Stp Flashcards

Question 1

Q

Stp primary/secondary default values

Answer

A

If root > 24576 = 24.576

If root < 24476 = highest possible x of 4096

Question 2

Q

Stp def int cost

Answer

A

10 Gbps 2 2000
1 Gbps 4
100 Mbps 19
10 Mbps 100

Question 3

Q

Stp timers

Answer

A

Hello = 2
MAXage = 10 * hello
Forward delay = 15

Question 4

Q

Default BID priority

Question 5

Q

802.1D port roles

Answer

A

Root

Designated

Question 6

Q

802.1w port roles

Answer

A

Root Alternate
Designated backup
Disabled

Question 7

Q

RSTP port states

Answer

A

Forwarding
LEARNING
DISCARDING

Question 8

Q

Stp port states

Answer

A

Forwarding
Listening
Learning
Blocking

Question 9

Q

Stp Root secondary default

Answer

A

> root

< Everything else

Question 10

Q

Default costs of routes

Answer

A

0 connected
1 static
20 bgp
90 eigrp
110 ospf
120 rip
200 iBGP
255 unusuable

Question 11

Q

Ospf def costs

Answer

A

Serial 64
Ethernet 10
Fast ethernet 1

Question 12

Q

Ospf def reference bandwidth

Answer

A

100.000 - 100 Mbps

Question 13

Q

Default max load balancing ospf/eigrp

Question 14

Q

Max etherchannel links

Question 15

Q

Cisco etherchannel protocol / setting

Answer

A

Pagp - desirable auto

Question 16

Q

Def switchport dtp setting

Question 17

Q

How to change ospf cost

Answer

A

Change the bandwidth on the interface (in kbps)
Set cost interface directly 1 - 65.535
Change the reference bandwidth (in Mbps)

Question 18

Q

Vlan ranges

Answer

A

1-1005
(1002-1005 réservés)
1006-4094

Question 19

Q

VTP default settings

Answer

A

Server mode
Pruning disabled
Version 1

Question 20

Q

VTP requirements

Answer

A

Must be trunk

VTP domain and pass must match

Question 21

Q

802.1x supplicant?

Answer

A

Workstation

Question 22

Q

802.1x authenticator

Answer

A

LAN SWITCH

Question 23

Q

Ospf all routers address

Answer

A

224.0.0.5

Question 24

Q

Ospf Dr and bdr address

Answer

A

224.0.0.6

Question 25

Q

how to advertise networks for ospfv6

Answer

A

Activated per interface, no network commands

Question 26

Q

Ospfv3 neighbor requirements

Answer

A

Do not have to be in same subnet
Hello dead timers must match
Unique RID
Same area
Auth

Question 27

Q

Ospf neighbor requirements

Answer

A

Do not have to be in same subnet
Hello dead timers must match
Unique RID
Same area
Auth

Question 28

Q

DEFAULT OSPF TIMERS

Answer

A

Hello 10
Dead 40 (4x hello)
Lsa reflood 30 min

Question 29

Q

Ospf becoming neighbors routine

Answer

A

A sends hello to B
B learns of A and goes into INIT
B sends hello to A
A goes into 2-way state
A sends hello to B
A goes into 2-way state

Question 30

Q

Private IP ranges

Answer

A

A 10.0.0.0 /8
B 172.16.0.0 /12
C 192.168.0.0 /16

Question 31

Q

IP classes

Answer

A

A 1-126 /8
B 128-191 /16
C 192-223 /24
D 224-239

Question 32

Q

ACL ranges

Answer

A

Standard
1-99
1300-1999

Extended
100-199
200-2699

Question 33

Q

Tacacs+ kenmerken

Answer

A

TCP port 49
Used for network devices
Encrypts pass + whole packet
Can limit IOS shell per usergroup
Cisco prop

Question 34

Q

RADIUS kenmerken

Answer

A

UDP port 1645, 1812
Used mainly for users
Encrypts only password
RFC2865

Question 35

Q

Where are VLAN commands stored?

Question 36

Q

Where are Switchport assignments stored?

Question 37

Q

Where are VTP commands stored

Question 38

Q

EIGRP variance

Answer

A

Variance is a number (1 to 128), multiplied by the local best metric then includes the routes with the lesser or equal metric. The default Variance value is 1, which means equal-cost load balancing.

Question 39

Q

EIGRP/OSPF max load balancing

Question 40

Q

soft ospf area router limit

Question 41

Q

How does ospf mulit area reduce routing table and lsa db size?

Answer

A

Route summary

Question 42

Q

Vtp summary advertisement time

Question 43

Q

VTP: Vlan advertisement request

Answer

A

switch asks for a subset advertisement when the

summary advertisement has a higher revision number than itself

Question 44

Q

vtp subset advertisement

Answer

A

sent when VLAN configuration database has changed

Question 45

Q

K-value binary trick

Answer

A

10 0 / 10100

Question 46

Q

Vector

Answer

A

(aka direction) Next hop router and outgoing interface

Question 47

Q

Metric

Answer

A

measurement of distance

Question 48

Q

Metric value of infinity (rip/ospf/eigrp)

Answer

A

16 for RIP / 2^32 – 1 for EIGRP / 2^24-1 for OSPF

Question 49

Q

When do EIGRP partial update messages get sent

Answer

A

-When link fails
-When new route becomes available
(only contains new info)

Question 50

Q

EIGRP addr

Answer

A

224.0.0.10

Question 51

Q

Does OSPF use split horizon?

Question 52

Q

EIGRP Three step model

Answer

A

Neighbor discovery –> Neighbor table
Topology exchange –> topology table
Choosing routes , analysis of topology –> Route table

Question 53

Q

EIGRP Neighbor requirements

Answer

A

Authentication
Same AS number
Same Subnet
K-values must match

Question 54

Q

How are EIGRP update messages sent?

Answer

A

To multicast if multiple routers need it

- To unicast for single addressee

Question 55

Q

What protocol does EIGRP use?

Answer

A

RTP, reliable transport protocol, can resend info in something fails

Question 56

Q

EIGRP Metric calc

Answer

A

((10^7 / least-bandwidth)+cum delay)*256

Question 57

Q

EIGRP Cumulative Delay

Answer

A

Sum of all delay values for all outgoing interfaces. In ‘Tens of microseconds’

Question 58

Q

EIGRP Least-bandwidth

Answer

A

lowest bandwidth link in the route expressed in Kbps

Question 59

Q

EIGRP best practices bandwidth settings

Answer

A

Serial links: set to actual L1 speed

LAN interfaces: use defaults

Question 60

Q

Feasible distance (FD) / Reported distance (RD)

Answer

A

FD= Local routers composite metric of the best route to reach a subnet
RD: Next hop router’s best composite metric

Question 61

Q

EIGRP Successor

Answer

A

Best route to subnet - route in routing table

Question 62

Q

Feasibility condition

Answer

A

If a non-successors RD is less than the FD of the current route in the routing table, the route is a feasible successor.

Question 63

Q

DUAL

Answer

A

Diffusing update algorithm. Used when there is no Feasible successor in EIGRP. - DUAL queries for a loop free route to a subnet and then adds it to the routing table.

Question 64

Q

EIGRP Default timers

Answer

A

Hello: 5 sec
Hold: 3x hello (15 )

Answer 54

A

IF metric.FS < (Variance * FD )
THEN
FS added to routing table

Answer 55

A

IPv6 advertises prefixes / IPv4 subnets
show commands use ipv6 keyword
IPv6 neighbors don’t have to be in the same subnet
EIGRP for IPv6 does not have an auto-summary concept

Answer 56

A

EIGRPv6 Process can be shut or no shut like an interface

Answer 57

A

DCE (other side is DTE)

Answer 58

A

HDLC (older)

PPP - additional capabilities like authentication, multilink bundles, and constant link monitoring.

Answer 59

A

DS0 - 64kbps
DS1 - (T1) 1544 kbps
E1 - 2048 Kbps
DS3 - 44.736 kbps
E3 - 34.000 kbps

Answer 60

A

Definition of header and trailer
Supports synchronous and asynchronous links
Protocol Type field in header
Authentication
Support for multilink
Control protocols for each higher layer protocol

Answer 61

A

Clear text pass
device ‘being authenticated’ acts first and just sends over pass
Authenticating device sends ack

Answer 62

A

Hashed pass
Authenticating device sends over challenge
Other sends hashed pass
Authenticating device sends ack

Answer 63

A

Improve availability
Cheaper
Reduces L3 complexity
Miltiple SE ints look like single int
One subnet between routers
One routing prot neighborship
One route per destination

Answer 64

A

Frames get fragemented (one per link)
Smaller pieces get PPP header and trailer to manage fragmentation
Receiving router reassembles the packet

Answer 65

A

Encapsulation
ppp multilink
ip addr
ppp multilink group x

Answer 66

A

no ip addr
encapsulation
Authentication
ppp multilink
ppp multilink group x

Answer 67

A

No, ipv6 enable on an interface sets the link local address automatically which is enough to form a neighbor-ship

Answer 68

A

used by RIP to specify the amount of time to wait before accepting new information when a route goes down

Answer 69

A

Encapsulation used by CISCO ONLY for VLAN information

Answer 70

A

It means the route is actively fucked

Answer 71

A

A route with a working link is in a passive state

Answer 72

A

proxy device on a given network answers the ARP queries for an IP address that is not on that network. The proxy is aware of the location of the traffic’s destination, and offers its own MAC address as the (ostensibly final) destination.

Answer 73

A

ISPs use PPP for authentication (through CHAP) and the ability to assign an IP address on the other end. Internet moved to faster DSL lines that connected to ethernet interfaces. A way of transporting PPP over ethernet was needed.

Answer 74

A

The tunnel interface

Answer 75

A

Encrypts the packet

- Encapsulates with a new IP header, using IPs in the unsecured space, making the original IP unreadable

Answer 76

A

Header to manage the tunnel (GRE)

- Delivery header (20byte IP header) that will be used to route the packet and contains IP in unsecured internet space

Answer 77

A

Address of the physical outgoing interface. Public IP - config possible with interface ID

Answer 78

A

private IP

Answer 79

A

address of the physical int on the other side of the link (unsecure IP)

Answer 80

A

Will not list any routers in the unsecured part of the route due to encapsulation.

Answer 81

A

Router must have a route to destination address

Answer 82

A

GRE is its own transport protocol.

Answer 83

A

-allow ip
-allow gre
TCP/UDP would not work

Answer 84

A

Network Layer reachability information, advertised by BGP

Answer 85

A

Connection between routers from the same ISPs (inside the same ASN)

Answer 86

A

Connection between routers from different ISPs(different ASNs)

Answer 87

A

Path attributes - different facts about the network

Answer 88

A

connection between ISP and customer

Answer 89

A

design with one connection between a customer and one ISP router

Answer 90

A

design with two or more connections between a customer and a single ISP router

Answer 91

A

design with connection between a customer and multiple ISPs

Answer 92

A

Static config

- Learned with BGP and redistributed in the network by an iGP

Answer 93

A

TCP port 179. Starting BGP process opens up port 179 and waits for incoming messages

Answer 94

A

neighbor A.B.C.D. shutdown – removes the need to delete all config for that neighbor

Answer 95

A

Static discard route can be used to advertise a route with BGP when it is not in the routing table

Answer 96

A

BGP network command only advertises networks for which there is a route in the routing table.

Answer 97

A

Confidentiality (prevent mitm data access)
Authentication (verify sender)
Data Integrity
Anti-Relay (prevent MitM relay)

Answer 98

A

Using a VPN to send traffic from one site to the other and by using the internet as a WAN by doing so. Packets are encrypted and secured.

Answer 99

A

Cisco Dynamic Multipoint VPN. Multipoint tunnel, a site can send and receive with any other site on the same tunnel

Answer 100

A

Next hop resolution protocol. One side of the tunnel acts as a hub and NHRP server (usedin DMVPN)

Answer 101

A

NExt hop resolution protocol server.
Learns information about the different spokes and stores it in a mapping table. Server supplies that info when two spokes need to communicate witht eachother. (used in DMVPN

Answer 102

A

One side uses an application to initiate a connection to a device waiting for client connections. (ASA, web server) ex. Cisco VPN Client)

Answer 103

A

1990: Leased Line
1980: X.25 packet switching
1990: Frame relay
2000: MPLS VPNs
2010: Metro Ethernet

Answer 104

A

Layer2 service
Ethernet links
Provider forwards ethernet frames from one customer device to another
Acts like an ethernet switch

Answer 105

A

Location where ethernet switch is places for MetroEthernet. As close to as many customer sites as possible

Answer 106

A

User network interface

- Link between customer and ISPs switch in metroE

Answer 107

A

Looks at ethernetheaders

- Looks for802.1q headers

Answer 108

A

2 sites connected with access links
Routers use physical ethernet interfaces in the same subnet (in between the two are ISP switches)
Would become neighbors and exchange routes

Answer 109

A

The virtual ethernet connection running through the ISP connecting the customers devices

Answer 110

A

Central site connects to ISP switch with 10gbs access link
Remote sites all connect to ISP switches
EVC makes it function as if all remote sites were connected to the central site.
Conifg with trunking and subinterfaces

Answer 111

A

One E-lan allows all devices connected to directly send frames to eachother; One EVC is used to connect all devices

Answer 112

A

Central Device van send frames to each remote site but the remote sites can only send to the central site.

Answer 113

A

Two routers on end of an E-line need to be in same subnet

- 1 subnet per e-line

Answer 114

A

All routers connected to the same LAN switch are in the same VLAN, same subnet and become neighbors

Answer 115

A

All routers have IP in same subnet
Leafs will only form relationship with root site
Packets between the leafs flow through the root site
Additional routing prot config is required

Answer 116

A

Committed information rate. ISP sells a connection that offers an agreed upon bandwidth.

Answer 117

A

ex. 1 Gbps line to ISP is used, but the speed for the consumer is only 200 Mbps as agreed upon in the Commited Information Rate (CIR)

Answer 118

A

QoS Tools

Ingress Policer. ISP watches incoming traffic and discards if needed
Shaping: Customer uses shaper to tell router to slow down and queue up frames if necessary. Configured at the rate of the CIR

Answer 119

A

Does not encrypt data but adds a ‘label’ between layer 2 and 3 to make sure the data is not send to another customer on the same MPLS network.

Answer 120

A

Value in IP header that marks a packet as a VoIP packet. This way the ISP can give the packet higher priority when it moves over the WAN/MPLS

Answer 121

A

Hot standby router protocol. Cisco’s version of FHRP.

Answer 122

A

First hop redundancy protocol . Class of protocols that deals with how the network handles multiple def gateways for redundancy

Answer 123

A

-Avoid single point of failure

Answer 124

A

Multiple routers appear as one def gat
def gats share virtual ip
Hosts use virtual ip as def gat
if router fails, FHRP selects other router

Answer 125

A

Cisco
Active/standby
No loadbalancing

Answer 126

A

RFC 5798
Active/standby
Loadbalancing per subnet

Answer 127

A

Cisco
Active/active
Loadbalancing per host

Answer 128

A

Physical router links
Router trunk subinterfaces
L3 switch SVIs

Answer 129

A

When a router fails, changes happen on routers and switches. Router takes over virtual IP and mac and sends ethernet broadcast to switches to change mac table.

Answer 130

A

Active router can be configured per VLAN

- HSRP groups can be configured per subnet

Answer 131

A

Group needs to match
Version needs to match
Virtual IP needs to be in same subnet as phys int.
Interfaces on L2 network must be in same VLAN
ACL can’t filter HSRP traffic

Answer 132

A

VI: 224.0.0.2
V2: 224.0.0.102
UDP 1985

Answer 133

A

-IPv6 support
-Shorter Hello timer interval possible
More possible groups per interface

Answer 134

A

-NO other HSRP routers? active
-Exisiting negotiating router? highest priority wins
-Existing active router?
If ‘no preempt’ -> standby
if preempt and higer prior -> active

Answer 135

A

highest IP

Answer 136

A

100 (1-255)

Answer 137

A

Keyboard, video display or mouse

Answer 138

A

All hardware in data center is treated as capacity
Each OS is decoupled from hardware
Each piece of hardware can run multiple VMs at the same time

Answer 139

A

Virtually split up each core in multiple threads that then can be used as by a hypervisor as a virtual CPU to run a VM on

Answer 140

A

Runs directly on the hosts’ hardware

Answer 141

A

Runs on top of the primary OS (ex. vmware, virtualbox)

Answer 142

A

Top Of The Rack switch, switch located on top of the server rack

Answer 143

A

Swithes on the end of a row of server stacks. Acts as a distribution switch for the ToR switches

Answer 144

A

-Customer wants a service (group of VMs)
-Virtualization/server engineer uses a GUI or API to set things up
-Hypervisor creates a number of VMs and starts them.
!!THIS IS NOT CLOUD, CLOUD WOULD NOT HAVE STEP 2!!

Answer 145

A

On demand / self-service
Scales dynamically
Pool of resources that is dynamically allocated
Variety of network access options
Can be billed on amount used

Answer 146

A

Service inside a company for internal customers, that meets the 5 criteria

Answer 147

A

Lists anything a user can request from the cloud infrastructure

Answer 148

A

Third party solution offered over network. Broad access positbilities (wan.. vpn..)

Answer 149

A

Infrastructure as a Service (IaaS)

Consumer receives the use of a VM
Specs can be chosen (OS, RAM, CPU, etc)
Consumer installs whatever they want on the VM

Answer 150

A

Software as a Service (SaaS)

Consumer receives a service with working software
VMs and hardware specs are hidden from consumer
Customer picks application and cloud provider monitors performance

Answer 151

A

Development Platform as a Service (Paas)

Like IaaS, but besides the OS contains many development tools
including IDE
Continuous integration tools: allow to update code and have that code auto tested and integrated into a larger project.

Answer 152

A

Pro

Quick startup
Easy migration
Distributed users: Enterprise users can be scattered across locations and still have easy access

Cons

Insecure: vulnerable to MitM attacks
Capacity
No QoS
No WAN SLA possible

Answer 153

A

Pros

Secure
QoS

Cons

Expensive
More planning
Migrating is difficult
Capacity

Answer 154

A

Pros

Secure
Easy migration
Quick startup

Cons

No QoS
Capacity

Answer 155

A

Pros

Secure
QoS
Easy migration

Cons

Planning
Capacity

Answer 156

A

Virtual instance of tradition networking device a consumer can use in the cloud and has control over.

Answer 157

A

Cloud provider allocates public IP and creates matching DNS records.
-A: enterprise adds this DNS record to their own
B: Enterprise points its DNS record to the DNS server of the cloud provider

Answer 158

A

Consumer can pick adresses or lets provider choose

- Public IP is NAT’ed to the right private one by the provider

Answer 159

A

Consumer can ask for their own private IPs only. Subnets get advertised in the rest of the enterprise. Config is done through the catalog or the API.

Answer 160

A

-VNFs and VMs often need to sync time with enterprise and can be configured as NTP clients.

Answer 161

A

-Bandwidth
-Delay:
One-way delay (time from source to destination
2-way delay
-Jitter: difference in delay between consecutive packets
-Loss: can happen because of faulty cables but is also part of normal operation. If the queue gets filled, packets are discarded.

Answer 162

A

Jitter and delay

- -> users want a responsive webpage

Answer 163

A

Bandwidth and loss, for fast transfer times

Answer 164

A

Defines the means tot take the sound made at a telephone and send it inside IP packets over a network

Answer 165

A

Sound goes into horn
A chip (codec) processes the sound to create binary code (160 bytes with g.711 codec) for certain time period (20ms)
Phone places data inside UP packet
Data gets send to destination IP

Answer 166

A

Delay: one-way - 150ms
Jitter: 30ms
Loss: 1%

Answer 167

A

Bandwidth: 348Kbps to 20+ Mbps
Delay one way: 200-400ms
jitter: 30-50 ms
loss: 0.1-1%
Depends on how dynamic the video is

Answer 168

A

Early in a packet’s life

Answer 169

A

The process of matching the header fields in a message to make a QoS decision and later marking the message by changing some bits in the header fields

Answer 170

A

QoS changing one or more header fields and setting a value in the header

Answer 171

A

Point in the network from which markings can be trusted. (Typically IP phone, because it sets DSCP and COS fields)

Answer 172

A

Suggested marking values to create a consistent use of DSCP values.

Answer 173

A

Expedited forwarding (EF)
-for IP phone payloads (46)
Assured forwarding (AF)
-12 DSCP values

Answer 174

A

All Fields in TCP/IP header are matchable for classification
BUT not all apps can be matched by well-known ports

Answer 175

A

Cisco network based application recognition. Provides build-in matching for over 1000 different subcategories of applications.

Answer 176

A

Differentiated Services Code Point
Type of Service
byte in IPV4 header.
6 bits
64 different values defined by Diffserv
End-to-End packet

Answer 177

A

IP Presidence field
Type of Service
Byte in IPV4 header
3 bits
8 different values (0-7 in dec)
End-to-End packet

Answer 178

A

Class of Service / Priority Code Point
in the 802.1q header
3- bit
Over Vlan Trunk

Answer 179

A

Traffic identifier
802.1l
3 bit
over wifi

Answer 180

A

Now known as Traffic Class
Field in MPLS Label
3 bit
Over MPLS Wan

Answer 181

A

-DSCP values created by -Diffserv for backwards compatibility with IPP. (CS0-CS07)

Answer 182

A

-Diffserv value for packets that need low latency, jitter and loss. (ex. VOIP) - decimal: 46

Answer 183

A

12 DSCP valures defined by Diffserv.

Answer 184

A

Toolset for managing queues that hold packets while they wait to exit an interface.

Answer 185

A

Take some from queue 1, move on to next and repeat.

Answer 186

A

one queue gets prior over another.

Answer 187

A

take more from one queue before moving on to the next and repeat

Answer 188

A

Each class receives at least the amount of bandwidth that was configured for it in case of congestion. (configured as percentage of link bandwidth)

Answer 189

A

LLQ tells the scheduler to treat one or more Queues as priority queues so they don’t fill up. Results in Little delay, jitter and no loss. (for voice)

Answer 190

A

Scheduler never gets to service certain queues.
Avoid by limiting the amount of traffic send to priority queues by defining the maximum bandwidth a queue can use (instead of minimum )

Answer 191

A

Sorts marked packets into the right queues

Answer 192

A

Decides which packet gets picked from which Queue next when the interface becomes available

Answer 193

A

Round robin for data and non-interactive voice and vid
Prioritize business crit apps if needed
LLQ Scheduling for int voice and vid
put voice and vid in seperate queues
Define enough bandwidth for each priority queue to avoid policing
Use Call Admission control to avoid policing

Answer 194

A

Measures bit rate over time and compares with configed rate. Discards or remarks offending packets

Answer 195

A

a policer can remark offending packets and only discard them if the SPs network experiences congestion on the whole network

Answer 196

A

Slows messages down by queuing them

Answer 197

A

Attempt to reduce overall packet loss by preemptively discarding packets using TCPs own windowing mechanism

Answer 198

A

Congestion avoidance Tool drops all packets when certain treshhold is reached

Answer 199

A

0000.0C07.ACxx 0-255

Answer 200

A

0000.0C9F.Fxxx 0-4095

Answer 201

A

permit icmp any any nd-na
permit icmp any any nd-ns
deny ipv6 any any

Answer 202

A

Centralized control of enterprise networking devices through northbound APIs and applications that run as part of APIC-EM itself.
Collects info about the entire network
Does not remove control plane functions from networking devices
Allows for programmability and to send config to your devices

Answer 203

A

ESA : Enterprise Service Automation
IWAN : Intelligent WAN
PnP : Plug and Play
Path Trace

Answer 204

A

Southbound interface – telnet, ssh, snmp, CDP

Answer 205

A

Path trace takes a source and destination IP as input and analyzes the forwarding tables in the devices on the network. Show path on topology map.

Answer 206

A

Protocol and port
Periodic refresh
ACL trace

Answer 207

A

Devices in the path
Notifications about logic used (Switched for L2 routed for L3)
Protocols used in forwarding action (HSRP, OSPF,EIGRP,BGP,SVI,switched)

Answer 208

A

Takes the path determined by path trace and analyzes any ACLs in that path. Analysis compares packet in your input with the ACLs in the path and determines whether it would be filtered.

Answer 209

A

Icons overlaid on the networking devices

Check box, no color -> no acl
Green check box -> acl permits
Red X box -> acl denies
Triangle with ! > ACL may or may not deny

Answer 210

A

ACL name

- Access control entry that matches the packet

Answer 211

A

App layer protocol that provides a message format for communication between managers and agents

Answer 212

A

network mgmt app running on host or server (nms)

Answer 213

A

Network management station - host that runs the SNMP manager

Answer 214

A

Sofware running inside each device that describes the config status and counters

Answer 215

A

Management information base. Database of variables that make up parameter status and counters on the agent. Inside of NMS

Answer 216

A

SNMP application

Answer 217

A

Communications send to NMS by agents listing the state of certain variables. (traps or informs)

Answer 218

A

SNMP notification type:

Sent by agent to NMS
UDP
Fire and forget..no error recovery
Uses less overhead

Answer 219

A

SNMP notification type

-app layer reliability added: NMS must ack after receiving or the agent times out and sends again.

Answer 220

A

Object ID of a variable inside of the Management Information Database.

Answer 221

A

Use ACLs to limit SNMP messages to known servers
SNMP supports basic clear-test pass
SNMPv3 adds modern security

Answer 222

A

Agent and manager need same string
each Get and Set includes the string
RO: allows get
RW: allows get and set
Notification: allows traps and informs

Answer 223

A

Agent needs ‘snmp-server host’ referring to the NMS

- Notification community strings need to be configured

Answer 224

A

SNMPv2 shipped without community strings but people wanted them, so they were added in v2c

Answer 225

A

message integrity
Authentication with hashed pass
Encryption (optional)

Answer 226

A

Add the keyword ‘informs’ to the snmp-server host command.

Answer 227

A

show snmp (lists status and counters, but no config)
show snmp community (lists strings as well as ACLs)
show snmp host (lists host ip or hostname of configured NMS)
show snmp location/contact

Answer 228

A

No community srings

- Server groups and server user

Answer 229

A

noauth: only checks integrity
auth: performs authentication and integrity
priv: encrypts, authenticates and checks integrity

Answer 230

A

v1default

Answer 231

A

Swtiched Port analyzer makes copies of ethernet frames and sends them out a specific port towards for ex IDS

Answer 232

A

Port from which SPAN copies frame

Answer 233

A

port out which the frames need to be send

Answer 234

A

collection of span rules. Defines source ports as well as the direction of the traffic being copied

Answer 235

A

Frames being transmitted

Answer 236

A

Frames being received

Answer 237

A

SPAN to a remote destination over L2

Answer 238

A

Encapsulated RSPAN - span traffic in a tunnel over L3

Answer 239

A

Can not be a source port
Can not be used in another session
Does not participate in L2 protocols

Answer 240

A

Trunks
VLAN
Etherchannel
Interfaces
Multiple sources possible
Can not mix interfaces and VLAN

Answer 241

A

Catch only what you need
Capture as little as possible
Enabling two directions on two switchports can result in capturing the same frame twice

Answer 242

A

Cisco feature that provides statistics to determine of SLA has been met. Can also be used for troubleshooting.

Answer 243

A

Runs on router, not end user device
Generates traffic that mimics end user traffic
IP SLA

Answer 244

A

ip sla 1
icmp-echo 10.1.3.2 source-ip 10.1.1.1
ip sla schedule 1 life forever start-time now

Answer 245

A

Resets the counts

Answer 246

A

in a history bucket per operation using one

Answer 247

A

The port does not transmit any traffic except that traffic required for the SPAN session unless learning is enabled. If learning is enabled, the port also transmits traffic directed to hosts that have been learned on the destination port.

Answer 248

A

router marks the failed route and sends it out the interface that the
route was learnt from (defies split horizon)

Answer 249

A

enables AAA services in the local device and allows new commands

Answer 250

A

Same duplex
Same speed
Same VLAN configuration (i.e., native VLAN and allowed VLAN should be same)
Switch port modes should be same (access or trunk mode)

Answer 251

A

Between data link header and ip header. Sometimes called a layer 2.5 protocol for this reason.

Answer 252

A

Idle: neighbor not up, or waiting for retry
Connecting: trying to establish TCP
Active: TCP connection est. but no BGP messages send yet
OpenSent: Router has sent first BGP message to establish neighborship
OpenConfirm: Router has received Open message from other router
Established: done

Answer 253

A

authentication port-control {auto | force-authorized | force-unauthorized}

Answer 254

A

MAC address range from 0005.73A0.0000 through 0005.73A0.0FFF.

Answer 255

A

a) HSRP - Cisco
B) VRRP - Industry standard
D) GLBP - Gateway Load Balancing Protocol, Cisco protocol, adds loadblanacing

Answer 256

A

0: clear text
4: SHA-256
5: MD5
7: Vigenere
8: PBKDF2-SHA-256
9: scrypt

Answer 257

A

224.0.0.1

Answer 258

A

224.0.0.2

Answer 259

A

224.0.0.9

Answer 260

A

224.0.0.102

Answer 261

A

224.0.0.102

Answer 262

A

Statically sets neighbor

- Will only send unicast

Answer 263

A

Initiation (PADI)
Offer (PADO)
Request (PADR)
Session (PADS)

Termination (PADT)

Answer 264

A

An LCP state of open means that LCP was successfully completed, while an LCP state of closed indicates an LCP failure.

Answer 265

A

View: To which OIDs does the group have access? (cf GPO)
Group: What kind of access does the user have to which view? R/RW. what PRIV lvl? (auth; noauth, priv) - linked to view
User: user pass, name, type of encryption, type of hashing, linked to group

Answer 266

A

OpenFlow is a communications protocol that gives access to the forwarding plane of a network switch or router over the network.

Answer 267

A

The Cisco Open SDN Controller uses an Open SDN model with an OpenFlow Southbound Interface as defined by the Open Networking Foundation (ONF). The ONF SDN model centralizes most control plane functions. The APIC model for data centers partially centralizes control plane functions. The APIC-EM controller (as of time of publication) makes no changes to the control plane of routers and switches, leaving those to run with a completely distributed control plane.

Answer 268

A

K1 Bandwidth Lowest bandwidth of route
K2 Load Worst load on route based on packet rate
K3 Delay Cumulative interface delay of route
K4 Reliability Worst reliability of route based on keep alive
K5 MTU Smallest MTU in path [Not used in route calculation]

Brainscape's Knowledge GenomeTM

Stp Flashcards

Brainscape's Knowledge Genome^TM