ICND1

Question 1

OSI Layers

Answer 1

Physical, Data Link, Network, Transport, Session, Presentation, Application

Question 2

What is the data link layer address for Ethernet

Answer 2

MAC

Question 3

What are the non-overlapping channels in the 2.4 Ghz frequency for wireless access points.

Answer 3

1, 6, and 11

Question 4

Basic function of IPS

Answer 4

Learn normal behavior of network and block or warn when an abnormality is observed.

Question 5

IOS Configuration, interface mode, ‘ntp broadcast’

Answer 5

Sends NTP broadcasts

Question 6

What do the following port light colors indicate on a Cisco switch?

no light
green
blinking green
alternating green-amber
amber
blinking amber

Answer 6

no light - no link, or port is admin down.

green - link present

blinking green - activity (normal operation)

alternating - link fault: errors such as excessive collisions, CRC, alignment, and jabber.

amber - port blocked by STP while listening or learning

blinking amber - port is in STP blocking state

Question 7

What conditions might cause a switch port status light to remain unlit?

Answer 7

admin down or link down.

Link down may be due to encapsulation or other layer 2 protocol mismatch, a bad or incorrect cable, or a lack of signal.

Question 8

For numbered ACLs what are the number ranges for standard and extended IP ACLs

Answer 8

standard: 1-99 and 1300-1999
extended: 100-199 and 2000-2699

Question 9

Describe the OSI Application Layer

Answer 9

This layer interacts directly with applications.

These services include FTP, SMTP, HTTP, DHCP, et al.

Question 10

Describe the OSI Presentation Layer

Answer 10

This is not always used. It handles translation, compression, and encryption. Translation changes the data to be understood by different types of computers such as changing LF to CRLF in an ASCII FTP transfer.

Question 11

Describe the OSI Session Layer

Answer 11

Creates, manages, and terminates sessions between communicating nodes. These are APIs such as NetBIOS, TCP/IP Sockets aka Python SocketIO, and RPC.

Question 12

Describe the OSI Transport layer

Answer 12

It has two main parts. One is keeping track of what data comes from what application and combining that data into a single flow for use by the lower layers. The receiving device reverses this operation. Dividing the data into segments ready for layer 2 and 3 encapsulation is also done here.

Part 2 TCP/UDP - providing either connection-oriented (TCP) or connectionless (UDP) services. Connection-oriented services include flow control, keeping packets in order, recovering from lost transmissions or errors. Connectionless services do almost nothing apart from keeping track of which application the traffic belongs to. They are called best-effort because if the data is lost there is no attempt to recover it.

Question 13

Describe the OSI Network Layer

Answer 13

This layer handles logical addressing, routing, datagram encapsulation, fragmentation and reassembly, and error handling and diagnostics. Error handling and diagnostics doesn’t include data recovery. The most common example of this is a routing protocol using a ‘hello’ protocol to verify the link is up.

Question 14

Describe the OSI Data Link Layer

Answer 14

This includes logical link control, media access control, data framing, local addressing, and error detection and handling. Common error detection includes the checksum on Ethernet frames.

Question 15

Describe the OSI Physical Layer

Answer 15

This includes hardware specifications, encoding and signaling, and data transmission and reception.
Layer 1 devices are CSU/DSU, transceivers, and repeaters that take bit streams and convert or repeat them without regard to the structure at the other layers.

Question 16

What are the 7 layers of the OSI model

Answer 16

Physical, Data Link, Network, Transport, Session, Presentation, and Application

Question 17

What are the major letters used in the ‘show ip route’ command and their associated protocol

Answer 17

C - connected
S - static
R - RIP
B -BGP
D - EIGRP
EX - EIGRP external
I - IGRP (deprecated)
O - OSPF
i - IS-IS
o - ODR

Question 18

Which protocol is used by Ethernet to control transmission over a shared medium. Which similar protocol is used by WiFi?

Answer 18

CSMA/CD for Ethernet
(Carrier Sense Multiple Access / Collision Detection)

CSMA/CA for WiFi (Carrier Sense Multiple Access / Collision Avoidance)

Question 19

Answer one to \_\_\_\_ for the following:
Unicast
Multicast
Broadcast
Anycast

Answer 19

Unicast: One to One
Multicast: One to Many
Broadcast: One to All
Anycast: One to Any

Question 20

Which method do network devices use to translate a name to an IP address

Answer 20

DNS

Question 21

What is the RFC number for private IPv4 address space?

Answer 21

RFC 1918

Question 22

List the RFC 1918 address ranges

Answer 22

10. 0.0.0 - 10.255.255.255
11. 16.0.0 - 172.31.255.255
12. 168.0.0 - 192.168.255.255

Question 23

List differences between UDP and TCP

Answer 23

TCP deliveries all packets in order

UDP delivers whatever packets arrive.

TCP has higher overhead.

UDP is better for real-time applications like VoIP

TCP is connection-oriented

UDP is connectionless

TCP is slower

TCP does error checknig and error recovery

UDP does error checking but discards and does not recover

TCP has a handshake UDP does not

Question 24

What is TCP sliding window?

Answer 24

The adjustment in quantity of data sent before the sender receives an acknowledgement

Question 25

What are the 3 steps in a TCP 3-way handshake.

Answer 25

SYN (initiator) SYN-ACK (responder) ACK (initiator)

Question 26

List the differences between the TCP/IP reference model and the OSI reference model. (Layer names will be covered on other slides)

Answer 26

OSI is protocol independent OSI is a reference model and TCP/IP is an implementation OSI model has 7 layers and the TCP/IP model has 4 layers.

Question 27

What OSI layer(s) provider similar functionality to the TCP/IP Application layer?

Answer 27

Application, Presentation, and Session

Question 28

What TCP/IP model layer provides the functionality of the OSI Presentation layer?

Answer 28

Application

Question 29

What TCP/IP model layer provides the functionality of the OSI Session layer?

Answer 29

Application

Question 30

What TCP/IP model layer provides the functionality of the OSI Transport layer?

Answer 30

Transport

Question 31

What TCP/IP model layer provides the functionality described by the OSI Network layer.

Answer 31

Internet layer

Question 32

What TCP/IP model layer provides the functionality described by the OSI data-link layer?

Answer 32

Network Access layer

Question 33

What TCP/IP model layer provides the functionality described by the OSI physical layer?

Answer 33

Network Access layer

Question 34

What OSI layer(s) describe the functionality of the TCP/IP Transport layer?

Answer 34

Transport layer

Question 35

What OSI layer(s) describe the functionality of the TCP/IP Internet layer.

Answer 35

Network layer

Question 36

What OSI layer(s) describe the functionality of the TCP/IP Network Access layer

Answer 36

Data Link layer and Physical layer

Question 37

List the main IOS Command modes

Answer 37

``` User EXEC Privileged EXEC Global configuration Interface configuration Subinterface configuration ROM monitor ```

Question 38

List configuration required for SSH access

Answer 38

``` line vty 0 4 login local transport input ssh/all username xxx secret xxx hostname router ip domain-name example.com crypto key generate rsa ```

Question 39

Command to view table of interface mac address mapping

Answer 39

show mac address-table

Question 40

Command to view directly connected Cisco devices

Answer 40

show cdp neighbors

Question 41

Commands to enable lldp globally, disable it on an interface, and view discovered neighbors.

Answer 41

global: lldp run interface: no lldp transmit EXEC: show lldp neighbors

Question 42

What is LLDP an acronym for?

Answer 42

Link Layer Discovery Protocol

Question 43

Describe the three possible response types for switchport port-security

Answer 43

protect: block traffic from any MAC addresses beyond the number allowed restrict: same as protect but will log violations shutdown: will err-disable the port if the number of allowed MAC addresses are exceeded

Question 44

Command for a sticky mac in port security

Answer 44

switchport port-security mac-address sticky

Question 45

Command to limit number of mac addresses on port

Answer 45

switchport port-security maximum n

Question 46

Command to enable port security

Answer 46

switchport port-security

Question 47

Command to configure port security response type

Answer 47

switchport port-security violation [protect, restrict, shutdown]

Question 48

Command to set port as static access

Answer 48

switchport mode access

Question 49

Command to set port to attempt to negotiate trunk with DTP capable switch

Answer 49

switchport mode dynamic desirable

Question 50

Default switchport DTP mode

Answer 50

dynamic auto

Question 51

List some conditions which will cause a switch to have its VLAN database replaced by a neighboring switch

Answer 51

If VTP domain is null and packet is received from switch with non-null domain. If the password is set on the non-null switch then the null switch won't inherit the VTP setup.

Question 52

A switch running in VTP client mode version 2 on cbtnuggets.com domain is not receiving the revision updates from the VTP server on version 2 from domain CBTNuggets.com. What is the problem?

Answer 52

Domain names don't match - case sensitive.

Question 53

Command for routing protocol details

Answer 53

show ip protocols

Question 54

Command too apply ACL to vty

Answer 54

access-class n [in|out]

Question 55

Configure DHCP server range 192.168.1.20-100.

Answer 55

ip dhcp excluded-address 192.168.1.1 192.168.1.19 ip dhcp excluded-address 192.168.1.101 192.168.1.254 ip dhcp pool POOL network 192.168.1.0 /24 default-router 192.168.1.1 dns-server 8.8.8.8 4.2.2.2

Question 56

Configure NAT overload to the Fa0/1 interface IP for all RFC 1918 addresses behind Fa0/0.

Answer 56

access-list 1 permit 10.0.0.0 0.255.255.255 access-list 1 permit 172.16.0.0 0.15.255.255 access-list 1 permit 192.168.0.0 0.0.255.255 interface Fa0/0 ip nat inside interface Fa0/1 ip nat outside ip nat inside source list 1 interface Fa0/1 overload

Question 57

Configure a NAT pool with the four IP address 200.1.1.2 through 200.1.1.5.

Answer 57

ip nat pool NAME 200.1.1.2 200.1.1.5 prefix-length 24

Question 58

Configure a static NAT so that | the host 10.50.1.20 connected to Fa0/0 will appear with a source of 200.2.1.1 to the ISP on Fa0/1.

Answer 58

interface Fa0/0 ip nat inside interface Fa0/1 ip nat outside ip nat inside source static 10.50.1.20 200.2.1.1

Question 59

What is the IPv6 broadcast address?

Answer 59

Trick question there is no IPv6 broadcast.

Question 60

Describe EUI-64

Answer 60

first 24-bits of MAC, followed by FFFE, followed by second 24-bits of MAC.

Question 61

List major IPv6 address type prefixes

Answer 61

Global Unicast - 2000::/3 Unique Local - FD00::/8 (FC00::/7 with FC00::/8 undefined) Link Local - FE80::/10 Multicast -FF00::/8

Question 62

What is used in the host portion of a link local address on a Cisco router.

Answer 62

Modified EUI-64 address

Question 63

Command to turn off all IPv6 router advertisements both solicited and unsolicited

Answer 63

IPv6 nd ra suppress all | note: 'all' keyword introduced in 15.1(3)T3

Question 64

What command enables Stateless Address Auto Configuration on interfaces with IPv6 addresses?

Answer 64

ipv6 unicast-routing

Question 65

Configure ipv6 route to network 2001:56::/64 with next-hop 2001:210::1

Answer 65

IPv6 route 2001:56::/4 2001:210::1

Question 66

Syslog severities are logged from 0 to _____. ____ is the most severe level while ___ is the least.

Answer 66

7 | 0, 7

Question 67

Command to enable seeing console messages on telnet/ssh vty

Answer 67

terminal monitor

Question 68

Command to send syslog messages to another host

Answer 68

logging host x.x.x.x

Question 69

Command to set daylight savings time

Answer 69

clock summer-time XX recurring

Question 70

Commands to configure NTP 1) Listen for broadcasts 2) Listen for multicasts 3) Poll server directly

Answer 70

1) interface: ntp broadcast client 2) interface: ntp multicast client 3) global: ntp server x.x.x.x

Question 71

List the four major configuration registers

Answer 71

0x2100 ROMMON 0x2101 RXBOOT 0x2102 Boot Normally 0x2142 Ignore NVRAM

Question 72

List where IOS looks for a bootable images in order

Answer 72

Images specified by "boot system" commands First IOS image in flash Broadcast for a TFTP server

Question 73

When in ROMMON how to set to boot with no config

Answer 73

confreg 0x2142

Question 74

Configure port security to re-learn MAC addresses every 10 minutes

Answer 74

switchport port-security aging time 10

Question 75

Configure a ROAS subinterface for Fa0/0 VLAN 2

Answer 75

interface Fa0/0.2 encapsulation dot1q 2 ip address x.x.x.x

Question 76

Configure logging to send only warnings level 4 and below to syslog hosts

Answer 76

logging trap warnings

Question 77

Command to set time zone

Answer 77

clock timezone XXX -n

Question 78

List steps to obtain and install a license on an IOS 15 device

Answer 78

1 - Purchase license and receive PAK key 2 - Get license file from CLM or www.cisco.com/go/license using UDI 3 - Use the CLI to install the .lic file

Question 79

How do you find the UDI and what is it a combination of

Answer 79

show license udi | It is a combination of the product id (PID) and SN. (ex: CISCO2911/K9FTX1524PIRE

Question 80

Command to show licenses

Answer 80

show license all | show license detail

Question 81

Command to show features enabled on device

Answer 81

show license feature

Question 82

Install license

Answer 82

license install flash0:licensefile.lic

Question 83

Backup license

Answer 83

license save flash:filename

Question 84

Unistall a license

Answer 84

``` license boot module x x x disable do reload license clear x conf t no license boot module x x x disable do reload ```

Question 85

What command sets the local router as an authoritative time source

Answer 85

ntp master

Question 86

What commands show cdp neighbor information

Answer 86

``` show cdp show cdp entry * show cdp neighbors show cdp neighbors detail show cdp interface show cdp traffic ```

Question 87

How to configure the router to generate a link-local IPv6 address

Answer 87

Either statically assign an IPv6 address or autoconfig. Link-local will be generated at the same time.

Question 88

What is another name for ROMMON mode?

Answer 88

Router diagnostic mode (maybe?)

Question 89

List and describe DHCP message types

Answer 89

DHCPDiscover - First packet sent by host DHCPOffer - Response from server includes IP, mask, gateway, and other information. DHCPRequest - This is the response to the DHCPOffer or simply a request if renewing DHCPDecline - The client determines the offered configuration parameters are invalid and sends a decline message. DHCPAck - This comes from the server to acknowledge the request DHCPNak - This comes from the server if DHCPRequest has an unavailable IP DHCPRelease - The client sends this when it no longer needs the lease. DHCPInform - This is used to obtain other network information if the client already has an IP manually configured or obtained elsewhere.

Question 90

When running a classful routing protocol what command allows it to use the default route even if it already knows some routes in a major network?

Answer 90

ip classless

Question 91

How many NTP stratum levels can be used?

Answer 91

16

Question 92

What should be included in a login banner?

Answer 92

- Notice that use is permitted only by authorized personnel - Notice that unauthorized use is unlawful and may be prosecuted - Notice that access and use may be monitored and logged for use in court - It should not include words like 'welcome'

Question 93

List and describe colors of the system LED on Cisco switches

Answer 93

off - no power solid green - operating normally solid amber - not operating normally

Question 94

List Cisco password best practices

Answer 94

- 10 characters - Must begin with alphabetic character - Include U/L/N/S - No dictionary words even as part of password

Question 95

What command disables cdp on a router?

Answer 95

no cdp run

Question 96

List device type codes for CDP

Answer 96

``` R - Router T - Transparent Bridge S - Switch H - Host r - Repeater P - Phone D - Remote M - Two-port Mac Relay ```

Question 97

List device type codes for LLDP

Answer 97

``` (R) Router (B) Bridge (T) Telephone (C) DOCSIS Cable Device (W) WLAN Access Point (P) Repeater (S) Station (O) Other ```

Question 98

What is the mac address-table default timeout. Bonus, how do you change it?

Answer 98

5 minutes mac address-table aging time ss

Question 99

Configure arp timeout

Answer 99

interface: arp timeout ss

Question 100

View arp timeout

Answer 100

show interfaces

Question 101

What is the arp timeout default?

Answer 101

4 hours

Question 102

View CAM table timeout

Answer 102

show mac address-table aging

Question 103

What DHCP configuration command is used to provide phones or other hosts that need a tftp server that address?

Answer 103

next-server x.x.x.x

Question 104

What is equivalent to ntpq -p

Answer 104

show ntp associations

Question 105

How to tell if the clock is synchronized

Answer 105

No asterik and/or 'show ntp status'

Question 106

How to find ntp protocol or bad version packets?

Answer 106

show ntp packets

Question 107

Command to verify md5 hash of file

Answer 107

verify /md5 filesystem:filename [hash]

Question 108

List SYSLOG level names with their associated numbers

Answer 108

``` Emergency - 0 Alert - 1 Critical - 2 Error - 3 Warning - 4 Notification - 5 Informational - 6 Debugging - 7 ```

Question 109

Command to suppress CDPv2 advertisements

Answer 109

no cdp advertise-v2

Question 110

What OSI layer includes SCP and service requests

Answer 110

Session Layer