Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

CCNA 2013 > ICND2 CH1 - Virtual LANs > Flashcards

ICND2 CH1 - Virtual LANs Flashcards

1
Q

Native VLAN - why must all switches agree on the native VLAN ID?

A

802.1Q header not added to native VLAN (default VLAN ID 1), untagged packets received on trunk are assigned to native VLAN, that’s why all switches must agree (have set) the same native VLAN.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

How are VLANs and subnets different?

A

VLAN - Layer 2 concept.

Subnet - Layer 3 concept.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Most common reasons for using VLANs (five)

A
  1. Flexibility, not limited by physical location.
  2. Smaller LANs (broadcast domains), reduce overhead to each host.
  3. Reduce workload for Spanning Tree Protocol (STP) - limit VLAN to single access switch.
  4. Security, keep hosts with sensitive data on separate VLAN.
  5. PC <-> Phone <-> Switch: separate traffic.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Can Cisco switches disable VTP? (VLAN Trunking Protocol)

A

No.

Closest option: user transparent mode - switch ignores VTP but forwards VTP messages to other switches.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What determines if a VTP update will cause a switch in server or client mode to update it’s VTP database?

A

If the VTP update has a higher database configuration revision number (each update +1).

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What ports are used to send VTP messages sent to other switches?

A

VTP messages are sent out on all trunks!

Process is called synchronization.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Three requirements for VTP to work between two switches.

A
  1. VLAN trunk (ISL or 802.1Q)
  2. VTP domain name must match (case sensitive)
  3. VTP password must match (case sensitive), if configured!
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Where is VLAN configuration actually stored on a switch?

A

In a file called vlan.dat, stored in FLASH MEMORY!

Switches in transparent mode store VLAN configuration in both running-config and vlan.dat.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is the command to remove VLAN and VTP configuration from a switch?

A

delete flash:vlan.dat

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

VTP: Server | Client | Transparent

Which only sends VTP messages out ISL or 802.1Q trunks?

A

Server: Yes
Client: Yes
Transparent: Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

VTP: Server | Client | Transparent

Which supports CLI configuration of VLANs?

A

Server: Yes
Client: No
Transparent: Yes (because it’s autonomous, can have independent VLANs)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

VTP: Server | Client | Transparent

Which can use normal-range VLANs (1-1005)?

A

Server: Yes
Client: Yes
Transparent: Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

VTP: Server | Client | Transparent

Which can use extended-range VLANs (1006-4095)

A

Server: No
Client: No
Transparent: Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

VTP: Server | Client | Transparent

Which synchronizes (updates) its own config database when receiving VTP messages with a higher revision number?

A

Server: Yes
Client: Yes
Transparent: No

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

VTP: Server | Client | Transparent

Which creates and sends periodic VTP updates every 5 minutes?

A

Server: Yes
Client: Yes
Transparent: No

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

VTP: Server | Client | Transparent

Which does not process received VTP updates but does forward received VTP updates out other trunks?

A

Server: No
Client: No
Transparent: Yes

17
Q

VTP: Server | Client | Transparent

Which places VLAN ID, VLAN name, and VTP configuration into the running-config file?

A

Server: No
Client: No
Transparent: Yes

18
Q

VTP: Server | Client | Transparent

Which places the VLAN ID, VLAN name, and VTP configuration into the vlan.dat file in flash?

A

Server: Yes
Client: Yes
Transparent: Yes

19
Q

Steps to configure a new VLAN (two):

A
  1. ! create VLAN and move into VLAN configuration mode
    (config) # vlan vlan-id
  2. ! optional, assign name to VLAN, default VLAN####

(config-vlan)# name name

20
Q

Steps to configure a VLAN for each access interface (three):

A
  1. ! move into interface configuration mode for desired interface
    (config) # interface fa0/1
  2. ! specify the VLAN number associated with this interface

(config-if)# switchport access vlan id-number

  1. ! optional, disable trunking on interface, ensuring access interface

(config-if)# switchport mode access

21
Q

Default VTP configuration for a switch (four settings):

A
  • VTP server mode.
  • No VTP domain name.
  • VLAN 1 and 1002-1005 automatically configured, can’t be deleted.
  • All access interfaces assigned to VLAN 1.
22
Q

What does the optional interface subcommand switchport mode access do?

A

Force access mode ONLY.

Otherwise, interface could negociate to use trunking, becoming a trunk.

23
Q

Explain trunking administrative mode options with the interface subcommand

switchport mode

access

trunk

dynamic desirable

dynamic auto

A

switchport mode access <- prevent trunking, force access mode

switchport mode trunk <- force trunking

switchport mode dynamic desirable <- initiate and respond to negotiation messages, establish trunk

switchport mode dynamic auto <- passively wait and respond to negotiation messages, establish trunk

24
Q

Describe the terms Administrative and Operational as it referes to switches.

A

Administrative - referes to what is configured.

Operational - refers to what is currently happening.

25
Q

What VLAN IDs allowed by default on a trunk port?

A

1-4094

212 = 4096, VLAN ID field has 12 bits, VLAN ID 0 and 4095 reserved.

26
Q

What FOUR reasons exist that prevent a particular VLAN’s traffic from crossing a trunk?

A
  1. VLAN not in trunk’s allowed VLAN list.
  2. VLAN does not exist or not active.
  3. VLAN automatically pruned by VTP.
  4. VLAN STP instance blocked trunk.
27
Q

Cisco recommendations for how to protect unused switch ports (three).

A
  1. shutdown interface (administratively disable)
  2. Prevent trunking negotiation (use switchport nonegociate or switchport mode access)
  3. Assign port to unused VLAN (parking lot VLAN)

Note: Shutting down interface eliminates security issue but the other two tasks prevent any immediate problems if someone enables interface with no shutdown command.

28
Q

What is Cisco’s recommendation for trunk negotiation on all in-use access interfaces?

A

Disable trunk negociation on access interfaces.

Use switchport nonegociate interface subcommand.

Note: Thinking is that an attacker could disconnect a ligitimate user’s computer from RJ-45 port and try trunk negociation with attacker’s PC.

29
Q

What can all the switches in the same VTP domain learn from each other?

A

VLAN configuration information.

30
Q

Steps to configure VTP on a switch (six).

A
  1. (config)# vtp mode {server | client}
  2. (config)# vtp domain ***domain-name ** * ! case-sensitive
  3. (config)# vtp password password-value ! (optional) case-sensitive
  4. (config)# vtp prunning ! (optional)
  5. **(config)# vtp version 2 ** ! (optional)
  6. Bring up trunks between the switches.
31
Q

Two commands to verify VTP configuration since these settings are only stored in vlan.dat file in flash when in server and client mode:

A

show vtp status

show vlan

NOTE: Any analysis of VTP and VLANs on Cisco switches depends on these two commands.

32
Q

What VLAN ID is used to send VTP and CDP messages on trunks?

CCNA 2013 (4 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions