Module 10: Network Management Flashcards by Jon Brogan

What two protocols can be used for device discovery?

CDP and LLDP

How well did you know this?

Not at all

Perfectly

What protocol is used to synchronise time across a network?

NTP

How well did you know this?

Not at all

Perfectly

What is the SNMP protocol and what is it used for?

Simple Network Management Protocol (SNMP) to manage devices, monitor network performance, find and solve network issues, and plan for network growth.

How well did you know this?

Not at all

Perfectly

What is the syslog protocol and what is it used for?

It is a system logging protocol used by devices such as routers, switches, application servers, firewalls and other networking appliances.

It allows these networking devices to send their system messages across the network to a syslog server for analysis.

How well did you know this?

Not at all

Perfectly

What is CDP and what is it used for?

Cisco Discovery Protocol (CDP) is a protocl that can be used to map a network of Cisco devices. It is proprietary and only some other vendors support it.

How well did you know this?

Not at all

Perfectly

What is LLDP and what is it used for?

Link Layer Discovery Protocol (LLDP) is a protcol that can be used to map a network of any devices. It is non-proprietary and many vendors support it.

How well did you know this?

Not at all

Perfectly

What IOS command is used to verify the status of CDP?

show cdp

How well did you know this?

Not at all

Perfectly

What IOS command is used to enable CDP globally for all supported interfaces on a device?

cdp run

How well did you know this?

Not at all

Perfectly

What IOS command is used to disable CDP globally for all supported interfaces on a device?

no cdp run

How well did you know this?

Not at all

Perfectly

Why should you not allow CPD to run on interfaces connected outside your network, such as the WAN port that connects to the internet?

It is a security concern to broadcast networking information to an insecure network.

How well did you know this?

Not at all

Perfectly

What IOS commands are used to disable CDP on the interface G0/0/1?

interface g0/0/1
no cdp enable

How well did you know this?

Not at all

Perfectly

What IOS command is used to verify the status of CDP on all interfaces of the device?

show cdp interface

How well did you know this?

Not at all

Perfectly

What IOS command is used to verify the status of CDP and display a list of neighbors?

show cdp neighbors

How well did you know this?

Not at all

Perfectly

What port of R1 is the device S1 plugged into in the CDP output?

Gig 0/0/1

How well did you know this?

Not at all

Perfectly

What port of S1 is the local device R1 plugged into in the CDP output?

Fas 0/5

How well did you know this?

Not at all

Perfectly

How can we tell that the device S1 is a switch based on the CDP output?

The capability has an S indicating it is a switch.

How well did you know this?

Not at all

Perfectly

What IOS command can be used to see full details of connected devices using CDP? What important part is not displayed with just show cdp neighbors?

show cdp neighbors detail can be used to show full details, including the IP address of the devices.

How well did you know this?

Not at all

Perfectly

Why is SSH useful when using CDP to discover devices on a network?

CDP can display the IP address of connected devices, which can then be connected to via SSH and used to further map the network.

How well did you know this?

Not at all

Perfectly

Why might you use LLDP rather than CDP to discover network devices?

LLDP is not specific to Cisco devices, so can be used to discover neighboring devices from other vendors.

How well did you know this?

Not at all

Perfectly

What IOS commnad is used to enable LLDP?

lldp run

How well did you know this?

Not at all

Perfectly

What extra step must you take after enabling LLDP, that isn’t required for CDP?

You must enable both the transmitting and receiving of LLDP packets on interfaces.

How well did you know this?

Not at all

Perfectly

What IOS commands are used to enable the transmission of LLDP packets on interface G0/1?

lldp run
interface G0/1
lldp transmit
lldp receive
end

How well did you know this?

Not at all

Perfectly

What IOS command displays the status of LLDP?

show lldp

How well did you know this?

Not at all

Perfectly

What IOS command shows discovered LLDP neighbors?

show lldp neighbors

How well did you know this?

Not at all

Perfectly

What port of S2 is the local device S1 plugged into in the LLDP output?

Fa0/1

What port of the local device S1 plugs into R1 in the LLDP output?

Fa0/5

What IOS command shows full information about discovered LLDP neighbors? What important part is not displayed with just `show lldp neighbors`?

`show lldp neighbors detail` also shows the IP address of the neighboring devices.

What is the NTP protocol and what is it used for?

Network Time Protocol (NTP) is used for setting and synchronising time on devices.

Why is not advisable to manually set the date and time on network devices?

Devices can get out of sync without using a protocol like NTP, especially after a reboot where this information is often lost.

What port and protocol does NTP use?

UDP port 123

What type of arrangement system does NTP use?

A hierarchical system of time sources.

What IOS command displays the date and time on the device and whether this was set manually or via NTP??

`show clock detail`

What IOS command is used to configure NTP and set the authorative server?

`ntp server `

What IOS command is used to show where NTP information is being synchronised from?

`show ntp status`

In NTP what is a stratum? What is stratum 0, 1, 2 and 16?

A stratum is the administative distance between a GPS or atomic clock. - Clocks are at stratum 0. - Stratum 1 would be a device like a router directly synchronised with a clock. - Stratum 2 would be a device connected to that router and so on up to 15 'hops' away from the clock. - Stratum 16 is 'unsynchronised'.

What sorts of devices does SNMP allow an administrator to manage?

Network Infrastructure Devices: - Routers - Switches - Firewalls and security devices - Load balancers Servers: - Windows, UNIX and Linux servers - Virtual machines and their hosts Wireless and IoT Devices: - Access points - IP cameras - Smart sensors and automation systems Peripherals and Storage Devices - Network printers, scanners and copiers - NAS - SAN Environmental Devices: - UPS - HVAC systems - Temperature and humidity sensors VoIP - IP phones - VoIP gateways

What three elements is the SNMP system made of?

1. SNMP manager 2. SNMP agents (managed node) 3. Management Information Base (MIB)

What is an SNMP manager?

Part of the Netowrk Management System (NMS) it runs the management software, such as PRTG or SolarWinds.

What is an SNMP agent?

A managed node device that collects information about itself that can be retreived by an SNMP manager, such as a router.

What is the Management Information Base (MIB)?

The place where information is stored locall by a managed node for retreival by an SNMP manager.

What are the two primary SNMP manager requests?

get and set

What is an SNMP *set* request and what are some examples of what it might be used for?

It is used to set variables on a managed node, or initiaite actions such as a reboot.

What is an SNMP *get* request and what are some examples of what it might be used for?

It is used to query a device for data, such as its uptime, or what interfaces are currently up/up

What is an SNMP Agent Trap and why might it be used?

SNMP Agent Traps are unsolicited alerts sent from a managed device to the SNMP manager, providing immediate notifications of critical events like failed authentication attempts or network failures. They bypass the delay of periodic polling, ensuring faster issue detection.

Which SNMP version authenticates the source of management messages?

Version 3

Which SNMP version does not provide encrypted management messages?

Version 2

Which SNMP version is supported by Cisco IOS software?

Version 1, 2 and 3 - although 1 is considered obsolete.

Which SNMP version uses community-based forms of security?

Version 2

Which SNMP version is used for interoperability and includes message integrity reporting?

Version 3

Which SNMP version provides services for security models?

Version 2 and 3

Which SNMP version includes expanded error codes with types?

Version 2 introduced them (and is the answer Cisco wants) but really both Version 2 and Version 3 *include* them...

Why do most organisations only use SNMPv1 and SNMPv in read only `ro` mode?

Because both use plaintext community strings as passwords, which is vulnerable to packet sniffing and man-in-the-middle attacks.

Fill in the blank: SNMP can be used to observe CPU utilisation over time by _______.

A NMS poling devices and creating a graph.

What three primary functions of the syslog service?

1. The ability to gather logging information for monitoring and troubleshooting 2. The ability to select the type of logging information that is captured 3. The ability to specify the destinations of captured syslog messages

What is syslog severity level 0?

Emergency - System Unusable

What syslog severity level is for Debugging?

Level 7

What is the default format of syslog messages on Cisco IOS software in the format %--:

`%facility-severity-MNEMONIC: description`

In the sample output of a Cisco IOS syslog message what is the MNEMONIC?