Volume 2 - Chapter 4: Building a Wireless LAN

Question 1

Describe the purpose of the service port on a Cisco WLC.

Answer 1

The service port allows for Out-Of-Band management via SSH or HTTPS.

Also referred to as a data management interface.

Question 2

What port on a Cisco WLC is used to enable HA operations?

Answer 2

The redudancy port.

Question 3

The data Ethernet port on a Cisco WLC is referred to as?

Answer 3

The distribution system ports.

Question 4

What type of EtherChannel configuration is supported for the WLC’s distribution (Ethernet) ports?

Answer 4

A static LAG (Link Aggregation Group).

Question 5

What type of interface is used to map a WLAN to a VLAN on the wireless controller?

Answer 5

The dynamic interface.

Question 6

What layer do dynamic interfaces operate at on an IOS-XE wireless controller?

Answer 6

Layer 2

Question 7

What layer do dynamic interfaces operate at on an AireOS wireless controller?

Answer 7

Layer 3

Question 8

What configuration(s) are required on a dynamic interface on an AireOS controller?

Answer 8

IP Address, Subnet Mask, Default Gateway and a DHCP Server

Question 9

Describe the purpose of the Wireless Management Interface (WMI) on a Cisco WLC.

Answer 9

Both IOS-XE and AireOS use WMIs for the same purpose:

• Terminating CAPWAP tunnels
• RADIUS authentications
• WLC to WLC communications
• SSH, NTP, and SNMP

Question 10

What interface on a WLC uses a unique non-routable address and is used for specific client facing operations?

For example, relaying DHCP requests to a DHCP server.

Answer 10

The virtual interface

Question 11

What is the maximum amount of WLANs that can be configured on a Cisco WLC?

Answer 11

512

Question 12

What is the maximum amount of WLANs that can be active at one time on a Cisco WLC?

Answer 12

16

Question 13

Each WLAN is advertised via their own unique ____.

Answer 13

Beacon.

Question 14

How many active WLANs are recommened in a single area?

Answer 14

5 or fewer, but 3 maximum is best.

Question 15

What are the 3 categories (tags) of AP operation on an IOS-XE controller?

Answer 15

Policy, Site, and RF.

Question 16

Where is the category that the following parameters fall under?:

• SSID and band settings
• Layer 2 & 3 security
• AAA

Answer 16

Under Policy > WLAN Profile

Question 17

Where is the category that the following parameters fall under?:

• VLANs
• Multicast
• ACLs and URL Filters
• QoS Policies

Answer 17

Under Policy > Policy Profile

Question 18

Where is the category that the following parameters fall under?:

• CAPWAP Timers
• Rogue Detection
• AP Fallback

Answer 18

Under Site > AP Profile.

Question 19

Where is the category that the following parameters fall under?:

• Native VLANs
• Local Authenitcation
• DNS Security

Answer 19

Under Site > Flex Profile.

Question 20

Describe the purpose of the Policy category on an IOS-XE controller.

Answer 20

Policies define the WLANs and their security policies

Question 21

Describe the purpose of the Site category on an IOS-XE controller.

Answer 21

Settings for the AP controller and CAPWAP/FlexConnect behavior on a per-site basis.

Question 22

Describe the purpose of the RF category on an IOS-XE controller.

Answer 22

Settings for wireless bands and transmission.

Question 23

Where are new VLANs created on a IOS-XE controller?

Answer 23

Under Configuration > Wireless Setup > WLANs

Question 24

What layer 2 security options are available for an SSID?

Answer 24

5 Options:

• WPA + WPA2
• WPA2 + WPA3
• WPA3
• Static WEP
• None

Question 25

A technician enables layer 2 security using the WPA + WPA2 option, but wants to only enable WPA2 and disable WPA.

How can they do this?

Answer 25

After selecting the WPA + WPA2 option, they can disable the WPA Policy by unchecking the box

Question 26

What is the default encryption for WPA2?

Answer 26

AES (CCMP128)

Question 27

What option is enabled by default and allows wireless client roaming and reauthentication as clients move?

Answer 27

Fast Transition (FT).

Question 28

What is the default amount of max connections per WLAN when a WLAN is created?

Answer 28

0 (unlimited)

Question 29

What is the default amount of max connections per AP per WLAN when a WLAN is created?

Answer 29

0 (unlimited)

Question 30

What is the default amount of max connections per AP raido per WLAN when a WLAN is created?

Answer 30

200

Question 31

What advanced option can be enabled to allow the controller to distribute clients across neighboring APs?

Answer 31

Load Balancing.

Question 32

True or False:

The 802.11ax option is enabled by default.

Answer 32

True.

Question 33

Where can the setting for the VLAN mapping to the WLAN configured?

Answer 33

Add Policy Profile > Access Policies > VLAN.

Question 34

Where can the setting for the WLAN sesstion and idle timeouts be configured?

Answer 34

Add Policy Profile > Advanced > WLAN Timeout

Question 35

What is the default session timeout for a WLAN?

Answer 35

1800 seconds (30 minutes).