ICND-1 (Cram Guide)

Question 1

All People Seem To Need Data Processing

Answer 1

Application
Presentaion
Session
Transport
Network
Data Link
Physical

Question 2

Don’t Some People Fry Bacon

Answer 2

Data
Segments
Packets
Frames
Bits

Question 3

Provides services to lower layers. Enables program-to-program communication and determines whether sufficient resources exist for communication. Examples are e-mail gateways (SMTP), TFTP,
FTP, and SNMP.

Answer 3

7. Application Layer

Question 4

Presents information to the Application Layer. Compression, data conversion, encryption, and standard formatting occur here. Contains data formats JPEG, MPEG, MIDI, and TIFF.

Answer 4

6. Presentation Layer

Question 5

Establishes and maintains communication ‘sessions’ between applications (dialogue control). Sessions
can be simplex (one direction only), half duplex (one direction at a time), or full duplex (both ways simultaneously). Session Layer keeps different applications data separate from other applications.
Protocols include NFS, SQL, X Window, RPC, ASP, and NetBios Names.

Answer 5

5. Session Layer

Question 6

Responsible for end-to-end integrity of data transmissions and establishes a logical connection between sending and receiving hosts via ‘virtual circuits.’ Windowing works at this level to control how much information is transferred before acknowledgement is required.
Data is segmented and reassembled at this layer. Port numbers are used to keep track of different conversations crossing the network at the same time. Supports TCP, UDP, SPX, and NBP. Segmentation works here (Segments) and error correction (not detection).

Answer 6

4. Transport Layer

Question 7

Routes data from one node to another and determines the best path to take. Routers operate at this level. Network addresses are used here, which are used for routing (Packets). Routing tables, subnetting, and control of network congestion occur here. Routing protocols, regardless of which protocol they run over, reside here: IP, IPX, ARP, IGRP, and Appletalk.

Answer 7

3. Network Layer

Question 8

Sometimes referred to as the LAN layer. Responsible for the physical transmission of data from one node to another. Error detection occurs here. Packets are translated into frames here and hardware address is added. Bridges and switches operate at this layer.

Answer 8

2. Data Link Layer

Question 9

Manages communications between devices over a single link on a network. Uses Service Access Points (SAPs) to help lower layers talk to the Network Layer.

Answer 9

Logical Link Control sublayer (LLC) 802.2:

Question 10

Builds frames from the 1s and 0s that the Physical Layer
(address = 6 byte/48 bit) picks up from the wire as a digital signal and runs a Cyclic Redundancy Check (CRC) to assure no bits were lost or corrupted.

Answer 10

Media Access Control sublayer (MAC) 802.3:

Question 11

Puts data onto the wire and takes it off. Physical Layer specifications, such as the connectors, voltage, physical data rates, and DTE/DCE interfaces. Some common implementations include Ethernet/IEEE 802.3, FastEthernet, and Token Ring/IEEE 802.5.

Answer 11

1. Physical Layer

Question 12

Purpose is to switch traffic as quickly as possible. Fast transport to enterprise services (Internet, etc.). No packet manipulation, VLANs, access-lists. High-speed access required, such as FDDI and ATM.

Answer 12

Core Layer

Question 13

Time-sensitive manipulation, such as routing, filtering, and WAN access. Broadcast/multicast, media translations, security.

Answer 13

Distribution Layer

Question 14

Switches and routers; segmentation occurs here, as well as workgroup access. Static (not dynamic) routing.

Answer 14

Access Layer

Question 15

TCP/IP port 20

Answer 15

File Transfer Protocol – Data (TCP)

Question 16

TCP/IP port 21

Answer 16

File Transfer Protocol – Control (TCP) (Listens on this port)

Question 17

TCP/IP port 22

Answer 17

SSH (TCP)

Question 18

TCP/IP port 23

Answer 18

Telnet (TCP)

Question 19

TCP/IP port 25

Answer 19

Simple Mail Transfer Protocol (TCP)

Question 20

TCP/IP port 53

Answer 20

Domain Name Service (TCP/UDP)

Question 21

TCP/IP port 69

Answer 21

Trivial File Transfer Protocol (UDP)

Question 22

TCP/IP port 80

Answer 22

HTTP/WWW (TCP)

Question 23

TCP/IP port 110

Answer 23

Post Office Protocol 3 (TCP)

Question 24

TCP/IP port 119

Answer 24

Network News Transfer Protocol (TCP)

Question 25

TCP/IP port 123

Answer 25

Network Time Protocol (UDP)

Question 26

TCP/IP port 161/162

Answer 26

Simple Network Management Protocol (UDP)

Question 27

TCP/IP port 443

Answer 27

HTTP over Secure Sockets Layer (HTTPS) (TCP)

Question 28

Protocol 6) Reliable, sequenced, connection-oriented delivery, 20-byte header.

Answer 28

TCP

Question 29

(Protocol 17) Connectionless, unsequenced, best-effort delivery, 8-byte header. Sends data but does not check to see whether it is received.

Answer 29

UDP

Question 30

Used to connect to a remote device (TCP). A password and username is required to connect. Telnet tests all seven layers of the OSI model.

Answer 30

TELNET

Question 31

Connection-orientated (TCP) protocol used to transfer large files.

Answer 31

FTP

Question 32

Connectionless (UDP) protocol used for file transfer.

Answer 32

TFTP

Question 33

Allows remote management of network devices.

Answer 33

SNMP

Question 34

Supports packets containing error, control, and informational messages. Ping uses ICMP to test network connectivity.

Answer 34

ICMP

Question 35

Used to map an IP address to a physical (MAC) address. A host wishing to obtain a physical address broadcasts an ARP request onto the TCP/IP network. The host replies with its physical address.

Answer 35

ARP

Question 36

Resolves hostnames to IP addresses (not the other way around). To configure the router to use a host on the network, use the command ROUTER(config)#ip name-server 4.2.2.2, and to configure DNS, use the command ip name-server (usually already turned on for the router
configuration by default). If you want hosts on the network to use the router as a proxy DNS server, put the command Router(config)#ip dns server onto the router.

Answer 36

DNS

Question 37

Involves a central server, or devices, which relays TCP information to hosts on a network. You can configure a router to be a DHCP server with the configuration below. You must have hosts on the same LAN as the router interface:

Answer 37

DHCP

Question 38

Router(config)#ip dhcp pool E00_DHCP_Pool
Router(dhcp-config)#network 10.10.10.0 255.255.255.0
Router(dhcp-config)#dns-server 24.196.64.39 24.196.64.40
Router(dhcp-config)#domain-name mydomain.com
Router(dhcp-config)#default-router 10.10.10.254
Router(dhcp-config)#lease 1

Answer 38

DHCP

Question 39

Router>

Answer 39

User EXEC:

Question 40

Router#

Answer 40

Privileged EXEC:

Question 41

Router(config)#

Answer 41

Global Configuration

Question 42

> or rommon>

Answer 42

ROM Monitor

Question 43

Ctrl+W

Answer 43

Erases a word

Question 44

Ctrl+U

Answer 44

Erases a line

Question 45

Ctrl+A

Answer 45

Moves cursor to beginning of line

Question 46

Ctrl+E –

Answer 46

Moves cursor to end of line

Question 47

Ctrl+F (or right arrow) –

Answer 47

Moves forward one character

Question 48

Ctrl+B (or left arrow) –

Answer 48

Moves back one character

Question 49

Ctrl+P (or up arrow) –

Answer 49

Recalls previous commands from buffer

Question 50

Ctrl+N (or down arrow) –

Answer 50

Returns to more recent commands in buffer

Question 51

Esc+B –

Answer 51

Moves back one word

Question 52

Esc+F –

Answer 52

Moves forward one word

Question 53

Tab

Answer 53

Completes a command you have started

Question 54

show version

Answer 54

Shows information about IOS in RAM and displays how much physical memory is installed. Also shows the configuration register setting

Question 55

show process

Answer 55

Shows information about programs running in DRAM.

Question 56

show running-configuration

Answer 56

Shows active configuration in DRAM

Question 57

show memory/stacks/buffers

Answer 57

Command used to view tables and buffers.

Question 58

Stores router’s startup configuration. Does not lose data when powered off due to a battery power source:

Answer 58

NVRAM

Question 59

EEPROM or PCMCIA card holds the compressed operating system image (IOS). This is where software upgrades are stored:

Answer 59

Flash

Question 60

Contains power on diagnostics, a bootstrap program, and a mini-IOS (rommon). You can specify which file the routers boots from if you have more than one in flash memory:

Answer 60

ROM

Question 61

A PC connected to the console port via a rollover cable. Used for initial configuration or disaster recovery.

Answer 61

Console port

Question 62

Normally accessed by telnetting to the router. Five lines available, numbered 0 to 4 (more lines possible, depending on the Router/Switch model).

Answer 62

Virtual terminals

Question 63

Normally a modem connected to this port.

Answer 63

Auxiliary port

Question 64

The router can get its configurations or IOS from a server (a PC, for example) running TFTP software and holding the necessary files.

Answer 64

TFTP server

Question 65

Network management station. Uses SNMP to manage the router normally via a web-style interface.

Answer 65

NMS

Question 66

it allows you to gather information about other routers and switches. It is enabled by default. It can also be a very useful command to use while troubleshooting to see which devices are directly connected to the device you are connected to.

Answer 66

Cisco Discovery Protocol (proprietary) runs only on Cisco devices

Question 67

Command to displays the neighbouring router or switch’s hostname, hardware platform, port identifier, and capabilities list:

Answer 67

Router#show cdp neighbors

Question 68

To turn off CDP on an interface,

Answer 68

Router(config-if)#no cdp enable

Question 69

To turn off CDP on your entire router or switch,

Answer 69

Router(config)#no cdp run

Question 70

A LAN switch has three primary functions:

Answer 70

1. Address learning – Maintains a table (CAM – Content Addressable Memory) of addresses and on which port they can be reached.
2. Forward/filter decision – Forwards frames only out of the relevant port.
3. Loop avoidance – STP.

Question 71

The switch copies the entire frame into its buffer and computes the CRC. The
frame is discarded if there is an error. High latency.

Answer 71

Store-and-Forward

Question 72

Reads only the destination address (first 6 bytes after preamble), looks up address, and
forwards frame. Lower latency.

Answer 72

Cut-through

Question 73

The switch reads the first 64 bytes before forwarding the frame. Collisions normally
occur within the first 64 bytes.

Answer 73

Fragment-free

Question 74

command to switch default gateway

Answer 74

Switch(config)#ip default-gateway 192.168.1.1

Question 75

Switch#show mac-address-table dynamic

Answer 75

shows MAC table (dynamic)

Question 76

Switch(config-if)#switchport port-security

Answer 76

enable port security

Question 77

Switch(config-if)#switchport port-security violation shutdown

Answer 77

shutdown the port if some event occur

Question 78

Switch(config-if)#switchport port-security maximum 4

Answer 78

only 4 MACs

Question 79

Switch(config-if)#switchport port-security mac-address xxx

Answer 79

enter de mac that is allowed to use that interface

Question 80

Switch #show port-security

Answer 80

show all security config. that was setted

Question 81

Router(config)#ip route {destination network}{mask}{next hop
address}

e.g. ip route 172.16.5.2 255.255.255.0 172.16.12.8

Answer 81

Static routing

Question 82

Router(config)#router rip

Router(config-router)#version 2

Router(config-router)#network 172.16.0.0

Router(config-router)#no auto-summary (optional)

Answer 82

Dynamic addressing uses a routing protocol:

for RIP v2

Question 83

RIP v2 (facts)

Answer 83

 Uses UDP port 520
 Classless
 Max hop count is 15
 Multicasts route updates to 224.0.0.9
 Supports authentication
 Update timer, 30 seconds
 Invalid, 90 seconds
 Hold down, 180 seconds
 Flush, 270 seconds

Question 84

Protocol that understand the direction and distance to any given network connections

Answer 84

Distance Vector protocols

Question 85

Problems with Distance Vector protocols include _______ _____ and ______ to ______.

Answer 85

routing loops and

counting to infinity

Question 86

For all configurations, you must specify which interfaces are internal for NAT and which are external:

Answer 86

Router(config-if)#ip nat inside/outside

Question 87

Static NAT – Maps one address to one address, such as 192.168.1.1 to 200.1.1.1

Answer 87

outer(config)#ip nat inside source static 192.168.1.1 200.1.1.1

Question 88

Maps a number of internal addresses to a pool of external addresses

Answer 88

Dynamic NAT

Question 89

Router(config)#ip nat pool ad_team 10.0.0.1 10.0.0.10 prefix-length 24

Router(config)#ip nat inside source list 1 pool ad_team out

Router(config)#access-list 1 permit 192.168.1.0 0.0.0.255

Answer 89

The
configuration below creates a pool of 10 addresses with a mask (prefix length) of 255.255.255.0 and the name ‘ad_team.’ The hosts that will go through NAT are on the 192.168.1.0 network.

Question 90

The two methods for wireless authentication are ___ ______ and ______ _____

Answer 90

open system and shared key.

Question 91

the host sends an association request to the wireless access point and it will be sent a success or failure message

Answer 91

open-system

method (Wireless)

Question 92

a key or pass phrase is configured on both the host

and the access point

Answer 92

shared-key method (Wireless)

Question 93

There are three types of shared-key authentication

Answer 93

WEP, WPA, and WPA2

Question 94

Is an encryption algorithm built in the 802.11 standard. It uses RC4 40-bit or 104-bit keys and a 24-bit initialisation vector.

Answer 94

WEP

Question 95

uses dynamic key management, adds a stronger encryption cipher, and is built on the EAP/802.1X mechanism. It uses Temporal Key Integrity Protocol (TKIP), and the Initialization Vector is increased to 48-bit (more than 500 trillion key combinations). It is used with RADIUS in the enterprise

Answer 95

WPA

Question 96

It uses even stronger encryption than WPA and this
is achieved by using the Advanced Encryption Standard (AES). In addition, WPA2 creates a new key for every new association. This is a benefit over WPA in that the client’s keys are unique and specific to that client.

Answer 96

WPA2 is the next generation in wireless security.

Question 97

command to encrypt all the passwords

Answer 97

service password-encryption

Question 98

Router(config)#enable password {password}

Answer 98

Enable – Used to get from User Exec mode to Privileged Exec mode. Not encrypted.

Question 99

Router(config)#enable secret {password}

Answer 99

Enable secret – Encrypts password (only use enable or enable secret, not both):

Question 100

Router(config)#line vty 0 4

Router(config-line)#password cisco

Router(config-line)#login

Answer 100

VTY – Needed if Telnet access is required:

Question 101

If you want to permit SSH into the router or switch Telnet lines, then you need to add the command

Answer 101

transport input ssh to the VTY lines.