IP Services Flashcards
(171 cards)
1
Q
Display the software clock, including the time source:
R1# […]
A
show clock detail
2
Q
What is the meaning of an asterisk (*) next to the time in the output of show clock?
A
The time is not authoritative
3
Q
What is the default time source for the software clock of a Cisco device?
A
hardware calendar
4
Q
Displays the logs of the device:
R1# […]
A
show logging
4
Q
A device [can/can’t] be an NTP server and client at the same time.
A
can
4
Q
The distance of an NTP server from the original reference clock is called […].
A
stratum
5
Q
NTP = […] port 123
A
UDP
5
Q
NTP = UDP port […]
A
123
6
Q
Reference clocks are NTP stratum […]
A
0
7
Q
NTP servers directly connected to reference clocks are stratum […]
A
1
8
Q
NTP servers which get their time directly from reference clocks are also called […].
A
primary servers
9
Q
NTP servers which get their time from other NTP servers are called […].
A
secondary servers
10
Q
Anything above NTP stratum […] is considered unreliable and the device will not sync its time.
A
15
11
Q
When an NTP server peers with another server at the same stratum level, this is called […] mode.
A
symmetric active
12
Q
Configure the NTP server to sync to:
R1(config)# […]
A
ntp server ip-address [prefer]
13
Q
Show a list of configured NTP servers:
R1# […]
A
show ntp associations
14
Q
Configure the router to update the hardware clock using NTP:
R1(config)# […]
A
ntp update-calendar
15
Q
Configure the source interface of NTP messages:
R1(config)# […]
A
ntp source interface
16
Q
Configure the device to be an NTP server:
R1(config)# […]
A
ntp master [stratum]
17
Q
The default stratum of the ntp master command is […].
A
8
18
Q
Configure NTP symmetric active mode:
R1(config)# […]
A
ntp peer ip-address
19
Q
Enable NTP authentication:
R1(config)# […]
A
ntp authenticate
20
Q
Create an NTP authentication key:
R1(config)# […]
A
ntp authentication-key key-number md5 key
21
Q
Specify an NTP trusted key:
R1(config)# […]
A
ntp trusted-key key-number
22
Specify the NTP authentication key to use with the NTP server:
R1(config)# [...]
ntp server ip-address key key-number
23
Display the status of NTP on the device:
R1# [...]
show ntp status
24
NTP servers with a [lower/higher] stratum are preferred.
lower
25
Hosts can automatically learn the address of the DNS server via [protocol].
DHCP
26
(Windows) Show the DNS cache.
> [...]
ipconfig /displaydns
27
(Windows) Clear the DNS cache.
> [...]
ipconfig /flushdns
28
(Windows) Ping the specified address, specifying the number of pings to send.
> [...]
ping ip-address -n number
29
Configure the router to act as a DNS server.
R1(config)# [...]
ip dns server
30
Configure an entry in the router's host table.
R1(config)# [...]
ip host hostname ip-address
31
Configure the DNS server the router will send DNS queries to.
R1(config)# [...]
ip name-server ip-address
32
Enable the router to perform DNS queries. (enable by default)
R1(config)# [...]
ip domain lookup
33
Configure the domain of the router.
R1(config)# [...]
ip domain name domain-name
34
Display the router's host table:
R1# [...]
show hosts
35
DNS '[...]' records map names to IPv4 addresses.
A
36
DNS '[...]' records map names to IPv6 addresses.
AAAA
37
Standard DNS queries/responses typically use [TCP/UDP].
UDP
38
[...] is used for DNS messages greater than 512 bytes.
TCP
39
TCP is used for DNS messages greater than [size].
512 bytes
40
Windows command prompt: Release the PC's DHCP-learned IP address
> [...]
ipconfig /release
41
Windows command prompt: Get a new IP address via DHCP
> [...]
ipconfig /renew
42
Using the command ipconfig /release in the Windows command prompt will send a DHCP [...] message.
Release
43
The DHCP Release message is [broadcast/unicast].
unicast
44
What four DHCP messages are exchanged for a DHCP client to get an IP address?
Discover
Offer
Request
Ack
45
In the DHCP 'DORA' exchange, which messages are sent from client to server?
Discover, Request
46
In the DHCP 'DORA' exchange, which messages are sent from server to client?
Offer, Ack
47
The DHCP Discover message is [broadcast/unicast].
broadcast
48
The DHCP Ack message is [broadcast/unicast].
either
48
The DHCP Offer message is [broadcast/unicast].
either
49
The DHCP Request message is [broadcast/unicast].
Broadcast
50
Which messages in the DHCP 'DORA' exchange are always broadcast?
Discover, Request
51
Which messages in the DHCP 'DORA' exchange can be broadcast or unicast?
Offer, Ack
52
A DHCP relay agent will forward DHCP messages to the DHCP server using [unicast/broadcast].
unicast
53
Configure a range of addresses to be excluded from the DHCP pool.
R1(config)# [...]
ip dhcp excluded-address low-address high-address
54
Create a DHCP pool.
R1(config)# [...]
ip dhcp pool pool-name
55
Configure the range of addresses for the DHCP pool.
R1(dhcp-config)# [...]
network ip-address {/prefix-length | subnet-mask}
56
Configure the domain name for the DHCP pool.
R1(dhcp-config)# [...]
domain-name domain-name
56
Configure a DNS server for the DHCP pool.
R1(dhcp-config)# [...]
dns-server ip-address
57
Configure the default gateway for the DHCP pool.
R1(dhcp-config)# [...]
default-router ip-address
58
Configure the lease time for the DHCP pool.
R1(dhcp-config)# [...]
lease {days hours minutes | infinite}
59
Display the DHCP clients that have received an IP address from this router.
R1# [...]
show ip dhcp binding
60
Configure the router as a DHCP relay agent.
R1(config-if)# [...]
ip helper-address ip-address
61
Configure the router as a DHCP client on this interface.
R1(config-if)# [...]
ip address dhcp
62
What are the two types of devices in SNMP?
Managed Devices
Network Management Station (NMS)
63
What does NMS stand for?
Network Management Station
64
The SNMP Manager is software on the [NMS/managed devices].
NMS
65
The SNMP Agent is software on the [NMS/managed devices].
managed devices
66
The [...] is the structure that contains the variables that are managed by SNMP.
Management Information Base (MIB)
67
What does MIB stand for?
Management Information Base
68
Each variable in the SNMP MIB is identified with an [...].
OID
68
What does OID stand for?
Object ID
69
Which SNMP message(s) is/are in the 'read' message class?
Get
GetNext
GetBulk
69
Which SNMP message(s) is/are in the 'write' message class?
Set
70
Which SNMP message(s) is/are in the 'notification' message class?
Trap
Inform
71
Which SNMP message is a request sent from the manager to the agent to retrieve the value of a variable (OID), or multiple variables?
Get
72
Which SNMP message is a request sent from the manager to the agent to discover the available variables in the MIB?
GetNext
(also GetBulk, which is a more efficient version)
73
Which SNMP message is a request sent from the manager to the agent to change the value of one or more variables?
Set
74
Which SNMP message is an unacknowleged notification sent from the agent to the manager?
Trap
75
Which SNMP message is an acknowleged notification sent from the agent to the manager?
Inform
76
SNMP [...] use UDP port 161.
Agents
77
SNMP Agents use UDP port [...].
161
78
SNMP [...] use UDP port 162.
Managers
79
SNMP Managers use UDP port [...].
162
80
Syslog message format:
seq:timestamp: %[...]-severity-mnemonic:description
facility
81
Syslog message format:
seq:timestamp: %facility-[...]-mnemonic:description
severity
82
Syslog message format:
seq:timestamp: %facility-severity-[...]:description
mnemonic
83
Which Syslog message field?
-Indicates which process on the device generated the message.
facility
84
Which Syslog message field?
-Indicates how serious the logged event is.
severity
85
Which Syslog message field?
-A short code for the message, indicating what happened.
mnemonic
86
Syslog severity level:
0 = [...]
Emergency
87
Syslog severity level:
1 = [...]
Alert
88
Syslog severity level:
2 = [...]
Critical
89
Syslog severity level:
3 = [...]
Error
90
Syslog severity level:
4 = [...]
Warning
91
Syslog severity level:
5 = [...]
Notice/Notification
92
Syslog severity level:
6 = [...]
Informational
93
Syslog severity level:
7 = [...]
Debugging
94
Syslog servers listen for messages on [...] port 514.
UDP
95
Syslog servers listen for messages on UDP port [...].
514
96
Which locations are Syslog messages sent to by default?
Console line
Buffer
97
Configure Syslog monitoring to the console line, specifying the level.
R1(config)# [...]
logging console level
98
Configure Syslog monitoring to the VTY lines, specifying the level.
R1(config)# [...]
logging monitor level
99
Configure Syslog monitoring to the buffer, specifying the size/level.
R1(config)# [...]
logging buffered [size] level
100
Configure Syslog monitoring to an external server
R1(config)# [...]
logging ip-address
OR
logging host ip-address
101
Configure the level of Syslog messages sent to an external server:
R1(config)# [...]
logging trap level
102
When connected via Telnet/SSH, display Syslog messages for the current session:
R1# [...]
terminal monitor
103
Configure synchronous logging on the device:
R1(config-line)# [...]
logging synchronous
104
Enter console line configuration mode:
R1(config)# [...]
line console 0
105
Configure a line password:
R1(config-line)# [...]
password password
106
Configure the router to authenticate using the configured line password:
R1(config-line)# [...]
login
107
Configure local line authentication:
R1(config-line)# [...]
login local
108
Configure the switch's default gateway:
SW1(config)# [...]
ip default-gateway ip-address
109
Telnet servers listen for traffic on TCP port [...].
23
110
Access all VTY lines:
R1(config)# [...]
line vty 0 15
111
Configure the exec timeout:
R1(config-line)# [...]
exec-timeout minutes seconds
112
Configure the protocols that can be used to connect via the VTY lines:
R1(config-line)# [...]
transport input [protocols | all | none]
113
Apply an ACL for connections to the VTY lines:
R1(config-line)# [...]
access-class acl in
114
Generate an RSA key pair:
R1(config)# [...]
crypto key generate rsa
115
SSH servers listen for traffic on TCP port [...].
22
116
Does SSH encrypt traffic?
Yes
117
Show information about the IOS version of the device:
R1# [...]
show version
118
Show information about the current SSH configuration:
R1# [...]
show ip ssh
119
[...] IOS images support SSH.
K9
120
TFTP uses '[...]' communication, in which the client and server alternately send messages.
lock-step
120
When crypto key generate rsa is used, how are the keys named?
The FQDN is used as the name
120
Limit SSH connections to SSHv2 only:
R1(config)# [...]
ip ssh version 2
121
TFTP servers listen on UDP port [...]
69
122
What are the three phases of a TFTP file transfer?
Connection
Data Transfer
Connection Termination
122
What does the TFTP 'TID' stand for?
Transfer ID
123
Which protocol provides more functionality, FTP or TFTP?
FTP
123
The random ports used in TFTP are also called:
TIDs (Transfer IDs)
123
Which protocol is more lightweight and simple, FTP or TFTP?
TFTP
124
FTP [...] connections use TCP port 21.
control
125
FTP control connections use TCP port [...].
21
125
FTP [...] connections use TCP port 20.
data
126
FTP data connections use TCP port [...].
20
127
In FTP [...] mode, the server initiates the data connection.
active
128
In FTP active mode, the [...] initiates the data connection.
server
129
In FTP passive mode, the [...] initiates the data connection.
client
129
In FTP [...] mode, the client initiates the data connection.
passive
130
What two kinds of connection are used in FTP?
Control
Data
130
Does FTP use encryption?
No
(FTPS does)
131
What is the class C range of private IPv4 addresses?
192.168.0.0/16
131
What is the class A range of private IPv4 addresses?
10.0.0.0/8
131
What is the class B range of private IPv4 addresses?
172.16.0.0/12
132
Static Source NAT = [...] address is mapped to [...] address.
Inside Local / Inside Global
132
Cisco NAT terminology:
[...] = The IP address of the inside host from the perspective of the outside network.
Inside Global
132
Cisco NAT terminology:
[...] = The IP address of the inside host from the perspective of the inside network.
Inside Local
133
Cisco NAT terminology:
[...] = The IP address of the outside host from the perspective of the inside network.
Outside Local
133
Cisco NAT terminology:
[...] = The IP address of the outside host from the perspective of the outside network.
Outside Global
133
Configure the NAT outside interface:
R1(config-if)# [...]
ip nat outside
134
Configure the NAT inside interface:
R1(config-if)# [...]
ip nat inside
135
Configure a static source NAT mapping:
R1(config)# [...]
ip nat inside source static inside-local-ip inside-global-ip
135
When only source NAT is used, in the output of show ip nat translations you can expect the [...] and [...] addresses to be the same.
outside local / outside global
136
Show the NAT translation table:
R1# [...]
show ip nat translations
136
Configure dynamic NAT:
R1(config)# [...]
ip nat inside source list access-list pool pool-name
137
Show the NAT statistics:
R1# [...]
show ip nat statistics
137
Configure a pool for dynamic NAT:
R1(config)# [...]
ip nat pool pool-name start-ip end-ip [prefix-length prefix-length | netmask subnet-mask]
137
Clear all dynamic NAT translation entries:
R1# [...]
clear ip nat translation *
138
Configure dynamic PAT using an address pool:
R1(config)# [...]
ip nat inside source list access-list pool pool-name overload
139
In dynamic NAT/PAT, what is used to identify traffic that should be translated?
an ACL
139
Configure dynamic PAT using the router's interface IP:
R1(config)# [...]
ip nat inside source list access-list interface interface overload
140
Which form of NAT is most useful for preserving public IP addresses?
PAT / NAT Overload
140
What is another name for PAT?
NAT Overload
140
What does a router do if a packet requires NAT but no inside global addresses are available?
It drops the packet
140
When an ACL is used to identify traffic in dynamic NAT/PAT, what happens to traffic permitted by the ACL?
It is translated by the router
141
In which form of NAT are multiple inside local addresses translated to a single inside global address at the same time?
PAT / NAT Overload
141
When an ACL is used to identify traffic in dynamic NAT/PAT, what happens to traffic denied by the ACL?
It is not translated by the router
(but the traffic is not dropped!)
