Domain 3.1

Question 1

What are some major performance indicators

Answer 1

Temperature

CPU Usage

Memory

Question 2

What are some ways to gather bandwidth utilization

Answer 2

SNMAP

Netflow

Sflow

Question 3

What is latency

Answer 3

The delay between request and the response

Question 4

What is jitter

Answer 4

The time between frames

Excessive jitter causes you to miss information and can lead to choppy calls.

Question 5

What are some things that can be watched via the interface

Answer 5

Link status

Error rate

Utilization

Packet drops

Interface resets

Speed and duplex

Question 6

What is a MIB and what is it used for?

Answer 6

Management Information Database - Used along with SNMP

Database contains OID (Object identifiers)

Question 7

True or false:

There are three versions of SNMP

Answer 7

SNMP v.1
- Original structured table sent in the clear.

SNMP v.2
- Updated with data enhancements, bulk transfers sent in the clear.

SNMP v.3
- New standard that include encryption, authentication, and message integrity.

Question 8

True or False:

SNMP can be identified by name or number

Answer 8

Correct, the number format looks like this:

.1.3.6.1.2.1.11.29.0

Each number corresponds to a different piece of information

Question 9

True or False:

Every Variable in the MIB has a corresponding OID

Answer 9

True:

Some OIDs are common across devices

SNMP makes information requests based off OID, which will be consistent across devices

Question 10

What port does SNMP operation over for standard SNMP and Trap

Answer 10

SNMP UDP/161

TRAP UDP/162

Question 11

Describe how SNMP traps work

Answer 11

Thresholds can be set on a target device. SNMP Trap will then send information unsolicited to the central monitoring station

Question 12

How are audit logs different than standard logs?

Answer 12

They are often much more detailed and specific than standard OS logs

Question 13

What is syslog used for?

Answer 13

Used for uniform message logging

Question 14

What are some common syslog severity levels?

Answer 14

Low - Debug messages

High - critical and alert

Question 15

What are some common interface errors for switches?

Answer 15

Runts

Giants

CRC errors

Encapsulation errors

Question 16

Describe a Runt and a Giant

Answer 16

Runt - Frames that are less than 64 Bytes ( possible result of collisions)

Giant - frames larger than the standard 1518 bytes

Question 17

What is a CRC error

Answer 17

They alert that a Frame Check Sequence has failed.
This may indicate a bad cable, or damaged interface

Question 18

What is an encapsulation error

Answer 18

This will occur when there is an inconsistent configuration between switches connected with a 802.1Q or ISL trunk

Question 19

What are some common environmental sensors

Answer 19

Humidity level

Electrical - Device and circuit load

Flooding

Question 20

What does NetFlow accomplish?

Answer 20

Standardized collection method that has many implementations

Gathers traffic statistics from all traffic flows - It will report on shared communications between devices

Question 21

What are the two components to NetFlow?

Answer 21

The probe and Collector

Probe watches net coms

summary records are sent to the collector