Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

ag-CCNA COPY PLUS > LAB Config Cards 3 > Flashcards

LAB Config Cards 3 Flashcards

1
Q

What command would you use to configure DAI on vlans 11,12 and 14?

A 
#conf t
#ip arp inspection 11,12,14

This makes those ports untrusted.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is DAI?

A

Dynamic ARP Inspection (DAI) is a security feature that validates Address Resolution Protocol (ARP) packets in a network. DAI allows a network administrator to intercept, log, and discard ARP packets with invalid MAC address to IP address bindings. This capability protects the network from certain “man-in-the-middle” attacks.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Configure DAI on vlan 1 and verify it.

A 
#conf t
#ip arp inspection vlan 1
#end
#sh ip arp inspection
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Configure interface fa6/3 as trusted - DAI - Verify configuration.

A

Configure interface fa6/3 as trusted:

S1# conf t
Enter configuration commands, one per line. End with CNTL/Z.
S1(config)# in fa6/3
S1(config-if)# ip arp inspection trust
S1(config-if)# end
S1# show ip arp inspection interfaces fastEthernet 6/3

Interface Trust State Rate (pps)
————— ———– ———-
Fa6/3 Trusted None
S1#

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

View DIA bindings.

A

Verify the bindings:

S1# show ip dhcp snooping binding
MacAddress IpAddress Lease(sec) Type VLAN Interface
—————— ————— ———- ————- —- ——————–
00:02:00:02:00:02 1.1.1.2 4993 dhcp-snooping 1 FastEthernet6/4
S1#

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Check the statistics before and after Dynamic ARP processes any packets for vlan 1:

A

Check the statistics before and after Dynamic ARP processes any packets:

S1# show ip arp inspection statistics vlan 1

Vlan Forwarded Dropped DHCP Drops ACL Drops
—- ——— ——- ———- ———-
1 0 0 0 0

Vlan DHCP Permits ACL Permits Source MAC Failures
—- ———— ———– ——————-
1 0 0 0

Vlan Dest MAC Failures IP Validation Failures
—- —————– ———————-
1 0 0
S1#

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

DAI - Arp requests are sent and permitted. View the statistics for vlan 1.

A

S1# show ip arp inspection statistics vlan 1

Vlan Forwarded Dropped DHCP Drops ACL Drops
—- ——— ——- ———- ———-
1 2 0 0 0

Vlan DHCP Permits ACL Permits Source MAC Failures
—- ———— ———– ——————-
1 2 0 0

Vlan Dest MAC Failures IP Validation Failures
—- —————– ———————-
1 0 0
S1#

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Configure a static route from R1 to network 172.16.2.0/24 via R1’s S0/0/0 interface.

A 
#conf t
#ip route 172.16.2.0 255.255.255.0 s0/0/0
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What command would you issue in the interface configuration mode on a switch to make the IP phone trust the CoS priority of incoming data packets generated by the attached host?

A

switchport priority extend trust

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What REST API encoding format uses HTML-like tags to define blocks of data?

A

XML

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What ospf command is used to configure a non broadcast network or a NBMA - non-broadcast multiaccess network?

A

ip ospf network non-broadcast

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

OSPF - what are the hello and dead timers for broadcast and non-broadcast networks?

A

Broadcast -
Hello - 10 seconds
Dead - 40 seconds

Non-Broadcast
Hello - 30 seconds
Dead - 120 seconds

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

In a controller-based network, such as a SDN network the controller connects to the data plane by using what southbound API’s?

A

NETCONF
OpenFlow
OPFlex
OnePK

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

In a controller-based network and a traditional network, the management plane consists of the what protocols?

A

Telnet
SSH - Secure Shell
Simple Network Management Protocol SNMP
Syslog

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What standard includes PortFast, UplinkFast and BackboneFast?

A

802.1w
RSTP
They can be used on 802.1D but they are not native to the standard.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Pertaining to networks where the majority of the traffic uses TCP, what are the benefits of WRED?

A

WRED - Weighted random early detection is useful for networks where the majority of traffic uses TCP because TCP packets that are dropped must be retransmitted. Additionally, TCP sources reduce traffic flow when congestion occurs, thereby further slowing down the network.

WRED is a congestion avoidance mechanism that addresses packet loss caused by tail drop, which occurs when new incoming packets are dropped because a router’s queues are too full to accept them.

Tail drop causes a problem called global TCP synchronization, whereby all TCP sources on a network reduce traffic flow during periods of congestion and then TCP sources increase traffic flow when congestion is reduced. WRED allows you to implement different tail drop thresholds for each IP precedence or DSCP - Differentiated Services Code Point.

17
Q

What configuration management tool accepts inbound requests from agents by using HTTPS on TCP port 8140?

A

Puppet.

Puppet is the most mature and widely used of all config mgmt tools.
Client/Server architecture - Ruby Domanin Specific Language (DSL)

18
Q

What configuration management tool accepts inbound requests from agents by using HTTPS on TCP port 443?

A

Chef.

Client/Server or stand alone config.

19
Q

What protocol does Ansible use to connect to remote nodes?

A

SSH TCP port 22

Does not use agent software on managed nodes. Config. stored in playbooks that are written in YAML

20
Q

FTP uses what ports?

A

TCP 20 and 21

21
Q

HTTP uses what ports?

A

TCP port 80

22
Q

SMTP uses what port?

A

TCP port 25

23
Q

What port does POP3 use?

A

TCP port 110

24
Q

DHPC uses what port/s?

A

UDP 67 & 68.

25
Q

SNMP uses what port/s?

A

UDP ports 161 & 162.

26
Q

TFTP uses what port/s?

A

UDP 69.

27
Q

NTP uses what port/s?

A

UDP 123

28
Q

What port does DNS use?

A

Port 53 - TCP / UDP

29
Q

What port/s does RADIUS use?

A

Remote Authentication Dial0In User Service uses UDP ports 1812 & 1813

30
Q

What command would you use to globally disable LLDP?

A

no lldp run

31
Q

Command that displays Syslog server settings for every AP joined to the WLC.

A

show ap config global

32
Q

Displays the memory dump for a specific lightweight AP?

A

sh ap config core-dump MyLAP

33
Q

Displays a list of dump files generated by lightweight AP’s

A

show ap crash-file

34
Q

Displays IP addressing and other information about the specified AP.

A

show ap config general MyLAP

35
Q

What is a hypervisor and what is another name for it?

A

A hypervisor is software that is capable of virtualizing the physical components of computer hardware.

Another name for a hypervisor is VMM - Virtual Machine Monitor.

36
Q

What command would you use to perform ospf equal cost load balancing over eight routes?

A

maximum-paths 8

Where 8 paths have the same bandwidth.

ag-CCNA COPY PLUS (34 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions