Domain 2.3

Question 1

What are the first two fields of an Ethernet Frame, and what is their purpose

Answer 1

1. Preamble: 7 bytes:
   56 alternating 1’s & 0’s used for synchronization, and singaling that a frame is coming.
2. SFD (Start Frame Delimiter) 1 byte
   Used to signal the end of the Preamble.

Question 2

What are the ladder three fields of an ethernet frame

Answer 2

Ethertype 2 bytes:
Used to describe the data contained in the payload.

Payload 46-1500 Bytes:
Layer 3 and higher data being transmitted.

FCS (Frame Check Sequence) 4 Bytes
CRC checksum of the frame.

Question 3

Describe what a MAC address is

Answer 3

MAC Addresses are hexadecimal physical addresses of a NIC.

They are 48bits long or 6 Bytes

They are separated into two parts:

The OUI (organizationally unique ID)
&
Network interface Controller Specific serial number

Question 4

Describe half duplex

Answer 4

A half duplex device cannot send and receive simultaneously.

• All LAN hubs are half-duplex

-Switch intfteraces can be set to as 1/2 duplex, but usually only when the device connected to the switch interface is also half/duplex

Question 5

Describe full duplex

Answer 5

Data can be sent and received at the same time.
- A properly configured switch will be set to full duplex.

Question 6

True or False, CSMA/CD is in widespread use today

Answer 6

False

CSMA is only half duplex ethernet, and is no longer in use.

Question 7

Explain how CSMA/CD works

Answer 7

1. Listen for an opening on the line
   -If someone is transmitting, set a timer and wait
2. Send a frame of data when possible.
   -No prioritization.
3. If a collision occurs
   - Send a jam signal to notify other TX’ers that a collision occured.
4. Everyone sets a random timer, waits, and then starts back at step 1.

Question 8

What are the primary functions of a switch

Answer 8

To forward or drop frames.

Gather a constantly updating list of MAC addresses.
- Built using the Src MAC of incoming frames.

Maintain a loop-free environment using STP

Question 9

How does a switch learn MAC addresses, and what does it do when it cannot find a MAC.

Answer 9

The switch will take note of the src address of the frame and the interface that the frame came in on.

If the Switch does not know the interface that the dest MAC is on, it will flood the frame to everyone. Devices ignore the frame if it is not addressed to them.

Question 10

What is NDP and how do routers discover one another using it?

Answer 10

Network discovery protocol.

Routers that are brought online will perform a Router Solicitation (RS) and the other routers that have a multicast address configured will respond with a RA (router adverstimsent)

Question 11

Why was NDP created

Answer 11

It is used with IPv6 to replace ARP. Instead of using broadcasts, which don’t exist in IPv6, NDP makes use of multicast

Question 12

What is SLAAC?

Answer 12

Stateless Address Auto-configuration:

• Devices automatically create themselves an IP address without a DHCP server.

Question 13

What is DAD

Answer 13

Duplicate Address Detection -

Protocol that will detect duplicate IP addresses.

Question 14

How do endpoints find one another using NDP?

Answer 14

Endpoints send NS (Neighbor Solicitations) to a multicast address.

Other Endpoints will respond using a NA (Neighbor Advertisement) with their MAC Address

Question 15

What are the two forms of PoE

Answer 15

EndSpans - Devices with built in power

MidSpans - Devices that are in-line power injectors

Question 16

What are the two power modes for PoE

Answer 16

Mode A: Power over data pairs - used
Cat5 and newer

Mode B: Power on the spare pairs
Only used with Cat5 and older 10/100 Mbit/s

Question 17

What is IEEE 802.af

Answer 17

The original PoE standard

15.4 watts DC power

Question 18

What is IEEE 802.at

Answer 18

PoE+

25.5 watts DC power

Question 19

What is a LAN consisted of

Answer 19

A group of devices in the same broadcast domain

Question 20

What can VLAN be described as

Answer 20

A group of devices in the same broadcast domain separated logically instead of physically.

Question 21

What is added to Ethernet Frames to denote which VLAN the Frame belongs to?

Answer 21

VLAN ID - 12 bits long allowing up to 4094 possible VLANs

Question 22

What is the “Default VLAN” value, and the default range?

Answer 22

Default VLAN = 1
Default Range = 1 - 1005

Question 23

What is the Extended Range of VLAN IDs

Answer 23

1006-4094

Question 24

What is the IEEE 802.1Q standard

Answer 24

This is the standard for VLAN trunking

Question 25

How does data travel between switches when there are multiple VLANs crossing the same path.

Answer 25

802.1Q or trunk links allow for the sharing of a physical link between networking device where VLAN traffic can cross.

Question 26

How can the performance concerns between hosting Voice and data over the same line be addressed?

Answer 26

Put Voice and data on separate VLANs. This provides separation so that data congestion does not add delay and latency to voice. Each port on the switch can be set up as a 802.1q trunk

Question 27

What is STP and what feature deficiency exists at layer 2 that justifies it

Answer 27

There is no TTL for layer 2 frames. If a loop were to occur, frames will exist and be amplified forever.

STP provides loop protection used when connecting two or more switches together.

Question 28

What is 802.1D

Answer 28

Older version of STP that was designed to provide loop protection on bridged (switched) networks

Question 29

What is 802.1w

Answer 29

RSTP - updated STP

-Faster convergence following network changes.

• Backwards compatible with 802.1d
• Mostly an update to STP, not a complete overhaul

Question 30

What are the four STP port states?

Answer 30

Blocking - Interface is not forwarding traffic in order to prevent loop.

Listening - Not forwarding and cleaning the MAC Table.

Learning - Not forwarding and adding to the MAC table

Forwarding - Data passes through and is fully operational

Disabled - The admin turned the interface off.

Question 31

What are the basic interface items that need to be configured for a switch interface?

Answer 31

The config on the switch interface must match the device that is connected on the other side. The interface can be set to automatic and will match the device connected, or manual, with which these settings are needed:

Speed:
Duplex:

Question 32

What are common layer 3 interface settings

Answer 32

Routing interfaces-

-Management Interfaces

-IP Addresses, Subnet Mask, Default Gateway, and DN

Question 33

True or False: Each device port on a switch should be assigned a VLAN

Answer 33

True. it is a best practice to have each port be configured.

Question 34

What is the point of trunking and what is its IEEE #

Answer 34

802.1Q

Trunking is used to connect switches together, and allows for multiple VLANs to traverse a single link

Question 35

What are the two types of vlan frames & explain them

Answer 35

Tagged and Untagged

-Non-tagged frames are on the default VLAN, which is also considered the native LAN.

-Tagged frames have a VLAN ID in the frame.

Question 36

How are tags on Ethernet frames managed

Answer 36

Trunk ports add VLAN tags to outgoing frames.

Trunk ports remove VLAN tags on incoming frames.

Question 37

What is LAG?

Answer 37

Link Aggregation Control Protocol (LACP)

-Allows multiple switch interfaces to act as a single interface.

• Adds additional automation and management.

Question 38

What is port mirroring, why is it useful, and how can it be implemented?

Answer 38

-Allows traffic to be copied from one interface to another

• Can be used for PCAP for IDS or other systems

Typically implemented using a Network Tap or Span port on the switch itself.

Question 39

What is a Jumbo frame

Answer 39

A frame that has a payload size greater than 1500 bytes

Up to 9,216 bytes (9000 is typically accepted)

Question 40

What is the benefit or purpose of jumbo frames.

Answer 40

-They increase transfer efficiency

This results in fewer packers to switch/route

Question 41

True or False: All devices are configured with Jumbo Frames by default

Answer 41

False:

Not all devices support jumbo frames, and Jumbo frames

Question 42

What is 802.3x and why is it needed?

Answer 42

Ethernet networks do not have flow control. As a result, the network flow can be too fast for the buffers on some networking devices such as switches, which will cause dropped packets.

802.3X is the “pause” frame

Question 43

What are some ways to increase port level security

Answer 43

Configure a Max # of SRC MAC addresses on a single port.

The switch will then keep a list of MAC Addresses, once the maximum has been exceeded, the port will be disabled

Question 44

What is MDI and MDI-X

Answer 44

MDI is the MEdia Dependant Interface, This would be the cabling that is included on the NIC of an endpoint device

MDI-X is the standard for Switch and router interfaces

Question 45

What is a straight through cable using the MDI matrix

Answer 45

MDI - MDIX

Question 46

What is a cross over cable using MDI Matrix

Answer 46

MDI - MDI
or
MDI-X - MDI-X