a network device for information requests.

Question 3

3. Which version of SNMP offers authentication and encryption?
   A. SNMP version 1 B. SNMP version 2e C. SNMP version 2c
   D. SNMP version 3

Answer 3

3. D. SNMP version 3 introduced message integrity, authentication, and encryption to the SNMP suite.

Question 4

4. What is the database of variables that SNMP uses to allow for collection of data called?
   A. Object identifiers
   B. Management information base C. SNMPagent
   D. SNMPcommunity

Answer 4

4. B. The management information base, or MIB, is a database of variables in which SNMP allows retrieval of information. The attributes in the MIB are the description, variable type, and read-write status.

Question 5

5. What is the component that an SNMP agent sends information to?
   A. Syslog
   B. Network management station C. Object identifier
   D. Management Information Base

Answer 5

5. B. The network management station (NMS) is a server to which SNMP is polled back or in which SNMP information is trapped. The NMS can escalate problems via email, text message, or even visual indicators. Examples of NMS systems are Tivoli Netcool and OpenNMS.

Question 6

6. What type of SNMP message is sent to a network management station when an interface goes down?
   A. Get-request message B. Get-response message C. Set-request message
   D. Trapmessage

Answer 6

6. D. Trap messages are sent from the network device to the SNMP network management station when an event has triggered over a set threshold on the device. An example of an event to be trapped is an interface going down or a restriction by port security.

Question 7

7. Which of the following is a hierarchical set of variables that make up the management information base?
   A. Object IDs
   B. The SNMP community C. The SNMP agent
   D. SNMPmessages

Answer 7

7. A. Object IDs are the variables that make up the management information base. Each object has a unique ID in a hierarchical format in the form of a tree. As an example, 1.3.6.1.4.9.2.1.58.0 is the object that holds the router CPU utilization variables

Question 8

8. What is the difference between trap messages and inform messages for SNMP?
   A. Trap messages are always encrypted.
   B. Inform messages do not use acknowledgment. C. Trap messages always use acknowledgment.
   D. Inform messages always use acknowledgment.

Answer 8

8. D. Inform messages differ from trap messages with respect to acknowledgment. Trap messages employ a best effort delivery utilizing UDP. Inform messages employ acknowledgment; while they use the User Datagram Protocol (UDP), they rely on the Application layer for acknowledgment.

Question 9

9. Which security method does SNMP version 2c employ?
   A. Encryption
   B. Userauthentication C. Community strings
   D. Message integrity

Answer 9

9. C. SNMP version 2c is identical to SNMP version 1 with respect to security. Both transmit information in clear text and use the security of community strings to authenticate users for access to information.

Question 10

10. Which command will configure the SNMP agent with a read-only community of “snmpreadonly”?
    A. Switch(config)#snmp-agent community snmpreadonly ro
    B. Switch(config)#snmp-server snmpreadonly ro
    C. Switch(config)#ip snmp-server community snmpreadonly ro
    D. Switch(config)#snmp-server community snmpreadonly read-only

Answer 10

10. D. The command snmp-server community snmpreadonly ro will configure the SNMP agent with a community of “snmpreadonly” and set it to read only.

Question 11

11. Which of the following can be used in conjunction with an SNMP agent
    configuration for added security? A. Encryptedcommunities
    B. Access control lists
    C. SNMP callback security
    D. SHA-256

Answer 11

11. B. Standard access control lists can be used in conjunction with the SNMP agent configuration. First a standard ACL is created containing the NMS IP. Then, when the snmp-server command is used, it becomes the last argument. For example, a standard ACL of 2 would be added as follows: snmp-server community snmpreadonly read-only

Question 12

12. Which command will allow you to configure contact information for SNMP for Sybex Publishing?
    A. Switch(config)#snmp-agent location main-idf4-ru23
    B. Switch(config)#snmp-server contact Sybex Publishing
    C. Switch(config)#snmp-server contact-info Sybex Publishing
    D. Switch(config)#snmp contact Sybex Publishing

Answer 12

12. B. The command snmp-server contact Sybex Publishing will configure the contact information for the device. This information is polled into the network management station along with the snmp-server location. It is used in case of an outage so that the responsible person can be notified.

Question 13

13. Which command(s) will configure SNMPv2c to trap messages to a network
    management station in the event of component failure?
    A. Switch(config)#snmp-server 192.168.1.5 version 2c C0mmun1ty
    Switch(config)#snmp-server enable traps
    B. Switch(config)#snmp-server host 192.168.1.5 version 2c Switch(config)#snmp-server enable traps
    C. Switch(config)#snmp-server host 192.168.1.5 version 2c C0mmun1ty Switch(config)#snmp-server enable traps
    D. Switch(config)#snmp contact trap 192.168.1.5 version 2c

Answer 13

13. C. The command snmp-server host 192.168.1.5 version 2c C0mmun1ty will configure the SNMP agent to send traps to the host 192.168.1.5. The version 2c C0mmun1ty sets the SNMP version to 2c and the community to “C0mmun1ty”.

Question 14

14. Which command will allow you to verify the configured ACL applied to the SNMP
    agent?
    A. Switch#show snmp
    B. Switch#show snmp community C. Switch#show snmp acl
    D. Switch#show ip interface

Answer 14

14. B. The command show snmp community will display all of the configured SNMP community strings along with the applied access control list.

Question 15

15. Which protocol and port number does SNMP use for trap and inform messages to
    the NMS?
    A. UDP/161 B. TCP/162 C. UDP/162
    D. UDP/514

Answer 15

15. C. SNMP uses UDP port 162 for communication from an SNMP agent to the network management station for trap and inform messages.

Question 16

16. Which command will allow you to verify the network management station that is configured to receive trap notifications?
A. Switch#show snmp
B. Switch#show snmp community
C. Switch#show snmp host
D. Switch#show snmp notifications

Answer 16

16. C. The command show snmp host will display the host that is configured to receive notifications of trap or inform messages from the router or switch.

Question 17

17. When you configure SNMPv3 for a restricted OID, what is the first step? A. Configuring a group
    B. Configuring a view
    C. Configuring a user
    D. Configuring a community

Answer 17

17. B. When you begin to configure SNMPv3 for a restricted OID, the first step is configuring a view. The view allows or restricts what the user will have access to.

Question 18

18. When you configure an SNMPv3 group, which parameter will configure authentication and encryption of data?
    A. auth B. noauth C. priv
    D. enc

Answer 18

18. C. When you’re configuring the SNMPv3 group, the priv parameter will configure privacy, which defines authentication and encryption. An example of the command is snmp-server group1 v3 priv read view1 access read.

Question 19

19. Which command will configure an SNMP view named INT-VIEW, which will
    include the ifIndex OID?
    A. Switch(config)#snmp-server view INT-VIEW ifIndex include
    B. Switch(config)#snmp-server v3 view INT-VIEW ifIndex include C. Switch(config)#snmp-server view INT-VIEW ifIndex
    D. Switch(config)#snmp-server INT-VIEW ifIndex

Answer 19

19. A. The command snmp-server view INT-VIEW ifIndex include will configure an SNMPv3 view named INT-VIEW. The two parameters ifIndex include will include the ifIndex OID. This can also be expressed as the numerical OID four, but if it is expressed in word form, it is case sensitive.

Question 20

20. Which command will allow you to verify a user’s authentication and encryption
    settings for SNMPv3?
    A. Switch#show user auth B. Switch#show user priv C. Switch#show snmp user
    D. Switch#show snmp user auth

Answer 20

20. C. The command show snmp user will display all SNMPv3 users. In the output you will find the group name, the authentication protocol, and the encryption protocol.

Question 21

21. Which command will allow you to verify the view associated with a group?
A. Switch#show group view
B. Switch#show snmp group
C. Switch#show snmp group view
D. Switch#show snmp group-view

Answer 21

21. B. The command show snmp group will display all SNMPv3 groups. In the output, you will find the group name and the defined read view, write view, and notify view.

Question 22

22. Which protocol and port number does syslog use?
    A. UDP/161 B. TCP/162 C. UDP/162
    D. UDP/514

Answer 22

22. D. The router or switch sends syslog messages to the syslog server on port 514 with UDP.

Question 23

23. Which command will configure all event logs to be sent to a syslog server? A. Router(config)#logging server 192.168.1.6
    B. Router(config)#logging 192.168.1.6
    C. Router(config)#logging host 192.168.1.6
    D. Router(config)#syslog server 192.168.1.6

Answer 23

23. C. The command logging host 192.168.1.6 will configure all logs to be sent to the syslog server 192.168.1.6

Question 24

24. Which command will allow you to verify the syslog server set for logging and the
    logging level set?
    A. Router#show logging
    B. Router#show syslog
    C. Router#show log-server D. Router#show ip logging

Answer 24

24. A. The command show logging will display the configured syslog server and the current severity level, for logs to be sent to the syslog server.

Question 25

25. Which command will configure the severity level of syslog events that will be sent to the syslog server for debugging?
A. Router(config)#syslog debugging
B. Router(config)#logging debugging
C. Router(config)#logging trap debugging
D. Router(config)#log-level debugging

Answer 25

25. C. The command logging trap debugging will configure syslog events to be sent to the syslog server for the severity levels of debugging(7) through emergency(0).

Question 26

26. What is a service-level agreement (SLA) for network connectivity?
    A. It is an agreement of bandwidth between the ISP and the customer.
    B. It is a quality of service agreement between the ISP and the customer. C. It is an agreement of uptime between the ISP and the customer.
    D. All of the above

Answer 26

26. D. A service-level agreement (SLA) is a contracted agreement between the Internet service provider (ISP) and the customer. This agreement defines the level of service. SLAs are based on uptime, quality of service, bandwidth, and any other stipulations the customer might deem necessary. Uptime is usually the most important when shopping for a provider.

Question 27

27. Which feature in Cisco routers can a network administrator use to check the provider’s SLA?
A. IPSLA
B. Syslog
C. ACLsandpolicy-basedrouting
D. SNMP

Answer 27

27. A. The IP service-level agreement (IP SLA) feature in a Cisco router provides the network administrator with statistics on the performance, uptime, and monitoring of the provider’s network connections.

Question 28

28. On which device(s) can you configure the Cisco IP SLA feature to allow for statistics’ collection?
    A. Routers and switches B. Switches only
    C. Routers only
    D. Router, switches, and all other Cisco devices

Answer 28

28. C. Only Cisco routers contain the IP SLA feature; therefore, it can only be configured on Cisco routers for statistic collection. Switches with the LAN Base feature set can be used as responders, but they will lack the ability for the statistic collection.

Question 29

29. Which type of IP SLA check does not require an SLA responder?
    A. UDPjitterprobe B. VoIPjitterprobe C. ICMP echo probe
    D. MPLSprobe

Answer 29

29. C. The IP SLA responder in not required for ICMP echo testing. However, having an IP SLA responder allows for collection of more statistics.

Question 30

30. What is the term used for the IP SLA router that sends packets and collects and compiles statistics on the packets?
    A. IPSLAresponder B. IPSLAsender
    C. IPSLAcollector
    D. IPSLAsource

Answer 30

30. D. The term used for the IP SLA router that sends packets and collects and compiles statistics on the packet is IP SLA source. The IP SLA source sends these packets to the IP SLA responder.

Question 31

31. Which command(s) will configure an IP SLA for ICMP echo probe?
    A. Router(config)#ip sla icmp-echo 192.168.1.2
    B. Router(config)#ip sla 1
    Router(config-ip-sla)#icmp-echo 192.168.1.2
    C. Router(config)#ip sla 1 Router(config-ip-sla)#icmp 192.168.1.2
    D. Router(config)#ip sla 1 icmp-echo 192.168.1.2

Answer 31

31. B. When you’re configuring an IP SLA for ICMP echo, the first statement, ip sla 1, will configure the IP SLA operation. This command will present an IP SLA sub- configuration prompt, where you will enter icmp-echo 192.168.1.2. This command configures the ICMP echo probe to a destination of 192.168.1.2

Question 32

32. What is the default timer (frequency) for an IP SLA ICMP echo probe?
    A. 60seconds B. 120seconds C. 60minutes
    D. 5 minutes

Answer 32

32. A. The default timer for an IP SLA ICMP echo probe is 60 seconds. This can be overridden with the frequency {time in seconds} command.

Question 33

33. Which command will configure an IP SLA schedule for a probe?
    A. Router(config-ip-sla)#ip sla schedule life forever start-time now B. Router(config)#ip sla 1 schedule life forever start-time now
    C. Router(config)#ip sla 1 schedule forever start-time now
    D. Router(config)#ip sla 1 schedule life start-now

Answer 33

33. B. The command ip sla 1 schedule life forever start-time now will configure the IP SLA operation of 1 to run forever and start immediately. Using this command, you could create a schedule to start the probe during business hours and run it for a finite period of time. This command must be configured in global config mode.

Question 34

34. Which command will allow you to view the statistics of an IP SLA ICMP echo
    probe for all configured buckets? A. Router#show ip sla
    B. Router#show ip sla statistics 1 C. Router#show ip sla history 1
    D. Router#show sla summary

Answer 34

34. C. The command show ip sla history 1 will display the historical statistics collected from the ICMP echo probe for IP SLA operation 1. The command will allow you to see all of the buckets that were collected. The command ip sla statistics 1 will only show the last collected bucket’s statistical summary.

Question 35

35. You have running on your router an IP SLA ICMP echo probe that checks the ISP connection. When you view the historical statistics, you notice that several of the tests in the probe have a result of 4 in the Sense column. What happened during those tests?
    A. The test for the probe ran successfully.
    B. The test for the probe did not receive a response. C. The test for the probe exceeded a set threshold.
    D. The test for the probe was out of sequence.

Answer 35

35. B. The Sense column of the statistics is the result code for the test. There are 10 different response codes, but only a few should be remembered. A result code of 1 means the test was OK, a result of 3 means the test was over the threshold, and a result code of 4 means the operation timed out and a response was not received.

Question 36

36. Which command will allow you to verify the size of storage for flash as well as how much free space is available?
    A. Switch#show storage
    B. Switch#show file storage C. Switch#show file systems
    D. Switch#show file free

Answer 36

36. C. The command show file systems will display all of the file storage types connected to the switch or router. In this output, the size in bits and the free space in bits will be displayed.

Question 37

37. Where is the startup-config stored?
    A. Flash
    B. NVRAM C. System
    D. RAM

Answer 37

37. B. The start-configuration for the router or switch is stored in non-volatile random-access memory (NVRAM). This memory is similar to flash memory in that it retains data well after the power is removed from the device.

Question 38

38. If power is lost, which command will retain the configuration for bootup?
    A. Router#copy running-config startup-config
    B. Router#save running-config
    C. Router#cp running-config startup-config
    D. Router#write running-config startup-config

Answer 38

38. A. The command copy running-config startup-config will copy the running- config in RAM to the startup-config in NVRAM.

Question 39

39. You need to decommission a router. You want to clear only the configuration off
    the router. Which command will achieve this? A. Router#clear startup-config
    B. Router#format flash:
    C. Router#format startup-config
    D. Router#erase startup-config

Answer 39

39. D. The command erase startup-config will erase the startup-config from NVRAM. The only copy left after that command is configured is in RAM. Once the power is removed, the RAM will be erased as well.

Question 40

40. Which command will allow you to verify the IOS images you have on the flash file
    system?
    A. Router#show flash: filesystem
    B. Router#show boot C. Router#dir flash: D. Router#dir /flash

Answer 40

40. C. The command dir flash: will display all of the IOS images stored in the flash filesystem. The command show flash: will work also, but read-write attributes will be omitted.

Question 41

41. Which command will back up the startup-config for a device to a server? A. Switch#archive startup-config tftp:
    B. Switch#backup startup-config tftp://192.168.1.2 C. Switch#copy startup-config tftp:
    D. Switch#copy startup-config server:

Answer 41

41. C. The command copy startup-config tftp: will ask for the Trivial File Transfer Protocol (TFTP) server address, source filename, and destination filename. It will then proceed to copy the file over the network to the TFTP server.

Question 42

42. Which command will restore configuration to the running-config for a device from
    a server?
    A. Switch#archive tftp: running-config
    B. Switch#restore tftp://192.168.1.2 running-config C. Switch#copy tftp: running-config
    D. Switch#copy server: running-config

Answer 42

42. C. The command copy tftp: running-config will ask for the TFTP server address, source filename, and destination filename. It will then proceed to copy the file over the network from the TFTP server.

Question 43

43. You have been given the task of mapping a network. You have several routers and
    switches that are interconnected. Which Cisco tool will help you map the network? A. CDP
    B. Running-config
    C. OSPF neighbor table
    D. EIGRPneighbortable

Answer 43

43. A. All Cisco devices by default participate in the Cisco Discovery Protocol (CDP). By using CDP, you can begin mapping the network one node at a time, discovering all the nodes attached.

Question 44

44. You are contracted to fix a networking issue. The technical staff has given you the network logins for all the routers and switches. You discover that the problem is not on the router you are connected to but on a neighboring router. How can you obtain the management IP address of the neighboring router?
    A. RouterA#show ip route
    B. RouterA#show ip interface C. RouterA#show ip protocols
    D. RouterA#show cdp neighbors detail

Answer 44

44. D. The command show cdp neighbors detail will display the IP addresses of the routers and switches connected to the current router. The show ip route command will only show the data plane IP addresses and not the management plane IP addresses.

Question 45

45. You have neighboring equipment on the switch that is running LLDP. Which command(s) will allow you to see the neighboring equipment’s management IP addresses?
    A. Switch(config)#enable lldp Switch(config)#exit Switch#show lldp neighbors
    B. Switch(config)#lldp run Switch(config)#exit Switch#show lldp neighbors
    C. Switch#show lldp neighbors
    D. Switch(config)#enable lldp Switch(config)#exit Switch#show lldp neighbors
    detail
    detail detail

Answer 45

45. B. By default, Cisco devices do not participate in Link Layer Discovery Protocol (LLDP). The first command that needs to be configured is lldp run, which starts the switch participating in LLDP. You then need to enter the command show lldp neighbors detail in the privileged exec mode prompt. This command will show all of the neighboring LLDP devices.

Question 46

46. What is the term used to describe Cisco’s current IOS image naming convention, which contains all the feature sets and is licensed upon feature use?
    A. Universal image B. Unifiedimage C. Fusion image
    D. Central image

Answer 46

46. A. The term used to describe Cisco’s current IOS image naming convention, which contains all the feature sets, is universal image. The universal image contains all of the features sets available, and a feature set can be “turned on” by providing a license key.

Question 47

47. What allows you to download the current IOS from Cisco for your router or switch?
    A. Cisco provides upgrades for free; nothing is required. B. You need a current SMARTnet contract for the device. C. One free upgrade is permitted per the life of the device
    D. An activation key is required, which is purchased from a retailer.

Answer 47

47. B. A current SMARTnet contract is required to download the latest IOS for your Cisco router or switch. SMARTnet contracts provide configuration support, parts replacement, and software maintenance on Cisco devices.

Question 48

48. You have a new router and you have purchased the IP Base license along with it. You want to use the voice feature set on the router. What is required?
    A. A current SMARTnet contract for the device is required.
    B. Cisco provides one free feature set upgrade.
    C. An activation key is required, which is purchased from a retailer.
    D. A new Cisco IOS with the feature set included is required.

Answer 48

48. C. An activation key is required to activate the features, which are already installed in the universal image. SMARTnet agreements only cover you for upgrades to the IP Base IOS. They do not provide upgrades of features sets called Technology Package Licenses.

Question 49

49. Which tool allows you to manage all of your Cisco device licensing needs through a single user interface?
    A. Cisco SMARTnet
    B. Cisco License Manager C. Cisco Network Assistant
    D. Cisco Prime Infrastructure

Answer 49

49. B. The Cisco License Manager (CLM) can be installed on Windows, Solaris, or Linux. It allows for discovery of Cisco devices and inventory of Cisco device licenses and connects to Cisco for access to current and new licenses purchased. The CLM allows for management of the software activation process through its user interface.

Question 50

50. Which command would you use to obtain a device’s product ID (PID) and unique device identifier (UDI) for the activation process?
A. Switch#show version
B. Switch#show license
C. Switch#show license udi
D. Switch#show licensing

Answer 50

50. C. The command show license udi will display the product ID (PID) and the unique device identifier (UDI). Both the PID and UDI are required when activating a license from Cisco’s license portal. The Cisco license portal will email or display the license key required to unlock the feature set purchased.

Question 51

51. Which command will show which features are activated, available, and in
    evaluation mode on a router or switch? A. Switch#show license feature
    B. Switch#show version C. Switch#show features
    D. Switch#show licensing

Answer 51

51. A. The command show license feature will display a matrix of all the features in the IOS, including the enforcement, evaluation, subscription, enabled, and right to use status.

Question 52

52. Which license will allow a Cisco router to enable a feature set for evaluation?
    A. UDI license
    B. Right-to-use license C. Evaluation license
    D. Enforcement license

Answer 52

52. B. A right-to-use license will allow a customer to evaluate a feature set for 60 days. After the 60-day period is expired, the feature set will remain active. However, after 60 days the customer is in violation of the license agreement if the feature set has not been purchased

Question 53

53. You are connected to the console of a switch. As you are configuring the switch, console logging is disrupting your commands and making it hard to configure the switch properly. Which command will allow the console message to still appear but not disrupt what you are typing?
    A. Switch#no logging inline
    B. Switch(config)#logging synchronous
    C. Switch(config-line)#logging synchronous
    D. Switch#logging synchronous

Answer 53

53. C. The command logging synchronous will configure console logging messages to synchronize with what is being typed so they will not disrupt the user’s input.

Question 54

54. Which command sets the time zone of a router for Pacific Standard Time?
    A. Router(config)#clock timezone pacific B. Router(config)#clock timezone pst -8 C. Router(config)#timezone pacific
    D. Router(config)#timezone pst -8

Answer 54

54. B. The command clock timezone pst -8 will set the time zone to Pacific Standard Time with an offset of –8 from Coordinated Universal Time (UTC).

Question 55

55. Which command will send all warnings to the syslog server?
    A. Switch(config)#logging server 4 B. Switch(config)#logging trap 4 C. Switch(config)#logging trap 5
    D. Switch(config)#logging server 5

Answer 55

55. B. The command logging trap 4 will trap all messages with warnings to the syslog server.

Question 56

56. Which command will send logging with time stamps rather than sequence
    numbers?
    A. Switch(config)#logging timestamps log datetime B. Switch(config)#logging timestamps datetime
    C. Switch(config)#service datetime timestamps
    D. Switch(config)#service timestamps log datetime

Answer 56

56. D. The command service timestamps log datetime will configure syslog messages to be logged with the date and time rather than the arbitrary sequence number.

Question 57

57. Which command will configure Eastern Daylight Time?
    A. Switch(config)#clock timezone EST -5 daylight B. Switch(config)#clock daylight-savings
    C. Switch(config)#clock summer-time EDT recurring
    D. Switch(config)#clock tz EDT -5

Answer 57

57. C. The command clock summer-time EDT recurring will configure the switch for Eastern Daylight Time (EDT).

Question 58

58. Which command will limit console logging to the severity level of alerts?
A. Router(config)#logging console 0
B. Router(config-line)#logging level 0
C. Router(config)#logging console 7
D. Router(config-line)#logging level 7

Answer 58

58. A. The command logging console 0 will configure the logging to the console for the severity level of facility 0, which is alerts.

Question 59

59. You are configuring NTP on your switch. You want to configure the switch so if any interface fails, NTP will still be available. Which type of interface should you use?
A. Tunnel interface
B. NTPinterface
C. Loopback interface
D. Switched Virtual Interface (SVI)

Answer 59

59. C. You should configure a loopback interface on the switch with the IP address of the NTP server the NTP clients will use. Although a Switched Virtual Interface (SVI) would work, it is not active until at least one port is configured with the VLAN. Therefore, the SVI is still tied to a physical interface state.

Question 60

60. Which command will configure NTP to use the internal loopback interface?
    A. Switch(config)#ntp source loopback 0 B. Switch(config)#ntp loopback 0
    C. Switch(config)#ntp master loopback 0
    D. Switch(config)#ntp clock loopback 0

Answer 60

60. A. The command ntp source loopback 0 will configure the NTP service to respond to clients from the source address of the loopback 0 interface.

Question 61

61. Which command will configure a loopback interface with an address of
    192.168.1.2/24?
    A. Router(config)#interface loopback 0
    Router(config-if)#ip address 192.168.1.2/24
    B. Router(config)#interface loopback 0 Router(config-if)#ip address 192.168.1.2 255.255.255.0
    C. Router(config)#interface loopback Router(config-if)#ip address 192.168.1.2/24
    D. Router(config)#interface loopback
    Router(config-if)#ip address 192.168.1.2 255.255.255.0

Answer 61

61. B. The command interface loopback 0 will configure and create a pseudo interface called loopback 0. The loopback number must be specified and the loopback should not overlap a loopback already configured. The command ip address 192.168.1.2 255.255.255.0 will configure the IP address on the loopback interface.

Question 62

62. Which command will configure logging stored in RAM to include only logs with a severity level of emergencies and alerts?
    A. Switch(config)#logging buffered 1 B. Switch(config)#logging 1
    C. Switch(config)#logging buffered 2
    D. Switch(config)#logging 2

Answer 62

62. A. The command logging buffered 1 will configure the logs stored in RAM, which is buffered to a severity of 1. This command will include severity levels 1 and 0.

Question 63

63. Which command will allow you to see the commands you previously entered?
    A. Switch#show commands B. Switch#show log
    C. Switch#show history D. Switch#show buffer

Answer 63

63. C. The command show history will show the last commands typed, which are kept in the buffer. The history normally includes the last 10 commands.

Question 64

64. Which command will extend the history buffer to 30 for all users? A. Switch#terminal history size 30
    B. Switch(config)#history size 30 C. Switch#history size 30
    D. Switch(config-line)#history size 30

Answer 64

64. D. The command history size 30 will extend the buffer to 30 commands for all users. This command must be configured on the line, such as the console or VTY.

Question 65

65. Which command will extend the history buffer to 30 for only the current session?
    A. Switch#terminal history size 30 B. Switch(config)#history size 30 C. Switch#history size 30
    D. Switch(config-line)#history size 30

Answer 65

65. A. The command terminal history size 30 will extend the buffer to 30 commands for the current session. This command is configured in the privileged exec prompt and is only active until the user logs out.

Question 66

66. Which command will set the name of a router to PGH-4-209?
A. Router#name PGH-4-209
B. Router(config)#name PGH-4-209
C. Router(config)#hostname PGH-4-209
D. Router(config)#system-name PGH-4-209

Answer 66

66. C. The command hostname PGH-4-209 will set the name of the router (before the prompt) to PGH-4-209. It is always advisable to create a name that is least specific to most specific from left to right. For example, PGH is the city, 4 is the building, and 209 is the room number where the equipment is located.

Question 67

67. You need to jump to the beginning of a long command string you just entered.
    Which key combination will achieve this? A. Ctrl+B
    B. Ctrl+A C. Ctrl+E
    D. Ctrl+1

Answer 67

67. B. Pressing the key combination of Ctrl+A will take you to the beginning of a command string

Question 68

68. You need to jump to the end of a long command string you just edited but has not been committed yet. Which key combination will achieve this?
    A. Ctrl+B B. Ctrl+A C. Ctrl+E
    D. Ctrl+1

Answer 68

68. C. Pressing the key combination of Ctrl+E will take you to the end of a command string

Question 69

69. Which command will allow you to enter privileged exec mode from user exec mode?
    A. Router>enable B. Router>login C. Router>priv
    D. Router>enter

Answer 69

69. A. The command enable, sometimes shortened to en by seasoned Cisco admins, will allow you to enter into privileged exec mode. In privileged exec mode, you can change configuration.

Question 70

70. You start up a brand-new router out of the box with no configuration on it. What
    will be displayed when it boots? A. Setupmode
    B. User exec mode
    C. Privilegedexecmode
    D. Global configuration mode

Answer 70

70. A. When a router or switch boots and contains no startup-config, it will boot into setup mode. In setup mode, you can perform a basic setup of the management IP address and interface IP addresses. It is limited in its step-by-step configuration and can be useful in adding a quick IP address initially for management.

Question 71

71. Which key combination will escape you out of configuration mode and bring you back to privileged exec mode?
    A. Ctrl+D B. Ctrl+Z C. Ctrl+F D. Ctrl+C

Answer 71

71. B. The key combination of Ctrl+Z will escape you back to privileged exec mode from configuration. If you are in a sub-configuration dialog, you would have to type exit several times to exit back to privileged exec mode. However, if you use Ctrl+Z, you will immediately exit back to privileged exec mode.

Question 72

72. Which command will show the current time and date on the switch? A. Switch#show date
    B. Switch#show time C. Switch#show clock
    D. Switch#show ntp

Answer 72

72. C. The command show clock will display the local time of the switch along with the date.

Question 73

73. Which command will allow you to create short notes about an interface that will
    remain with the configuration?
    A. Router(config-if)#remark Connection to Switch1
    B. Router(config-if)#note Connection to Switch1
    C. Router(config-if)#description Connection to Switch1
    D. Router(config-if)#!Connection to Switch1

Answer 73

73. C. The command description Connection to Switch1 will create a note that describes what the interface is for. The description command is useful in explaining what an interface connects to or providing service information in the case of an outage. Only one description can be used per interface.

Question 74

74. You are in configuration mode and need to remain in configuration mode but want
    to see the running-config. Which command combination will allow you to do this? A. Router(config-if)#show running-config
    B. Router(config-if)#do show running-config
    C. Router(config-if)#!show running-config D. Router(config-if)#[CTRL-Z]

Answer 74

74. B. The command do show running-config will allow you to “do” a command outside of the configuration prompt. This command was first introduced in IOS version 12.3

Question 75

75. You want to filter the results of show running-config to see only SNMP configuration commands. Which command will allow you to do this?
    A. Switch#show running-config filter snmp B. Switch#show filter running-config snmp C. Switch#show running-config snmp
    D. Switch#show running-config | include snmp

Answer 75

75. D. The command show running-config | include snmp will show the running- config and only include lines that match snmp. Seasoned Cisco admins usually shorten this to show running-config | i snmp, since there are no other commands that start with the letter i after the pipe parameter.

Question 76

76. You have a switch with several hundred interfaces. You only want to see the running-config for one interface, Gi3/45. Which command will allow you to see the running-config for only Gi3/45?
    A. Switch#show interface gi 3/45
    B. Switch#show running-config | include 3/45
    C. Switch#show running-config interface gi 3/45
    D. Switch#show running gi 3/45

Answer 76

76. C. The command show running-config interface gi 3/45 will show the running configuration for only interface Gi3/45.

Question 77

77. Which command will set the router’s internal clock to 2:24 December 1, 2016?
    A. Router(config)#clock set 2:24:00 1 august 2016 B. Router#clock set 2:24:00 1 august 2016
    C. Router(config)#clock set 2:24:00 august 1 2016
    D. Router#clock 2:24:00 1 august 2016

Answer 77

77. B. The command clock set 2:24:00 1 august 2016 will set the clock to 2:24 a.m. (24-hour format) and August 1, 2016.

Question 78

79. You are examining the output of the command show cdp neighbors detail. One of the devices has the capability of S and R. What does this mean?
    A. The device has source routing bridge capability. B. The device has switch capability.
    C. The device has router capability.
    D. The device has switch and router capability.

Answer 78

79. D. The device has the capability of both a switch and a router. It is most likely a switch that is performing SVI routing or has routing enabled.

Question 79

80. Your network is connected in a star topology. You are assessing a network upgrade. Which command will help you determine the version of IOS on the switches and routers in your network, with the least amount of effort?
A. Switch#show version
B. Switch#show running-config
C. Switch#show cdp neighbors detail
D. Switch#show lldp neighbors

Answer 79

80. C. The command show cdp neighbors detail will display all connected switches along with their IP addresses, hostnames, and IOS version. If this command is used from the central switch, you can quickly assess which switches need to be upgraded.

Question 80

81. Which command will allow you to enter global configuration mode for editing
RAM?
A. Switch#configure network
B. Switch#configure memory
C. Switch#configure overwrite-network
D. Switch#configure terminal

Answer 80

81. D. The command configure terminal allows you to enter global configuration mode. This command will enable editing of the RAM configuration, also known as the running-config. The command is usually shortened to conf t.

Question 81

82. Which command will allow you to verify the configured exec timeout?
A. Router#show version
B. Router#show terminal
C. Router#show exec-timeout
D. Router#show timeout-exec

Answer 81

82. B. The command show terminal will allow you to verify the configured exec timeout. It will also display the current history size and the size of paging for output.

Question 82

83. Which key sequence will cause a break during a network command such as ping or
    traceroute? A. Ctrl+C B. Ctrl+4
    C. Ctrl+Shift+6 D. Ctrl+Shift+1

Answer 82

83. C. The Ctrl+Shift+6 key sequence will cause a break during a network command such as ping or traceroute.

Question 83

84. Which command will display the serial number of the switch? A. Switch#show version
    B. Switch#show serial
    C. Switch#show board
    D. Switch#show controller

Answer 83

84. A. The command show version will display the serial number of the switch or router. This is usually required when calling into support to open a support ticket.

Question 84

85. You have a rather large configuration on a switch. You want to see the running- config, but only after port gi4/45. Which command will achieve this?
    A. Switch#show running-config begin 4/45
    B. Switch#show filter running-config 4/45
    C. Switch#show running-config interface gi 4/45
    D. Switch#show running-config | begin 4/45

Answer 84

85. D. The command show running-config | begin 4/45 will show the running- config and begin when the text 4/45 is found. It is important to note that after the | begin, everything is case sensitive.

Question 85

86. Which command will begin the upgrade of an IOS from a TFTP server?
    A. Switch#copy tftp flash B. Switch#copy tftp ios C. Switch#copy tftp nvram
    D. Switch#upgrade tftp flash

Answer 85

86. A. The command copy tftp flash will begin an interactive upgrade dialog. The dialog will ask for the IP address of the TFTP server, the source filename on the TFTP server, and the destination filename. It will then begin transferring the image.

Question 86

87. Which command will allow you to verify the size of flash memory and how much
space is still free?
A. Switch#show version
B. Switch#show free C. Switch#dir flash:
D. Switch#show filesystem

Answer 86

87. C. The command dir flash: will display the current images on the flash memory. It will also display how big the flash memory is and how much space is still free in bytes.

Question 87

88. Which command will perform an MD5 hash against an image on flash memory so
    that you can verify its integrity?
    A. Router#integrity md5 flash:/c2900-universalk9-mz.SPA.151-4.M4.bin
    B. Router#md5 flash:/c2900-universalk9-mz.SPA.151-4.M4.bin
    C. Router#verify /md5 flash:/c2900-universalk9-mz.SPA.151-4.M4.bin
    eef3f723c164f2af84ccfcbd642d121d
    D. Router#integrity /md5 flash:/c2900-universalk9-mz.SPA.151-4.M4.bin eef3f723c164f2af84ccfcbd642d121d

Answer 87

88. C. The command verify /md5 flash:/c2900-universalk9-mz.SPA.151-4.M4.bin eef3f723c164f2af84ccfcbd642d121d will verify the image specified for the MD5 hash included as the last parameter. The MD5 hash is always included with the image from Cisco’s download center and is unique for each image.

Question 88

89. What is the default configuration register for a Cisco switch or router? A. 0x2104
    B. 0x2102 C. 0x2100
    D. 0x2012

Answer 88

89. B. The default configuration register for a Cisco switch or router is 0x2102. The configuration register tells the router to boot up normally and check the NVRAM for the IOS image to boot.

Question 89

90. Which command needs to be configured to enable the SSH Copy Protocol (SCP)? A. Switch(config)#ip ssh server enable
    B. Switch(config)#ip scp server enable C. Switch(config)#service scp enable D. Switch(config)#service scp-server

Answer 89

90. B. The command ip scp server enable needs to be configured to enable the SSH Copy Protocol (SCP). This command is entered in the global configuration.

Question 90

91. Which copy method will encrypt the IOS over the network during an upgrade? A. HTTP
    B. TFTP C. FTP D. SCP

Answer 90

91. D. The SSH Copy Protocol (SCP) will encrypt the IOS over the network during an upgrade from the client computer

Question 91

92. You have enabled the SCP server on a switch, but when you try to log in it returns “access denied.” Which command must you configure to allow access to the SCP server if your username was scpadmin and your password was Sybex?
    A. Switch(config)#ip scp user scpadmin password Sybex
    B. Switch(config)#username scpadmin password Sybex
    C. Switch(config)#username scpadmin privilege-level 15 password Sybex
    D. Switch(config)#ip scp user scpadmin privilege-level 15 password Sybex

Answer 91

92. C. The command username scpadmin privilege-level 15 password sybex must be configured. This command will configure a user named scpadmin with a privilege level of 15 (enable access) and a password of Sybex.

Question 92

93. Which command will allow you to view the contents of a file in the IOS File
    System (IFS)?
    A. Switch#type flash:/info
    B. Switch#file flash:/info C. Switch#cat flash:/info
    D. Switch#more flash:/info

Answer 92

93. D. The command more flash:/info will display the contents of the flash:/info file. This command is similar to the type command in the Windows OS.

Question 93

94. After copying an IOS image named c2900-universalk9-mz.SPA.151-4.M4.bin, you reboot the router only to find that it has booted to the old IOS image. What needs to be configured to boot the new image?
    A. Router(config)#boot system flash:/c2900-universalk9-mz.SPA.151-4.M4.bin
    B. Router(config)#boot image flash:/c2900-universalk9-mz.SPA.151-4.M4.bin
    C. Router(config)#boot flash:/c2900-universalk9-mz.SPA.151-4.M4.bin
    D. Router(config)#boot system-image flash:/c2900-universalk9-mz.SPA.151-

Answer 93

94. A. The command boot system flash:/c2900-universalk9-mz.SPA.151-4.M4.bin will configure the system to boot from flash and load the image c2900-universalk9- mz.SPA.151-4.M4.bin.

Question 94

95. Which command will change the configuration register to 0x2100? A. Router(config)#confreg 0x2100
    B. Router#confreg 0x2100
    C. Router(config)#config-register 0x2100
    D. Router#config-register 0x2100

Answer 94

95. C. The command config-register 0x2100 will configure the configuration register to 0x2100. This command must be entered in global configuration mode.

Question 95

96. Which command will help you verify what the configuration register is currently
    set to?
    A. Switch#show confreg
    B. Switch#show running-config C. Switch#show version
    D. Switch#show register

Answer 95

96. C. The command show version will display the current configuration register. If you have just set the configuration register, it will state on next reload which will appear next to the configured configuration register.

Question 96

97. What is the name of the system loaded on a router or switch when the primary IOS
    image fails to load? A. BIOS
    B. NVRAM
    C. OpenBIOS D. ROMMON

Answer 96

97. D. When a router or switch fails to load its primary IOS image, it is reverted to a basic system called ROMMON, which stands for ROM Monitor. The ROMMON has very limited functionality, and it’s mainly used for password recovery or diagnostics of the boot process.

Question 97

98. During a normal boot process, how does the bootstrap process decide which IOS version to load if multiple versions are present on flash?
    A. The bootstrap process checks the startup-config in NVRAM. B. The bootstrap process chooses the highest version.
    C. The bootstrap process checks the configuration register.
    D. The bootstrap process checks flash for a file named version.txt.

Answer 97

98. A. The bootstrap process checks the startup-config in NVRAM for the boot system command. Although the startup-config is not loaded into the IOS at this point, the router or switch uses the startup-config to decide the IOS to load. The bootstrap process checks the configuration register, but the IOS version to load is not determined from the configuration register

Question 98

99. You have just updated the IOS on a router and you have configured the command boot system flash:/c2900-universalk9-mz.SPA.151-4.M4.bin. The command completes successfully, and you cycle the power. However, the original image boots. What is wrong?
    A. You have incorrectly typed the image name.
    B. You have not saved the configuration.
    C. You are not licensed for the Universal feature set.
    D. The IOS image needs to be verified before it can be used.

Answer 98

99. B. The command boot system flash:/c2900-universalk9-mz.SPA.151-4.M4.bin needs to be in the startup-config since it is used during the boot process. If you enter the command in global configuration mode, it is only resident in RAM (running- config) and needs to be saved before power cycling the router.

Question 99

100. You need to make sure that the running-config is saved every night to the NVRAM. Which method will allow you to achieve this task?
     A. Training of network administrators to save configuration
     B. Configuring an archive process on the router
     C. Use of an external process such as Cisco Prime Infrastructure
     D. Configuration of a TCL script

Answer 99

100. B. Cisco routers and switches have a built-in archive process, which is not configured by default. You can specify a time period to process the archive and specify to write the running-config to NVRAM. An added benefit is the second archive copy, which is saved with a time and date stamp to flash or a remote server.

Question 100

101. Which command will allow you to boot a router from a TFTP server for the image of c2900-universalk9-mz.SPA.151-4.M4.bin on the TFTP server of 192.168.1.2?
     A. Router#boot tftp://192.168.1.2
     B. Router(config)#boot tftp://192.168.1.2 c2900-universalk9-mz.SPA.151-
     4.M4.bin
     C. Router(config)#boot system tftp://192.168.1.2 c2900-universalk9- mz.SPA.151-4.M4.bin
     D. Router(config)#boot system c2900-universalk9-mz.SPA.151-4.M4.bin 192.168.1.2

Answer 100

101. D. The command boot system c2900-universalk9-mz.SPA.151-4.M4 .bin 192.168.1.2 will configure the router for booting of the image named c2900- universalk9-mz.SPA.151-4.M4.bin from the 192.168.1.2 TFTP server. Under normal circumstances this should not be used in production environments since the router boot process is dependent upon the availability of the TFTP server.

Question 101

102. During the bootstrap process, where is the IOS image decompressed to? A. NVRAM
     B. RAM
     C. ROMMON
     D. Flash

Answer 101

102. B. During the bootstrap process, the IOS is decompressed to RAM. This can be seen during the boot process as Loading “flash:/c3560-advipservicesk9-mz.122-37 .SE1.bin”…######. Once the image is decompressed, it is executed by the CPU.

Question 102

103. When a password recovery is performed on a router, what should the configuration register be set to?
     A. 0x2100 B. 0x2102 C. 0x2142 D. 0x2182

Answer 102

103. C. When you’re performing a password recovery, the 6th bit of the configuration register should be set to a binary value of 1. The configuration register of 0x2142 will instruct the router to boot into the configured IOS and ignore loading the startup configuration

Question 103

104. What command will allow you to verify the current running IOS version? A. Router#show ios
     B. Router#show version
     C. Router#show running-config
     D. Router#show bootvar

Answer 103

104. B. The command show version will display the current running IOS version. Although the command show running-config or show bootvar will display the IOS that should be loaded, only the command show version will display the current version that actually loaded.

Question 104

105. You’re upgrading the flash memory on a 2900 router with a brand-new flash card. What needs to be done to restore the IOS?

A. The new flash memory will have a mini-IOS installed. You will need to upgrade it from the mini-IOS.
B. The router will boot into the ROMMON, and from there you will need to TFTP download the IOS.
C. Nothing needs to be done because the IOS is not storage on the flash memory card.
D. Format the flash card with the FAT operating system and copy the IOS image to the card.

Answer 104

105. B. The IOS is stored on the flash card. Since the flash card is brand-new, nothing is on it. When the router boots, it will not find the IOS and will boot into ROMMON mode. From ROMMON mode, you will configure an IP address, subnet mask, gateway, TFTP server, and image and initiate a TFTP download to flash. Once the IOS is downloaded to flash memory, you can boot the router and verify operations.

Question 105

106. Which command will allow you to back up the current IOS image to a TFTP server? Assume the image is named c3560-advipservicesk9-mz.122-37.SE1.bin.
     A. Router#backup flash:/c3560-advipservicesk9-mz.122-37.SE1.bin tftp B. Router#copy flash:/c3560-advipservicesk9-mz.122-37.SE1.bin tftp C. Router#copy tftp flash:/c3560-advipservicesk9-mz.122-37.SE1.bin
     D. Router#archive flash:/c3560-advipservicesk9-mz.122-37.SE1.bin tftp

Answer 105

106. B. The command copy flash:/c3560-advipservicesk9-mz.122-37.SE1.bin tftp will copy the file in flash named c3560-advipservicesk9-mz.122-37.SE1.bin to a TFTP server. This command will enter an interactive copy procedure. You will have to enter the TFTP server address and confirm the source image filename and destination image filename.

Question 106

107. Which command will allow you to view all of the archives of running-config
     stored in flash?
     A. Switch#show archive
     B. Switch#show config C. Switch#show flash
     D. Switch#show running-config *

Answer 106

107. A. The command show archive will display all of the archived versions of the running-config, which were archived by the archive timer.

Question 107

108. Which command will roll back the third archive of the running-config?
     A. Switch#rollback flash:myconfig-3
     B. Switch#configure replace flash:myconfig-3 C. Switch#configure restore flash:myconfig-3
     D. Switch#restore flash:myconfig-3

Answer 107

108. B. The command configure replace flash:myconfig-3 will replace the running- config with the third archive of the running-config, which is stored in flash.

Question 108

110. Your router has a USB slot, and you need to back up the IOS to a flash drive. What format must the flash drive have in order to perform the backup? A. FAT
     B. NTFS C. EXT3
     D. Cisco IFS

Answer 108

110. A. Cisco routers and switches require any USB flash drive to be formatted in the FAT filesystem. Any other file system will not be recognized and mounted in the IOS on the router or switch.

Question 109

111. You have connected to a switch via SSH and you want to see the logging messages. Which command should you use?
A. Switch#terminal monitor
B. Switch#terminal logging
C. Switch(config-line)#terminal monitor
D. Switch(config-line)#terminal logging

Answer 109

111. A. The command terminal monitor will configure the current connected method with the ability to monitor console messages. This command is entered in privileged exec mode and is valid only for the current session.

Question 110

112. You have configured a switch so you can see all console logging in the current SSH session. You no longer wish to see the console logging. Which command will configure the SSH session back to the default?
     A. Switch#no terminal monitor B. Switch#terminal no monitor C. Switch#no terminal logging
     D. Switch(config-line)#no terminal logging

Answer 110

112. B. The command terminal no monitor when entered in privileged exec mode will turn off the monitoring of console messages.

Question 111

115. You are troubleshooting an application and need to capture the packets for an
     interface on a switch. Which method should you use to capture the packets? A. Netflow
     B. SPAN
     C. NIC teaming
     D. IPsnooping

Answer 111

115. B. Switch Port Analyzer (SPAN) should be used to mirror the port on the switch so that the network analyzer can capture the frames. When you use SPAN, you will see every frame on the switch port you are monitoring.

Question 112

117. Which tool can be used to analyze a packet capture?
     A. Netflow
     B. Wireshark C. SPAN
     D. RSPAN

Answer 112

117. B. Wireshark is a popular free packet capture utility. Once the packets are captured, they can be filtered and analyzed so that you can diagnose a networking problem.

Question 113

118. Which feature is available when using an extended ping?
     A. Larger datagram size B. Larger repeat counts C. Changing the timeout
     D. Source interface or IP address

Answer 113

118. D. An extended ping allows for the source interface or IP address to be specified. You can access the extended ping by entering the command ping without an IP address, then following the prompt till it asks if you want extended commands.

Question 114

119. Which command will configure the source interface of Gi 1/1 for a SPAN session on a switch? A. Switch(config)#span session 1 source interface gi 1/11 both
     B. Switch(config)#session span 1 source interface gi 1/11 both
     C. Switch(config)#monitor session 1 source interface gi 1/11 both
     D. Switch(config)#monitor session 1 gi 1/11 both

Answer 114

119. C. The command monitor session 1 source interface gi 1/11 both will create a monitor session 1 for SPAN, with the source interface in both directions. This session will capture and mirror frames for tx (transmit) and rx (receive) on the interface.

Question 115

120. Which command will allow you to see configured SPAN sessions on the switch?
     A. Switch#show monitor span session B. Switch#show monitor session all C. Switch#show span
     D. Switch#show session

Answer 115

120. B. The command show monitor session all will display all of the SPAN session configured on the switch. The output will display the source port and destination port of the SPAN session.

Question 116

121. Which command will configure a SPAN session for an entire VLAN as a source,
     assuming it’s VLAN 23?
     A. Switch(config)#monitor session 1 source vlan 23
     B. Switch(config)#session span 1 source vlan 23
     C. Switch(config)#monitor session 1 source interface vlan 23 both
     D. Switch(config)#monitor session 1 vlan 23 both

Answer 116

121. A. The command monitor session 1 source vlan 23 will configure the SPAN session of 1 with a source of VLAN 23. When you’re configuring a VLAN as the source of a SPAN session, the direction is irrelevant since the parameter of both is implied.

Question 117

122. You need to create a SPAN session for five Fast Ethernet ports. You want to watch both the tx (transmit) and rx (receive) on the ports. What is the sizing of the destination port you will require?
     A. 100Mb/s B. 1 Gb/s
     C. 10Gb/s
     D. 40Gb/s

Answer 117

122. B. The sizing of the destination port should be equal to the amount of bandwidth that the source ports collectively can generate. When performing this calculation, you must take into account both the RX and TX. For example, five Fast Ethernet ports can transmit at 5 × 100 Mb/s = 500 Mb/s. They can also receive at 500 Mb/s since you are capturing both directions. The proper sizing of the destination port should be 1 Gb/s so that traffic is not lost out of the exit interface for the packet capture device.

Question 118

123. Which command will configure the removal of a SPAN session 1?
     A. Switch(config)#no span session 1
     B. Switch(config)#no session span 1
     C. Switch(config)#no monitor session 1
     D. Switch(config)#clear monitor session 1

Answer 118

123. C. The command no monitor session 1 will remove the currently configured monitor session of 1 from the configuration.

Question 119

124. Which command will configure the destination port for a SPAN session? Assume
     that you are working with session 1 and the destination port is Gi 1/14. A. Switch(config)#monitor session 1 destination gi 1/14
     B. Switch(config)#monitor span 1 destination gi 1/14
     C. Switch(config)#monitor session 1 destination interface gi 1/14 both D. Switch(config)#monitor session 1 destination interface gi 1/14

Answer 119

124. D. The command monitor session 1 destination interface gi 1/14 will configure the interface of Gi1/14 as the destination interface for the SPAN session.

Question 120

126. What needs to be configured, when you want to create a SPAN session over multiple switches?
A. RSPAN
B. SPAN
C. VPN-SPAN
D. VSPAN

Answer 120

126. A. Remote Switch Port Analyzer (RSPAN) should be configured. This will allow a source port on a remote switch to be monitored for a SPAN session on another remote switch. An alternative to RSPAN is Encapsulated RSPAN (ERSPAN), which employs the GRE protocol to create a tunnel.

Question 121

127. You want to perform a traceroute with more than three ICMP packets using an extended traceroute. Which attribute will you change to allow for multiple ICMP packets?
A. Probe count
B. Numeric display
C. Maximum Time to Live
D. Packet type

Answer 121

127. A. The probe count attribute must be changed to allow multiple packets to be sent to each hop. The default is three packets.

Question 122

129. You need to check the current CPU utilization on a router. Which command will achieve this?
     A. Router#show cpu
     B. Router#show cpu-stats C. Router#show processes
     D. Router#show environment cpu

Answer 122

129. C. The command show processes will display the utilization of the CPU. The first line of the output is broken down by 5 second utilization, 1 minute utilization, and 5 minute utilization.

Question 123

130. Which command will direct logging to the internal log space?
     A. Router(config)#logging buffered B. Router(config)#logging internal C. Router(config)#logging ram
     D. Router(config)#logging console

Answer 123

130. A. The command logging buffered will direct buffering of log messages to RAM. This command can be undone by using the no directive in front of logging buffered. The command must be entered in global configuration mode.

Question 124

131. Which network plane is used for Spanning Tree Protocol (STP)?
A. Data plane
B. Control plane
C. Management plane
D. Switch plane

Answer 124

131. B. The control plane refers to any mechanism that controls the data plane. Spanning Tree Protocol (STP) is used to control the data plane by removing redundant links

Question 125

132. Which network plane is used by syslog for delivering messages from the router or switch?
A. Data plane
B. Control plane
C. Management plane
D. Switch plane

Answer 125

132. C. The management plane is any mechanism that helps in the management of a router or switch. Some of the common mechanisms are SSH and Telnet. However, any mechanism that the router uses for management is considered part of the management plane.

Question 126

133. Which statement is correct about the software-defined network (SDN) controller?
     A. The SDN controller configures the management plane of network devices. B. The SDN controller monitors data plane traffic.
     C. The SDN controller replaces the control plane of the SDN.
     D. The SDN controller complements the control plane of the SDN.

Answer 126

133. C. The software-defined network (SDN) controller replaces the control plane on SDN devices. The SDN devices in the network do not contain a control plane locally and instead are controlled by the SDN controller.

Question 127

134. Which is used for communication directly to the SDN devices in the network? A. The northbound interface (NBI)
     B. The southbound interface (SBI) C. The core of the controller
     D. Applications hosted on the controller

Answer 127

134. B. The southbound interface (SBI) directly communicates with the SDN devices. This control is done via several different types of SBI protocols, such as OpenFlow, OpFlex, CLI (Telnet/SSH).

Question 128

135. What is an application program interface (API)?
     A. An API is a program that allows for data transfer.
     B. An API is a programming language for network programmability.
     C. An API is a programming interface or standard allowing one program to communicate with another program.
     D. An API allows for programs to be virtualized.

Answer 128

135. C. An application program interface (API) is a method the programmer has created to allow other programs to communicate with their program. The inter- programmability is required when another program wants to share data with the API.

Question 129

136. When a network packet is routed in a router, which network plane is facilitating the traffic?
A. Data plane
B. Control plane
C. Management plane
D. Switch plane

Answer 129

136. A. The data plane is responsible for switching and routing data. Any data that is destined for endpoints is switched or routed on the data plane. For example, when one computer pings another, the ping is switched and routed on the data plane.

Question 130

137. When an application communicates with a software-defined network (SDN) controller, which mechanism does it use to communicate?
     A. The southbound interface (SBI) B. The core of the controller
     C. The northbound interface (NBI)
     D. Simple Network Management Protocol (SNMP)

Answer 130

137. C. The northbound interface (NBI) is responsible for allowing communication between applications and the core of the controller. Applications therefore directly communicate with the core through the northbound interface.

Question 131

138. Which protocol is normally used with REST APIs?
     A. SNMP B. HTTP C. SNTP
     D. SOAP

Answer 131

138. B. Representational State Transfer (REST) APIs normally utilize HTTP for moving data. It performs this via a get URI and it receives a response in XML, JSON, or another date transfer language. Although you can encrypt the HTTP traffic with SSL (HTTPS), its core language is still HTTP.

Question 132

139. Which platform is Cisco’s software-defined network controller offering for Enterprise connectivity?
     A. APIC-EM
     B. OpenSDN C. OpenStack
     D. OpenDaylight

Answer 132

139. A. The Application Policy Infrastructure Controller (APIC) is Cisco’s SDN controller. This package is freely downloadable from the Cisco DevNet website as of the writing of this book. It comes with several built-in apps, such as a plug and play module and a path trace module. Many other apps can be built on top of the APIC to extend functionality of the controller.

Question 133

140. On which network plane would a routing protocol perform? A. Data plane
     B. Control plane
     C. Management plane
     D. Routing plane

Answer 133

140. B. Routing protocols such as OSPF and EIGRP would perform their function on the control plane, since they are controlling the routing of the data plane.