Module 1-3 SG Flashcards
Give the steps of the switch boot sequence
Five-step boot sequence.
1. Loads a POST program stored in ROM
2. Loads the boot loader software.
3. Boot loader performs low-level CPU initialization
4. Boot loader initializes flash file system on system board
5. Boot loader locates and loads a default IOS operating system image into memory and give control of switch to the IOS.
In what part of the Cisco device is the startup config stored
Located in the flash. File is called config.text
Give the steps necessary to recover from a system crash on a switch including the syntax issued at the switch prompt
5 Step process.
1. connect a pc by console cable to switch console. configure terminal software to connect to switch
2. unplug switch power cord
3. reconnect power cord to the switch, then within 15 seconds press and hold down mode buttom while system LED is flashing green
4. continue pressing mode until system led turns briefly amber then solid green. release mode button
5. boot loader switch: prompt appears in the terminal emulation software on the pc.
Define Switched Virtual Interface (SVI)
SVI is a virtual interface, but can be configured similar to a physical port.
For what is the SVI used?
For switch management configuration. Provides IP connection for switych and can be used to route traffic on a layer 3 switch.
Give the command syntax to configure an SVI
S1(config)#interface vlan <vlan>
S1(config-if)#ip address <ip> <mask></mask></ip></vlan>
Explain the difference in full and half duplex
Full-duplex increases bandwidth efficiency by allowing both ends of a conenction to send and receive data at the same time.
Half-duplex is unidirectional, so data can only flow in one direction at a time. This results in collisions and performance issues.
What is Auto-MDIX
automatic medium-dependent interface crossover. when enabled, switch interface automatically detects the required cable connection type and configures the connection appropriately.
Which cables are detected with Auto MDIX
straight-through or crossover.
Which show command verifies Layers 1 and 2 are operational
show interfaces
Explain Runt frames, Giants, and CRC errors
runt frame, ethernet frames that are shorter than the 64-byte minimum allowed length. usually caused by collisions or malfunctioning NICs.
giants, frame larger than the maximum allowed size.
CRC errors, on ethernet and serial interfaces, usually indicate a media or cable error.
Write the commands to configure a switchport for duplex speed and autosensing the cable Start in global config
S1(config)# interface FastEthernet 0/1
Configure the interface duplex. S1(config-if)# duplex full
Configure the interface speed. S1(config-if)# speed 100
S1(config)# interface FastEthernet 0/1
S1(config-if)#mdix auto
Why is telnet no longer used Why is it insecure
Older protocol that uses unsecure plaintext transmissions of both login authentication and data transmitted between communicating devices.
What are the TCP port numbers for telnet and ssh
ssh 22, telnet 23
How can you verify if a switch supports SSH
show version command. If combination includes “k9” it supports encryption. or show ip ssh command.
Give all the steps and configuration syntax required to set up SSH on a switch
6 steps.
1. verify ssh support using show ip ssh
2. configure ip domain using ip domain-name <domain-name> in global config
3. generate rsa key pairs using crypto key generate rsa in global config
4. configue user authentication by doing username <username> and enable secret <pass>
5. configure vty lines using transport input ssh and login local commands
6. enable ssh version 2 using ip ssh version 2 command in global config</pass></username></domain-name>
What show commands can be used to verify SSH is operational
show ip ssh
How do you change the command prompt
hostname <name></name>
How do you secure privilege exec
enable secret <pass></pass>
How do you secure console access
line con 0
password <pass>
login
exit</pass>
How do you secure remote access
line vty 0 4
password <pass>
login
exit</pass>
How do you encrypt all passwords
service password-encryption
How do you configure a loopback interface
interface loopback <number>
ip address <ip> <mask></mask></ip></number>
How do you configure a Layer 3 interface
To be available, an interface must be configured with at least one IP, activated, and optionally, a description.
ip address <ip> <mask>
ipv6 address <ipv6/prefix>
description <description>
no shutdown
exit</description></mask></ip>
Explain dual stacked
Network topology that uses both ipv4 and ipv6 at the same time.