CISCO Exam 8 Q3 Test 2

Question 1

enable dhcp snooping

Answer 1

ip dhcp snooping

Question 1

config trusted ports

Answer 1

ip dhcp snooping trust

Question 2

set max discovery message on untrusted

Answer 2

ip dhcp snooping limit rate _

Question 3

enable dhcp snooping on vlan

Answer 3

ip dhcp snooping ,,_

Question 4

config DAI on int

Answer 4

ip arp inspection trust

Question 5

config DAI on vlan

Answer 5

ip arp inspection trust vlan ,,_

Question 6

enable port security

Answer 6

sw port-security

Question 7

max mac allowed on port

Answer 7

sw port-security maximum _

Question 8

manual mac config

Answer 8

sw port-security mac-address _

Question 9

dynamic mac config

Answer 9

sw port-security mac-address _

Question 10

config aging or removing mac on port

Answer 10

sw port-security aging time _ / type _ (abs, inac)

Question 11

disable dtp on non trunking

Answer 11

sw mo ac

Question 12

disable dtp on trunking

Answer 12

sw nonegotiate

Question 13

config port-fast on int

Answer 13

spanning-tree portfast

Question 14

enable bpdu guard

Answer 14

spanning-tree bpduguard enable

Question 15

Create ACL standard

Answer 15

ip access-list standard _
remark _
deny host _
permit _ (wm)
permit any

int _
ip access-group _ (in, out)

Question 16

Create ACL extended

Answer 16

ip access-list extended _

permit (tcp) (dip1, s1) (dip2, s2) eq _
permit any any

Question 17

static nat

Answer 17

ip nat inside source static (priv) (public)

Question 18

dynamic nat

Answer 18

ip nat pool _ (low) (high) netmask _
access-list _ permit _ _
ip nat inside source list _ pool _

Question 19

singular PAT

Answer 19

ip nat inside source list _ int _ overload
access-list _ permit _ _

Question 20

Pool PAT

Answer 20

ip nat pool _ (low) (high) netmask _
access-list _ permit _ _
ip nat inside source list _ pool _ overload

Question 21

Appying NAT and PAT and DNAT and SNAT

Answer 21

int _
ip nat _ (inside, outside)