CCNP 300-115 Flashcards by nick lymberopoulos

What is the default interval at which Cisco devices send Cisco Discovery Protocol advertisements?

60 seconds

How well did you know this?

Not at all

Perfectly

Which statement about Cisco Discovery Protocol configuration on a Cisco switch is true?

CDP is enabled by default and can be disabled globally with the command no cdp run.

How well did you know this?

Not at all

Perfectly

A network engineer notices inconsistent Cisco Discovery Protocol neighbors according to the diagram that is provided. The engineer notices only a single neighbor that uses Cisco Discovery Protocol, but it has several routing neighbor relationships. What would cause the output to show only the single neighbor?

The routers are connected via a Layer 2 switch.

How well did you know this?

Not at all

Perfectly

After the implementation of several different types of switches from different vendors, a network engineer notices that directly connected devices that use Cisco Discovery Protocol are not visible. Which vendor-neutral protocol could be used to resolve this issue?

Link Layer Discovery Protocol

How well did you know this?

Not at all

Perfectly

While doing network discovery using Cisco Discovery Protocol, it is found that rapid error tracking is not currently enabled. Which option must be enabled to allow for enhanced reporting mechanisms using Cisco Discovery Protocol?

Cisco Discovery Protocol version 2

How well did you know this?

Not at all

Perfectly

A network engineer has just deployed a non-Cisco device in the network and wants to get information about it from a connected device. Cisco Discovery Protocol is not supported, so the open standard protocol must be configured. Which protocol does the network engineer configure on both devices to accomplish this?

LLDP

How well did you know this?

Not at all

Perfectly

Which statement about Cisco devices learning about each other through Cisco Discovery Protocol is true?

Each device sends periodic advertisements to multicast address 01:00:0C:CC:CC:CC.

How well did you know this?

Not at all

Perfectly

Which option lists the information that is contained in a Cisco Discovery Protocol advertisement?

native VLAN IDs, port-duplex, hardware platform

How well did you know this?

Not at all

Perfectly

Which statement about LLDP-MED is true?

LLDP-MED is an extension to LLDP that operates between endpoint devices and network devices.

How well did you know this?

Not at all

Perfectly

Which option describes a limitation of LLDP?

LLDP cannot provide information about VTP.

How well did you know this?

Not at all

Perfectly

Which statement about using native VLANs to carry untagged frames is true?

Cisco Discovery Protocol version 2 carries native VLAN information, but version 1 does not.

How well did you know this?

Not at all

Perfectly

What effect does the mac address-table aging-time 180 command have on the MAC address-table?

This is how long a dynamic MAC address will remain in the CAM table.

How well did you know this?

Not at all

Perfectly

In a Cisco switch, what is the default period of time after which a MAC address ages out and is discarded?

300 seconds

How well did you know this?

Not at all

Perfectly

If a network engineer applies the command mac-address-table notification mac-move on a Cisco switch port, when is a syslog message generated?

A MAC address or host moves between different switch ports.

How well did you know this?

Not at all

Perfectly

The command storm-control broadcast level 75 65 is configured under the switch port connected to the corporate mail server. In which three ways does this command impact the traffic? (Choose three)

-The switch resumes forwarding broadcasts when they are below 65% of bandwidth. -Only broadcast traffic is limited by this particular storm control configuration. -The switch drops broadcasts when they reach 75% of bandwidth.

How well did you know this?

Not at all

Perfectly

While troubleshooting a network outage, a network engineer discovered an unusually high level of broadcast traffic coming from one of the switch interfaces. Which option decreases consumption of bandwidth used by broadcast traffic?

storm control

How well did you know this?

Not at all

Perfectly

The network monitoring application alerts a network engineer of a client PC that is acting as a rogue DHCP server. Which two commands help trace this PC when the MAC address is known? (Choose two)

-switch# show mac address-table -switch# show mac address-table address

How well did you know this?

Not at all

Perfectly

Which switch feature prevents traffic on a LAN from being overwhelmed by continuous multicast or broadcast traffic?

storm control

How well did you know this?

Not at all

Perfectly

Which command would a network engineer apply to error-disable a switchport when a packet-storm is detected?

router(config-if)#storm-control action shutdown

How well did you know this?

Not at all

Perfectly

After an EtherChannel is configured between two Cisco switches, interface port channel 1 is in the down/down state. Switch A is configured with “channel-group 1 mode active”, while Switch B is configured with “channel-group 1 mode desirable”. Why is the EtherChannel bundle not working?

The switches are using mismatched EtherChannel negotiation modes.

How well did you know this?

Not at all

Perfectly

An EtherChannel bundle has been established between a Cisco switch and a corporate web server. The network administrator noticed that only one of the EtherChannel links is being utilized to reach the web server. What should be done on the Cisco switch to allow for better EtherChannel utilization to the corporate web server?

Adjust the EtherChannel load-balancing method based on source IP addresses.

How well did you know this?

Not at all

Perfectly

An access switch has been configured with an EtherChannel port. After configuring SPAN to monitor this port, the network administrator notices that not all traffic is being replicated to the management server. What is a cause for this issue?

The port channel can be used as a SPAN source, but not a destination.

How well did you know this?

Not at all

Perfectly

What is the result of the configuration?

The EtherChannels would form and function properly even though the load-balancing and EtherChannel modes do not match.

How well did you know this?

Not at all

Perfectly

A network engineer tries to configure storm control on an EtherChannel bundle. What is the result of the configuration?

The settings will be applied to the EtherChannel bundle and all associated physical interfaces.

How well did you know this?

Not at all

Perfectly

A network engineer must set the load balance method on an existing port channel. Which action must be done to apply a new load balancing method?

Configure the new load balancing method using port-channel load-balance

A network engineer configured a fault-tolerance link on Gigabit Ethernet links G0/1, G0/2, G0/3, and G0/4 between two switches using Ethernet port-channel. Which action allows interface G0/1 to always actively forward traffic in the port-channel?

Configure LACP port-priority on G0/1 to 1.

Which statement about the use of PAgP link aggregation on a Cisco switch that is running Cisco IOS Software is true?

PAgP modes are off, auto, desirable, and on. Only the combinations auto-desirable, desirable- desirable, and on-on allow the formation of a channel.

Which EtherChannel negotiation protocol is configured on the interface f0/13 – f0/15?

Port Aggregation Protocol

Users of PC-1 experience slow connection when a webpage is requested from the server. To increase bandwidth, the network engineer configured an EtherChannel on interfaces Fa1/0 and Fa0/1 of the server farm switch, as shown here: ----------------------------------------------------------------------------------- Server\_Switch#sh etherchannel load-balance EtherChannel Load-Balancing Operational State (src-mac): Non-IP: Source MAC address IPv4: Source MAC address IPv6: Source IP address Server\_Switch# ----------------------------------------------------------------------------------- However, traffic is still slow. Which action can the engineer take to resolve this issue?

Change the load-balance method to dst-mac

A network engineer changed the port speed and duplex setting of an existing EtherChannel bundle that uses the PAgP protocol. Which statement describes what happens to all ports in the bundle?

PAgP changes the port speed and duplex for all ports in the bundle.

Which statement about using EtherChannel on Cisco IOS switches is true?

A switch can support up to eight compatibly configured Ethernet interfaces in an EtherChannel. The EtherChannel provides full-duplex bandwidth up to 800 Mbps only for Fast EtherChannel or 8 Gbps only for Gigabit EtherChannel.

Which statement about switch S1 is true?

Physical port Fa0/13, Fa0/14, and Fa0/15 successfully formed a Layer 2 port-channel interface using an open standard protocol

What is the maximum number of 10 Gigabit Ethernet connections that can be utilized in an EtherChannel for the virtual switch link?

Which statement about restrictions for multichassis LACP is true?

Converting a port channel to mLACP can cause a service disruption.

Which feature is automatically enabled when a voice VLAN is configured, but not automatically disabled when a voice VLAN is removed?

portfast

In which portion of the frame is the 802.1q header found?

within the Ethernet header

What is required for a LAN switch to support 802.1q Q-in-Q encapsulation?

Support 1504 MTU or higher

What is the size of the VLAN field inside an 802.1q frame?

12-bit

What is the maximum number of VLANs that can be assigned to an access switchport without a voice VLAN?

What does the command “vlan dot1q tag native” accomplish when configured under global configuration?

Control traffic is tagged. ----------------------------------------------------------------- control traffic (like CDP, VTP, STP, DTP…) uses VLAN 1 for communication. When the native VLAN is tagged (VLAN 1 by default) all control traffic is tagged too. If the native VLAN is not VLAN 1 then all the control traffic on VLAN 1 is still tagged by default (without using above command).

SW-1#sh logging %SPANTREE-SP-2-RECV\_PVID\_ERR: Received BPDU with inconsistent peer Vlan id 1 on GigabitEthernet1/2 VLAN2013. %SPANTREE-SP-2-BLOCK\_PVID\_PEER: Blocking GigabitEthernet1/2 on VLAN0001. Inconsistent peer vlan. ---------------------------------------------------------------------------- A multilayer switch has been configured to send and receive encapsulated and tagged frames. VLAN 2013 on the multilayer switch is configured as the native VLAN. Which option is the cause of the spanning-tree error?

802.1q trunks are on both sides, both with native VLAN mismatch.

3512xl(config)#int fastEthernet 0/1 3512xl(config-if)#switchport mode trunk 3512xl(config-if)#switchport trunk encapsulation dot1q ---------------------------------------------------------- How many bytes are added to each frame as a result of the configuration?

4-bytes except the native VLAN

A network engineer must implement Ethernet links that are capable of transporting frames and IP traffic for different broadcast domains that are mutually isolated. Consider that this is a multivendor environment. Which Cisco IOS switching feature can be used to achieve the task?

dot1q VLAN trunking

Which technique allows specific VLANs to be strictly permitted by the administrator?

trunk allowed VLANs

For security reasons, the IT manager has prohibited users from dynamically establishing trunks with their associated upstream switch. Which two actions can prevent interface trunking? (Choose two)

- Configure trunk and access interfaces manually. - Disable DTP on a per interface basis

Which two protocols can be automatically negotiated between switches for trunking? (Choose two)

- ISL - DOT1Q

The network manager has requested that several new VLANs (VLAN 10, 20, and 30) are allowed to traverse the switch trunk interface. After the command “switchport trunk allowed vlan 10,20,30″ is issued, all other existing VLANs no longer pass traffic over the trunk. What is the root cause of the problem?

The command effectively removed all other working VLANs and replaced them with the new VLANs.

A manager tells the network engineer to permit only certain VLANs across a specific trunk interface. Which option can be configured to accomplish this?

allowed VLAN list

interface GigabitEthernet 1/0/1 switchport access vlan 10 switchport trunk encapsulation dot1q switchport mode trunk switchport voice vlan 11 spanning-tree portfast ! Which option shows the expected result if a “show vlan” command is issued?

G1/0/1 is not listed anywhere in the sh vlan print out

Several new switches have been added to the existing network as VTP clients. All of the new switches have been configured with the same VTP domain, password, and version. However, VLANs are not passing from the VTP server (existing network) to the VTP clients. What must be done to fix this?

Ensure that all switch interconnects are configured as trunks to allow VTP information to be transferred

After implementing VTP, the extended VLANs are not being propagated to other VTP switches. What should be configured for extended VLANs?

Enable VTP version 3, which supports extended VLAN propagation

Which technique automatically limits VLAN traffic to only the switches that require it?

VTP pruning

Switch A, B, and C are trunked together and have been properly configured for VTP. Switch C receives VLAN information from the VTP server Switch A, but Switch B does not receive any VLAN information. What is the most probable cause of this behavior?

Switch B is configured in transparent mode

A network is running VTPv2. After verifying all VTP settings, the network engineer notices that the new switch is not receiving the list of VLANs from the server. Which action resolves this problem?

Verify connected trunk ports.

After configuring new data VLANs 1020 through 1030 on the VTP server, a network engineer notices that none of the VTP clients are receiving the updates. What is the problem?

The VTP version number must be set to version 3.

A network engineer is extending a LAN segment between two geographically separated data centers. Which enhancement to a spanning-tree design prevents unnecessary traffic from crossing the extended LAN segment?

Use VTP pruning on the trunk interfaces

When you design a switched network using VTPv2, how many VLANs can be used to carry user traffic?

1001

A new network that consists of several switches has been connected together via trunking interfaces. If all switches currently have the default VTP domain name “null”, which statement describes what happens when a domain name is configured on one of the switches?

VTP summary advertisements are sent out of all ports with the new domain name.

Which VTP mode is needed to configure an extended VLAN, when a switch is configured to use VTP versions 1 or 2?

Extended VLANs are only supported in version 3 and not in versions 1 or 2

Which VLAN range is eligible to be pruned when a network engineer enables VTP pruning on a switch?

VLANs 2-1001

Which feature must be enabled to eliminate the broadcasting of all unknown traffic to switches that are not participating in the specific VLAN?

VTP pruning

Switch1(config)#vlan 10 VTP vlan configuration not allowed when device is in CLIENT mode. Switch1#show interfaces trunk Switch1# -------------------------------------------- The users in an engineering department that connect to the same access switch cannot access the network. The network engineer found that the engineering VLAN is missing from the database. Which action resolves this problem?

Change VTP mode to server and enable 802.1q.

The network switches for two companies have been connected and manually configured for the required VLANs, but users in company A are not able to access network resources in company B when DTP is enabled. Which action resolves this problem?

Manually force trunking with switchport mode trunk on both switches

A network engineer must improve bandwidth and resource utilization on the switches by stopping the inefficient flooding of frames on trunk ports where the frames are not needed. Which Cisco IOS feature can be used to achieve this task?

VTP pruning

Which action allows a network engineer to limit a default VLAN from being propagated across all trunks?

Manually prune default VLAN with switchport trunk allowed vlans remove.

Switch A, B, and C are trunked together and have been properly configured for VTP. Switch B has all VLANs, but Switch C is not receiving traffic from certain VLANs. What would cause this issue?

VTP pruning is configured globally on all switches and it removed VLANs from the trunk interface that is connected to Switch C.

Which command does a network engineer use to verify the spanning-tree status for VLAN 10?

switch# show spanning-tree vlan 10

f1/0 and f1/1 have the same end-to-end path cost to the designated bridge. Which action is needed to modify the Layer 2 spanning-tree network so that traffic for PC1 VLAN from switch SW3 uses switchport f1/1 as a primary port?

Modify the spanning-tree port-priority on SW2 f1/1 to 0 and f1/0 to 16

Why would the switch be considered as a root bridge?

The switch priority value is zero, it has the lowest priority value for VLAN 1

All ports are members of VLAN 10. Considering the default cost of upstream bridges to the root bridge is equal, which option will be the new root port for VLAN 10?

interface f0/21

A network engineer is trying to deploy a PC on a network. The engineer observes that when the PC is connected to the network, it takes 30 to 60 seconds for the PC to see any activity on the network interface card. Which Layer 2 enhancement can be used to eliminate this delay?

Configure spanning-tree portfast.

A network engineer configured an Ethernet switch using these commands. ! Switch1(config) # spanning-tree portfast bpdufilter default ! Which statement about the spanning-tree portfast feature on the switch is true?

If an interface is enabled for portfast receives BDPU, the port goes through the spanning-tree listening, learning, and forwarding states

Which statement describes what happens when a port configured with root guard receives a superior BPDU?

The port goes into root-inconsistent state and stops forwarding traffic.

An administrator recently configured all ports for rapid transition using PortFast. After testing, it has been determined that several ports are not transitioning as they should. What is the reason for this?

STP is unable to achieve rapid transition for trunk links.

Pilot testing of the new switching infrastructure finds that when the root port is lost, STP immediately replaces the root port with an alternative root port. Which spanning-tree technology is used to accomplish backup root port selection?

UplinkFast

A network engineer must adjust the STP interface attributes to influence root port selection. Which two elements are used to accomplish this? (Choose two)

- port-priority - cost

For client server failover purposes, the application server team has indicated that they must not have the standard 30 second delay before their switchport enters a forwarding state. For their disaster recovery feature to operate successfully, they require the switchport to enter a forwarding state immediately. Which spanning-tree feature satisfies this requirement?

Spanning-Tree PortFast

After the recent upgrade of the switching infrastructure, the network engineer notices that the port roles that were once “blocking” are now defined as “alternate” and “backup”. What is the reason for this change?

The new switches are using RSTP instead of legacy IEEE 802.1D STP.

What happens on a Cisco switch that runs Cisco IOS when an RSTP-configured switch receives 802.1d BPDU?

802.1d does not understand RSTP BPDUs because they are different versions, but when a RSTP switch receives an 802.1d BPDU, it responds with an 802.1d BPDU and eventually the two switches run 802.1d to communicate.

A network engineer is setting up a new switched network. The network is expected to grow and add many new VLANs in the future. Which Spanning Tree Protocol should be used to reduce switch resources and managerial burdens that are associated with multiple spanning-tree instances?

MST

When two MST instances (MST 1 and MST 2) are created on a switch, what is the total number of spanning-tree instances running on the switch?

A network engineer wants to ensure Layer 2 isolation of customer traffic using a private VLAN. Which configuration must be made before the private VLAN is configured?

Configure VTP Transparent Mode.

Which private VLAN access port belongs to the primary VLAN and can communicate with all interfaces, including the community and isolated host ports?

promiscuous port

Which private VLAN can have only one VLAN and be a secondary VLAN that carries unidirectional traffic upstream from the hosts toward the promiscuous ports and the gateway?

isolated VLAN

When you configure private VLANs on a switch, which port type connects the switch to the gateway router?

promiscuous

When you configure a private VLAN, which type of port must you configure the gateway router port as?

promiscuous port

Which configuration command ties the router hot standby priority to the availability of its interfaces?

standby track

What is the default HSRP priority?

100

Which command correctly configures standby tracking for group 1 using the default decrement priority value?

standby 1 track 100

Which command configures an HSRP group to become a slave of another HSRP group?

standby follow

What is the default amount by which the hot standby priority for the router is decremented or incremented when the interface goes down or comes back up?

During routine maintenance, it became necessary to shutdown G1/0/1 on DSW1. All other interface were up. During this time, DSW1 remained the active device for Vlan 102’s HSRP group. You have determined that there is an issue with the decrement value in the track command in Vlan 102’s HSRP group. What need to be done to make the group function properly?

The DSW1’s decrement value should be configured with a value from 11 to 18

During routine maintenance, G1/0/1 on DSW1 was shutdown. All other interface were up. DSW2 became the active HSRP device for Vlan101 as desired. However, after G1/0/1 on DSW1 was reactivated. DSW1 did not become the active HSRP device as desired. What need to be done to make the group for Vlan101 function properly?

Enable preempt on DSW1’s Vlan101 HSRP group

DSW2 has not become the active device for Vlan103’s HSRP group even though all interfaces are active. As related to Vlan103’s HSRP group. What can be done to make the group function properly?

On DSW2, increase the priority value to a value greater 200 and less than 250

If G1/0/1 on DSW1 is shutdown, what will be the current priority value of the Vlan105’s group on DSW1?

What is the configured priority value of the Vlan105’s group on DSW2 ?

100

During routine maintenance, it became necessary to shutdown G1/0/1 on DSW1 and DSW2. All other interface were up. During this time, DSW1 became the active device for Vlan104’s HSRP group. As related to Vlan104’s HSRP group, what can be done to make the group function properly?

On DSW1, increase the decrement value in the track command to a value greater than 6

Which First Hop Redundancy Protocol is an IEEE Standard?

VRRP

Which VRRP router is responsible for forwarding packets that are sent to the IP addresses of the virtual router?

virtual router master

%GLBP-4-DUPADDR:Duplicate address ## Footnote Which option describes the reason for this message in a GLBP configuration?

Layer 2 loop

Which gateway role is responsible for answering ARP requests for the virtual IP address in GLBP?

active virtual gateway

What is the maximum number of virtual MAC addresses that GLBP allows per group?

interface GigabitEthernet0/1 switchport switchport mode trunk switchport trunk allowed vlan 1-100 ! interface GigabitEthernet0/48 switchport switchport mode access ! monitor session 1 source interface GigabitEthernet0/1 monitor session 1 destination interface GigabitEthernet0/48 -------------------------------------- How can the traffic that is mirrored out the GigabitEthernet0/48 port be limited to only traffic that is received or transmitted in VLAN 10 on the GigabitEthernet0/1 port?

Apply the monitor session filter globally to allow only traffic from VLAN 10 --------------------------------------------- #monitor session 1 filter vlan 10

A network engineer wants to analyze all incoming and outgoing packets for an interface that is connected to an access switch. Which three items must be configured to mirror traffic to a packet sniffer that is connected to the distribution switch? (Choose three)

- A remote SPAN VLAN on the distribution and access layer switch - A monitor session on the access switch with a physical interface source and the remote SPAN VLAN as the destination - A monitor session on the distribution switch with a remote SPAN VLAN as the source and physical interface as the destination

Interface FastEthernet0/1 is configured as a trunk interface that allows all VLANs. This command is configured globally: monitor session 2 filter vlan 1 – 8, 39, 52 What is the result of the implemented command

Traffic from VLANs 1 to 8, 39, and 52 is replicated to the SPAN destination port

A network engineer investigates a recent network failure and notices that one of the interfaces on the switch is still down. What is causing the line protocol on this interface to be shown as down?

The interface is configured as the target of the SPAN session

Which portion of AAA looks at what a user has access to?

authorization

Which command creates a login authentication method named “login” that will primarily use RADIUS and fail over to the local user database?

aaa authentication radius local eg: aaa authentication login login radius loca

Which AAA Authorization type includes PPP, SLIP, and ARAP connections?

network

Which authentication service is needed to configure 802.1x?

RADIUS with EAP Extension

username cisco password cisco ! aaa new-model ! radius-server host 10.1.1.50 auth-port 1812 key C1sc0123 aaa authentication login default group radius local line aaa authentication login NO\_AUTH none ! line vty 0 15 login authentication default password linepass line console 0 login authentication NO\_AUTH ! Which login credentials are required when connecting to the console port in this output?

none required

sername cisco password cisco ! aaa new-model ! radius-server host 10.1.1.50 auth-port 1812 key C1sc0123 aaa authentication login default group radius local line aaa authentication loging NO\_AUTH none ! line vty 0 15 login authentication default password linepass line console 0 login authentication NO\_AUTH ## Footnote When a network administrator is attempting an SSH connection to the device, in which order does the device check the login credentials?

RADIUS server, local username, line password

A network engineer configures port security and 802.1x on the same interface. Which option describes what this configuration allows?

It allows port security to secure the MAC address that 802.1x authenticates.

Which feature describes MAC addresses that are dynamically learned or manually configured, stored in the address table, and added to the running configuration?

sticky

On which interface can port security be configured?

Port security can be enabled on both access and static trunk ports

After port security is deployed throughout an enterprise campus, the network team has been overwhelmed with port reset requests. They decide to configure the network to automate the process of re-enabling user ports. Which command accomplishes this task?

errdisable recovery cause psecure-violation

Which option is a possible cause for an errdisabled interface?

security violation

What is the default value for the errdisable recovery interval in a Cisco switch?

300 seconds #errdisable recovery interval timer\_interval\_in\_seconds

A Cisco Catalyst switch that is prone to reboots continues to rebuild the DHCP snooping database. What is the solution to avoid the snooping database from being rebuilt after every device reboot?

A DHCP snooping database agent should be configured.

A server with a statically assigned IP address is attached to a switch that is provisioned for DHCP snooping. For more protection against malicious attacks, the network team is considering enabling dynamic ARP inspection alongside DHCP snooping. Which solution ensures that the server maintains network reachability in the future?

Configure a static DHCP snooping binding entry on the switch. #ip dhcp snooping binding vlan <#> interface expiry

DHCP snooping and IP Source Guard have been configured on a switch that connects to several client workstations. The IP address of one of the workstations does not match any entries found in the DHCP binding database. Which statement describes the outcome of this scenario?

he packets originating from the workstation are assumed to be spoofed and will be discarded.

A DHCP configured router is connected directly to a switch that has been provisioned with DHCP snooping. IP Source Guard with the ip verify source port-security command is configured under the interfaces that connect to all DHCP clients on the switch. However, clients are not receiving an IP address via the DHCP server. Which option is the cause of this issue?

The DHCP server does not support information option 82

A switch is added into the production network to increase port capacity. A network engineer is configuring the switch for DHCP snooping and IP Source Guard, but is unable to configure ip verify source under several of the interfaces. Which option is the cause of the problem?

The interfaces are configured as Layer 3 using the no switchport command. The following restrictions apply to IP source guard: + Supported only on ingress Layer 2 ports (including access and trunk ports) + Supported only in hardware; not applied to any traffic that is processed in software. + Does not support filtering of traffic based on MAC address. + Is not supported on private VLANs.

Which type of information does the DHCP snooping binding database contain?

untrusted hosts with leased IP addresses

Which command is needed to enable DHCP snooping if a switchport is connected to a DHCP server?

ip dhcp snooping trust

Which database is used to determine the validity of an ARP packet based on a valid IP-to-MAC address binding?

DHCP snooping database

When IP Source Guard with source IP filtering is enabled on an interface, which feature must be enabled on the access VLAN for that interface?

DHCP snooping

Which switch feature determines validity based on IP-to-MAC address bindings that are stored in a trusted database?

Dynamic ARP Inspection

Which statement about the UDLD protocol is true?

UDLD is a Cisco-proprietary Layer 2 protocol that enables devices to monitor the physical status of links and detect unidirectional failures

Which option lists the modes that are available for configuring UDLD on a Cisco switch?

normal and aggressive

While working in the core network building, a technician accidently bumps the fiber connection between two core switches and damages one of the pairs of fiber. As designed, the link was placed into a non-forwarding state due to a fault with UDLD. After the damaged cable was replaced, the link did not recover. What solution allows the network switch to automatically recover from such an issue?

errdisable autorecovery

After UDLD is implemented, a Network Administrator noticed that one port stops receiving UDLD packets. This port continues to reestablish until after eight failed retries. The port then transitions into the errdisable state. Which option describes what causes the port to go into the errdisable state?

UDLD port is configured in aggressive mode.

After reviewing UDLD status on switch ports, an engineer notices that the switch LEDs are green. Which statement describes what this indicates about the status of the port?

The port is fully operational and no known issues are detected.

Which statement about the use of SDM templates in a Cisco switch is true?

SDM templates are used to configure system resources in the switch to optimize support for specific features, depending on how the switch is used in the network.

Which SDM template is the most appropriate for a Layer 2 switch that provides connectivity to a large number of clients?

VLAN

A network engineer deployed a switch that operates the LAN base feature set and decides to use the SDM VLAN template. The SDM template is causing the CPU of the switch to spike during peak working hours. What is the root cause of this issue?

The VLAN template disables routing in hardware.

What is the maximum number of switches that can be stacked using Cisco StackWise?

A network engineer wants to add a new switch to an existing switch stack. Which configuration must be added to the new switch before it can be added to the switch stack?

No configuration must be added Note: Turn off the switch before connecting the stackwise cables. Only turn it on after finishing connecting stackwise cables.

What percentage of bandwidth is reduced when a stack cable is broken?

What is the function of NSF?

provide nonstop forwarding in the event of failure of one of the member supervisors

Which statement describes what happens if all VSL connections between the virtual switch members are lost?

The VSS transitions to the dual active recovery mode, and only the new active virtual switch continues to forward traffic.

Which statement describes what happens when a switch enters dual active recovery mode?

All interfaces are shut down in the formerly active virtual switch member, but the new active virtual switch forwards traffic on all links.

Which option is a benefit of using VSS?

removes the need for a First Hop Redundancy Protocol

What percentage of the outgoing traffic from the 172.16.10.0/24 subnet is being forwarded through R1?

R1-100%

If router R1 interface Etherne0/0 goes down and recovers, which of the statement regarding HSRP priority is true?

The interface will have its current priority incremented by 40 for HSRP group 1

What issue is causing Router R1 and R2 to both be displayed as the HSRP active router for group 2? R1#sh run int ethernet1/0 standby 2 ip 172.16.20.254 R2#sh run int etherne1/0 standby 2 ip 172.16.20.254 standby 2 authentication cisco123

The HSRP group authentication is misconfigured

What is the virtual mac-address of HSRP group 1?

4000.0000.0010

You are connecting the New\_Switch to the LAN topology; the switch has been partially configured and you need to complete the rest of configuration to enable PC1 communication with PC2. Which of the configuration is correct?

vtp domain CCNP vtp password cisco vtp version 3 vtp mode client interface e0/0 switchport mode access switchport access vlan 100

Refer to the configuration. For which configured VLAN are untagged frames sent over trunk between SW1 and SW2?

VLAN 99

You are adding new VLANs: VLAN500 and VLAN600 to the topology in such way that you need to configure SW1 as primary root for VLAN 500 and secondary for VLAN 600 and SW2 as primary root for VLAN 600 and secondary for VLAN 500. Which configuration step is valid?

Configure VLAN 500 and VLAN 600 on SW1 only

Examine the VTP configuration. You are required to configure private VLANs for a new server deployment connecting to the SW4 switch. Which of the following configuration steps will allow creating private VLANs?

Disable VTP pruning on SW4 only (as this implies putting SW4 in Transparent mode)

CCNP 300-115 Flashcards

(151 cards)