VLAN Chapter 6 Flashcards
What are three primary benefits of using VLANs? (Choose three.)
security
a reduction in the number of trunk links
cost reduction
end user satisfaction
improved IT staff efficiency
no required configuration
security
cost reduction
improved IT staff efficiency
Which type of VLAN is used to designate which traffic is untagged when crossing a trunk port?
data default native management
native
A network administrator is determining the best placement of VLAN trunk links. Which two types of point-to-point connections utilize VLAN trunking? (Choose two.)
between two switches that utilize multiple VLANs between a switch and a client PC between a switch and a server that has an 802.1Q NIC between a switch and a network printer between two switches that share a common VLAN
between two switches that utilize multiple VLANs
between a switch and a server that has an 802.1Q NIC
What must the network administrator do to remove Fast Ethernet port fa0/1 from VLAN 2 and assign it to VLAN 3?
Enter the no vlan 2 and the vlan 3 commands in global configuration mode. Enter the switchport access vlan 3 command in interface configuration mode. Enter the switchport trunk native vlan 3 command in interface configuration mode. Enter the no shutdown command in interface configuration mode to return it to the default configuration and then configure the port for VLAN 3.
Enter the switchport access vlan 3 command in interface configuration mode.
When a Cisco switch receives untagged frames on a 802.1Q trunk port, which VLAN ID is the traffic switched to by default?
unused VLAN ID native VLAN ID data VLAN ID management VLAN ID
native VLAN ID
Port Fa0/11 on a switch is assigned to VLAN 30. If the command no switchport access vlan 30 is entered on the Fa0/11 interface, what will happen?
Port Fa0/11 will be shutdown. An error message would be displayed. Port Fa0/11 will be returned to VLAN 1. VLAN 30 will be deleted.
Port Fa0/11 will be returned to VLAN 1.
Which command is used to remove only VLAN 20 from a switch?
delete vlan.dat delete flash:vlan.dat no vlan 20 no switchport access vlan 20
no vlan 20
What happens to a port that is associated with VLAN 10 when the administrator deletes VLAN 10 from the switch?
The port becomes inactive. The port goes back to the default VLAN. The port automatically associates itself with the native VLAN. The port creates the VLAN again.
The port becomes inactive.
Which two characteristics match extended range VLANs? (Choose two.)
CDP can be used to learn and store these VLANs. VLAN IDs exist between 1006 to 4094. They are saved in the running-config file by default. VLANs are initialized from flash memory. They are commonly used in small networks.
VLAN IDs exist between 1006 to 4094.
They are saved in the running-config file by default.
A Cisco switch currently allows traffic tagged with VLANs 10 and 20 across trunk port Fa0/5. What is the effect of issuing a switchport trunk allowed vlan 30 command on Fa0/5?
It allows VLANs 1 to 30 on Fa0/5. It allows VLANs 10, 20, and 30 on Fa0/5. It allows only VLAN 30 on Fa0/5. It allows a native VLAN of 30 to be implemented on Fa0/5.
It allows only VLAN 30 on Fa0/5.
Refer to the exhibit. PC-A and PC-B are both in VLAN 60. PC-A is unable to communicate with PC-B. What is the problem?
The native VLAN should be VLAN 60. The native VLAN is being pruned from the link. The trunk has been configured with the switchport nonegotiate command. The VLAN that is used by PC-A is not in the list of allowed VLANs on the trunk.
The VLAN that is used by PC-A is not in the list of allowed VLANs on the trunk.
Refer to the exhibit. DLS1 is connected to another switch, DLS2, via a trunk link. A host that is connected to DLS1 is not able to communicate to a host that is connected to DLS2, even though they are both in VLAN 99. Which command should be added to Fa0/1 on DLS1 to correct the problem?
switchport nonegotiate switchport mode dynamic auto switchport trunk native vlan 66 switchport trunk allowed vlan add 99
switchport trunk native vlan 66
What is a characteristic of legacy inter-VLAN routing?
Only one VLAN can be used in the topology. The router requires one Ethernet link for each VLAN. The user VLAN must be the same ID number as the management VLAN. Inter-VLAN routing must be performed on a switch instead of a router.
The router requires one Ethernet link for each VLAN.
What is a disadvantage of using router-on-a-stick inter-VLAN routing?
does not support VLAN-tagged packets requires the use of more physical interfaces than legacy inter-VLAN routing does not scale well beyond 50 VLANs requires the use of multiple router interfaces configured to operate as access links
does not scale well beyond 50 VLANs
A small college uses VLAN 10 for the classroom network and VLAN 20 for the office network. What is needed to enable communication between these two VLANs while using legacy inter-VLAN routing?
A router with at least two LAN interfaces should be used. Two groups of switches are needed, each with ports that are configured for one VLAN. A router with one VLAN interface is needed to connect to the SVI on a switch. A switch with a port that is configured as trunk is needed to connect to a router.
A router with at least two LAN interfaces should be used.
When configuring a router as part of a router-on-a-stick inter-VLAN routing topology, where should the IP address be assigned?
to the interface to the subinterface to the SVI to the VLAN
to the subinterface
A high school uses VLAN15 for the laboratory network and VLAN30 for the faculty network. What is required to enable communication between these two VLANs while using the router-on-a-stick approach?
A multilayer switch is needed. A router with at least two LAN interfaces is needed. Two groups of switches are needed, each with ports that are configured for one VLAN. A switch with a port that is configured as a trunk is needed when connecting to the router.
A switch with a port that is configured as a trunk is needed when connecting to the router.
Which four steps are needed to configure a voice VLAN on a switch port? (Choose four).
- Configure the switch port in access mode.
- Activate spanning-tree PortFast on the interface.
- Add a voice VLAN.
- Configure the interfaces as an IEEE 802.1Q trunk.
- Configure the switch port interface with subinterfaces.
- Ensure that the voice traffic is trusted an tagged with a CoS priority value.
- Assign a data VLAN to the switch port.
- Assign the voice VLAN to the switch port.
- Configure the switch port in access mode.
- Add a voice VLAN.
- Ensure that the voice traffic is trusted an tagged with a CoS priority value.
- Assign the voice VLAN to the switch port.
A network administrator issues the show vlan brief command while troubleshooting a user support ticket. What output will be displayed?
the VLAN assignment and membership for all switch ports
Which of the following are benefits of VLANs? (Choose three)
Question 1
They can enhance network security.
They increase the size of broadcast domains while decreasing the number of collision domains.
They increase the number of broadcast domains while decreasing the size of the broadcast domains.
They simplify switch administration.
They allow logical grouping of users by function.
They increase the size of collision domains.
They can enhance network security.
They simplify switch administration.
They allow logical grouping of users by function.
CORRECT ANSWER
They allow logical grouping of users by function.
They can enhance network security.
They increase the number of broadcast domains while decreasing the size of the broadcast domains.
What is the difference between an access port and a trunk port?
Question 2
A trunk port belongs to a single VLAN; an access port provides access for multiple VLANs between switches.
An access port can have a native VLAN, but a trunk port cannot.
An access port can have only one device attached.
Multiple VLANs traverse a trunk port, but an access port can belong to a single VLAN.
Multiple VLANs traverse a trunk port, but an access port can belong to a single VLAN.
Which three options accurately associate the Catalyst switch command with the result? (Choose three.)
Question 3
show vlan id vlan-id: displays information about a specific VLAN.
show vlan: displays detailed information about all VLANs on the switch.
show vlan brief: displays detailed information about all VLANs on the switch.
show interfaces fa0/1 switchport: displays information about a specific port.
show interfaces fa0/1: displays VLAN information about a specific port.
A. show vlan id vlan-id: displays information about a specific VLAN.
B. show vlan: displays detailed information about all VLANs on the switch.
D. show interfaces fa0/1 switchport: displays information about a specific port.
On corporate network, hosts on the same VLAN can communicate with each other, but they are unable to communicate with hosts on different VLANs. What is needed to allow communication between the VLANs?
Question 4
A router with an IP address on the physical interface connected to the switch
A router with sub-interfaces configured on the physical interface that is connected to the switch
A switch with an access link that is configured between the switches
A switch with a trunk link that is configured between the switches
CORRECT ANSWER
A router with sub-interfaces configured on the physical interface that is connected to the switch
Which four design considerations are best practices for switch VLAN design? (Choose four.)
Question 5
The native VLAN should be an unused VLAN.
Unused ports should be left to the default configuration.
All unused ports should be configured as a part of the black hole VLAN.
All unused ports should be configured as a part of the native VLAN.
Disable DTP messages.
The management VLAN should be a VLAN not used by any type of user traffic.
A server should always be configured as a protected port.
The management VLAN should be a VLAN not used by any type of user traffic.
The native VLAN should be an unused VLAN.
All unused ports should be configured as a part of the black hole VLAN.
Disable DTP messages.
A 24-port switch has been configured to support three VLANs named Sales, Marketing, and Finance. Each VLAN spans four ports on the switch. The network administrator has deleted the Marketing VLAN from the switch. What two statements describe the status of the ports associated with this VLAN? (Choose two.)
Question 6
The ports are inactive.
The ports are administratively disabled.
The ports will become trunks to carry data from all remaining VLANs.
The ports will remain part of the Marketing VLAN until reassigned to another VLAN.
The ports were released from the Marketing VLAN and automatically reassigned to VLAN 1.
A. The ports are inactive.
D. The ports will remain part of the Marketing VLAN until reassigned to
another VLAN.
VLAN 3 is not yet configured on your switch. What happens if you set the ‘switch port access vlan 3’ command interface configuration mode?
Question 7 options:
The port turns amber.
The command is accepted and the respective VLAN is added to vlan.dat.
The command is accepted and you must configure the VLAN manually.
The command is rejected.
The command is accepted and the respective VLAN is added to vlan.dat
Assuming the default switch configuration which VLAN range can be added modified and removed on a Cisco switch?
Question 8 options:
2 through 1005
1 through 1001
2 through 1001
1 through 1002
2 through 1001
Switch S1 and Switch S2 are both configured with ports in the Faculty, Students, Voice, Guest, Printing, and Admin VLANs. Each VLAN contains 12 users. How many subnets are needed to address the VLANs?
Question 9
1
2
4
6
8
12
24
6
Which three statements are true about hosts that are configured in the same VLAN? (Choose three.)
Question 10
Hosts in the same VLAN must be on the same IP subnet.
Hosts in different VLANs can communicate with the aid of only the Layer 2 switch.
Hosts in the same VLAN share the same broadcast domain.
Hosts in the same VLAN share the same collision domain.
Hosts in the same VLAN must be on the same physical segment.
Hosts in the same VLAN must be on the same IP subnet.
Hosts in the same VLAN share the same broadcast domain.
Hosts in the same VLAN comply with the same security policy.
VIRTUAL LOCAL AREA NETWORK (VLAN)
A GROUP OF HOST WITH COMMON SET OF REQUIREMENTS THAT COMMUNICATE AS IF THEY WERE ATTACHED TO THE SAME WIRE, REGARDLESS OF THEIR PHYSICAL LOCATION. HAS SAME ATTRIBUTES AS A PHYSICAL LAN, BUT IT ALLOWS FOR END STATIONS TO BE GROUPED TOGETHER EVEN IF THEY ARE NOT LOCATED ON THE SAME LAN.
DATA VLAN
is a VLAN that is configured to carry user-generated traffic. A VLAN
carrying voice or management traffic would not be part of a data VLAN.
DEFAULT VLAN
All switch ports become a part of the default VLAN after the initial boot up of a switch loading the default configuration. VLAN 1 IS DEFAULT VLAN
NATIVE VLAN
is assigned to an 802.1Q trunk port. An 802.1Q trunk port supports traffic coming from many VLANs
(tagged traffic), as well as traffic that does not come from a VLAN (untagged traffic). The 802.1Q trunk port places untagged traffic on the native VLAN, which by default is VLAN 1
TRUNK
SWITCHPORT MODE CONFIGURED SO THAT THE SWITCH CAN TRANSMIT TRAFFIC FROM MULTIPLE VLANS OVER A SINGLE LINK
MANAGEMENT VLAN
is any VLAN configured to access the management capabilities of a switch. VLAN 1 is the management VLAN by default. To create the management VLAN, the switch virtual interface (SVI) of that VLAN is assigned an IP address and subnet mask, allowing the switch to be managed via HTTP, Telnet, SSH,
or SNMP.
TAGGING
The 802.1Q header includes a 4-byte tag inserted within the original
Ethernet frame header, specifying the VLAN to which the frame belongs
DYNAMIC TRUNKING PROTOCOL (DTP)
is used to negotiate forming a trunk
between two Cisco devices.
- What is the difference between an access port and a trunk port?
A. A trunk port belongs to a single VLAN; an access port provides access for
multiple VLANs between switches.
B. An access port can have a native VLAN, but a trunk port cannot.
C. An access port can have only one device attached.
D. Multiple VLANs traverse a trunk port, but an access port can belong to a single VLAN.
D. Multiple VLANs traverse a trunk port, but an access port can belong to a single VLAN.
3. What mechanism is used to achieve the separation between different VLANs as they cross a trunk link? A. VLAN tagging using 802.1Q protocol B. VLAN tagging using 802.1p protocol C. VLAN multiplexing D. VLAN set as a native VLAN
A. VLAN tagging using 802.1Q protocol
- What are two options to consider when configuring a trunk link between two switches? (Choose two.)
A. The switchport nonegotiate command must be configured for trunks that use DTP.
B. Port security cannot be configured on the trunk interfaces.
C. The native VLAN must be the same on both ends of the trunk.
D. Different encapsulation types can be configured on both ends of the trunk
link.
E. Trunk ports can be configured only on Gigabit Ethernet interfaces.
B. Port security cannot be configured on the trunk interfaces.
C. The native VLAN must be the same on both ends of the trunk.
- A 24-port switch has been configured to support three VLANs named Sales, Marketing, and Finance. Each VLAN spans four ports on the switch. The network administrator has deleted the Marketing VLAN from the switch. What two statements describe the status of the ports associated with this VLAN? (Choose two.)
A. The ports are inactive.
B. The ports are administratively disabled.
C. The ports will become trunks to carry data from all remaining VLANs.
D. The ports will remain part of the Marketing VLAN until reassigned to
another VLAN.
E. The ports were released from the Marketing VLAN and automatically
reassigned to VLAN 1.
A. The ports are inactive.
D. The ports will remain part of the Marketing VLAN until reassigned to
another VLAN.
- Which three statements are true about hosts that are configured in the same
VLAN? (Choose three.)
A. Hosts in the same VLAN must be on the same IP subnet.
B. Hosts in different VLANs can communicate with the aid of only the Layer 2 switch.
C. Hosts in the same VLAN share the same broadcast domain.
D. Hosts in the same VLAN share the same collision domain.
E. Hosts in the same VLAN comply with the same security policy.
F. Hosts in the same VLAN must be on the same physical segment.
A. Hosts in the same VLAN must be on the same IP subnet.
C. Hosts in the same VLAN share the same broadcast domain.
- Which three options accurately associate the Catalyst switch command with the result? (Choose three.)
A. show vlan id vlan-id: displays information about a specific VLAN.
B. show vlan: displays detailed information about all VLANs on the switch.
C. show vlan brief: displays detailed information about all VLANs on the switch.
D. show interfaces fa0/1 switchport: displays information about a specific port.
E. show interfaces fa0/1: displays VLAN information about a specific port.
A. show vlan id vlan-id: displays information about a specific VLAN.
B. show vlan: displays detailed information about all VLANs on the switch.
D. show interfaces fa0/1 switchport: displays information about a specific port.
- Which Layer 2 security issue sends a frame destined for one VLAN to a different
VLAN by adding more than one VLAN ID to the header?
A. Double-tagging
B. Switch spoofing
C. PVLAN edge
D. Plaintext vty access
A. Double-tagging
