Implementing VLANs and Trunks Flashcards
Which statement regarding broadcasts and VLANs is true?
A. Ports in the same VLAN do not share broadcasts.
B. Ports in the same VLAN share broadcasts, while ports in different VLANs do not.
C. Broadcast frames are retransmitted with default VLAN only.
D. Ports in the same VLAN share broadcasts, but they cannot share broadcasts with ports on different switches.
B. Ports in the same VLAN share broadcasts, while ports in different VLANs do not.
What is the default range for normal VLANs?
A. 0–1005
B. 1–1005
C. 1–4094
D. 1006–4094
B. 1–1005
Which Cisco IOS command should you use to create a VLAN?
A. Switch(config)# virtual lan create vlan-id
B. Switch(config)# vlan create vlan-id
C. Switch(config)# vlan vlan-id
D. Switch(config)# virtual lan enable vlan-id
C. Switch(config)# vlan vlan-id
Assume that you are the sole network engineer in your company. You have received a new ticket saying that there is a new employee on 3rd floor; her PC is connected to a switch interface. You have connected to the switch on the floor and entered the interface configuration mode of the connected port to the PC. Once you have configured the interface to access mode, which command should you use to assign the interface to a data VLAN?
A. switchport vlan vlan-id
B. switchport access vlan vlan-id
C. switchport mode access vlan vlan-id
D. switchport mode access vlan-id
B. switchport access vlan vlan-id
The correct answer is “switchport access vlan vlan-id.” When you connect host to a switch port, you should associate it with a VLAN. In the interface configuration mode you should set the interface to an access mode, and then put the access port in VLAN using the switchport access vlan vlan-id command. The other commands are invalid commands.
Assume that you have received a switch with no prior VLAN configuration. Regarding VLANs, which statement is true?
A. All interfaces belong to VLAN 1.
B. All interfaces are administratively down.
C. All interfaces do not belong to any VLAN.
D. The show vlan brief command shows no VLANs.
A. All interfaces belong to VLAN 1.
Regarding trunk ports, which statement is true?
A. The show vlan command can be used to check trunk ports on a switch.
B. The native VLAN on a trunk port is tagged.
C. All VLANs are sent untagged on a trunk port.
D. By default, all VLANs are allowed on a trunk.
D. By default, all VLANs are allowed on a trunk.
The correct answer is “By default, all VLANs are allowed on a trunk.” If you do not explicitly allow VLANs to traverse the trunk, all will be allowed to cross the link. By default the native VLAN is VLAN 1, and it is untagged by default. All the other VLANs that are traversing the trunk are tagged. If you use the show vlan command, you will not see any trunk ports in the output. In this case, it is better to use the show interfaces trunk command.
Your boss asked you to secure the unused switch ports on a switch that resides on a 2nd floor. Which two options are recommended as best practice? (Choose two.)
A. Place unused ports into VLAN 1.
B. Administratively shut down the unused ports.
C. Create a black hole VLAN, and place unused ports into that VLAN.
D. Configure unused ports as trunk ports.
E. Place unused ports into a VLAN that has access to the internet.
B. Administratively shut down the unused ports.
C. Create a black hole VLAN, and place unused ports into that VLAN.
The correct answer is “Administratively shut down the unused ports” and “Create a black hole VLAN, and place unused ports into that VLAN.” A good security practice is to configure all the ports on all switches to be associated with VLANs other than VLAN 1. Also, all unused switch ports should be assigned to black hole VLAN and set to be administratively down. A black hole VLAN is a term for a VLAN, which has no route, or no default-gateway to other networks within your organization, or to the internet.
Which command displays the output below on the SW1 switch?
VLAN Name Status Ports
—- ——————————– ——— ——————————-
1 default active
13 Users2 active Et0/0
65 Users1 active Et0/1
80 Servers active Et0/2
< — output omitted — >
A. show vlan brief
B. show run vlan
C. show spanning-tree vlan
D. show status vlan
A. show vlan brief
Which command displays the output below on the SW2 switch?
Port Mode Encapsulation Status Native vlan
Et0/3 on 802.1q trunking 1
Port Vlans allowed on trunk
Et0/3 1-4094
Port Vlans allowed and active in management domain
Et0/3 1,13,65,80
Port Vlans in spanning tree forwarding state and not pruned
Et0/3 1,13,65,80
A. show interface trunk
B. show run trunk
C. show spanning-tree trunk
D. show status trunk
A. show interface trunk
What must you ensure when configuring two ends of an 802.1Q trunk?
A. The native VLAN must be tagged.
B. The native VLAN must be the same.
C. DTP must be disabled.
D. DTP modes on both ends must be the same.
B. The native VLAN must be the same.
What happens to a port that belongs to VLAN 5 after VLAN 5 is accidentally deleted?
A. The port goes to the error-disabled state and is not operational.
B. The port becomes inactive and will not be functional until the missing VLAN 5 is created.
C. The port remains operational.
D. The port is shut down.
B. The port becomes inactive and will not be functional until the missing VLAN 5 is created.
Assume that you have been told to secure the trunk ports on a switch. Which two options are recommended as best practice? (Choose two.)
A. Change the native VLAN to something other than VLAN 1.
B. Make the native VLAN different on both ends.
C. Tag the native VLAN.
D. Enable DTP.
E. Make the native VLAN VLAN 1.
A. Change the native VLAN to something other than VLAN 1.
C. Tag the native VLAN.
By default, which VLAN or VLANs are permitted across a trunk link?
A. no VLANs
B. native VLAN
C. all VLANs
D. VLAN 0
C. all VLANs
Assume that you have just created a VLAN 10 on a switch. Which command should you use to verify if the VLAN was created?
A. show virtual lan
B. show vlan id 100
C. show vlan brief
D. show virtual lan id 10
E. show interface Ethernet0/0 switchport
C. show vlan brief
How does 802.1Q incorporate VLAN information into a frame?
A. It adds a 4-byte header and a 26-byte tag to the frame header.
B. It adds a 4-byte tag to the frame header.
C. It reroutes the frame through the VLAN interface, causing a different destination address.
D. It reroutes the frame through the VLAN interface, causing a different source address.
B. It adds a 4-byte tag to the frame header.
