Pt2 Routing and Switching v5.02 + v5.03 2016 Flashcards by Lewis Davis

A network technician has been asked to secure all switches in the campus network. The security requirements are for each switch to automatically learn and add MAC addresses to both the address table and the running configuration. Which port security configuration will meet these requirements?

auto secure MAC addresses

dynamic secure MAC addresses

static secure MAC addresses

sticky secure MAC addresses

How well did you know this?

Not at all

Perfectly

Which three pairs of trunking modes will establish a functional trunk link between two Cisco switches? (Choose three.)

dynamic desirable – dynamic auto

dynamic auto – dynamic auto

access – dynamic auto

dynamic desirable – dynamic desirable

access – trunk

dynamic desirable – trunk

dynamic desirable – dynamic auto.
dynamic desirable – dynamic desirable.
dynamic desirable – trunk

How well did you know this?

Not at all

Perfectly

Fill in the blank.

The OSPF Type 1 packet is the __ ___ packet.

hello

How well did you know this?

Not at all

Perfectly

Which value represents the “trustworthiness” of a route and is used to determine which route to install into the routing table when there are multiple routes toward the same destination?

routing protocol

outgoing interface

metric

administrative distance

How well did you know this?

Not at all

Perfectly

Which type of router memory temporarily stores the running configuration file and ARP table?
flash
NVRAM
RAM
ROM

RAM

How well did you know this?

Not at all

Perfectly

Fill in the blank.

The default administrative distance for a static route is ? .

How well did you know this?

Not at all

Perfectly

Fill in the blank.

Static routes are configured by the use of the global configuration command.

ANS: ?

ip route

How well did you know this?

Not at all

Perfectly

Refer to the exhibit. If the switch reboots and all routers have to re-establish OSPF adjacencies, which routers will become the new DR and BDR?

Router R3 will become the DR and router R1 will become the BDR.

Router R1 will become the DR and router R2 will become the BDR.

Router R4 will become the DR and router R3 will become the BDR.

Router R1 will become the DR and router R2 will become the BDR.

Router R4 will become the DR and router R3 will become the BDR.

How well did you know this?

Not at all

Perfectly

What is the purpose of an access list that is created as part of configuring IP address translation?

The access list permits or denies specific addresses from entering the device doing the translation.

The access list defines the private IP addresses that are to be translated.

The access list prevents external devices from being a part of the address translation.

The access list defines the valid public addresses for the NAT or PAT pool.

The access list defines the private IP addresses that are to be translated.

How well did you know this?

Not at all

Perfectly

The computers used by the network administrators for a school are on the 10.7.0.0/27 network. Which two commands are needed at a minimum to apply an ACL that will ensure that only devices that are used by the network administrators will be allowed Telnet access to the routers? (Choose two.)

-ip access-group 5 out

-access-list standard VTY
permit 10.7.0.0 0.0.0.127

access-list 5 deny any
access-list 5 permit 10.7.0.0 0.0.0.31
ip access-group 5 in
access-class 5 in

access-list 5 permit 10.7.0.0 0.0.0.31.

- access-class 5 in.

How well did you know this?

Not at all

Perfectly

While analyzing log files, a network administrator notices reoccurring native VLAN mismatches. What is the effect of these reoccurring errors?

The control and management traffic on the error-occurring trunk port is being misdirected or dropped.

Unexpected traffic on the error-occurring trunk port is being received.

All traffic on the error-occurring trunk port is being misdirected or dropped.

All traffic on the error-occurring trunk port is being switched correctly regardless of the error.

The control and management traffic on the error-occurring trunk port is being misdirected or dropped.

How well did you know this?

Not at all

Perfectly

Which two characteristics describe the native VLAN? (Choose two.)

This VLAN is necessary for remote management of a switch.

Designed to carry traffic that is generated by users, this type of VLAN is also known as the default VLAN.

The native VLAN provides a common identifier to both ends of a trunk.

The native VLAN traffic will be untagged across the trunk link.

High priority traffic, such as voice traffic, uses the native VLAN.

The native VLAN provides a common identifier to both ends of a trunk.
The native VLAN traffic will be untagged across the trunk link.

How well did you know this?

Not at all

Perfectly

Refer to the exhibit. The Branch Router has an OSPF neighbor relationship with the HQ router over the 198.51.0.4/30 network. The 198.51.0.8/30 network link should serve as a backup when the OSPF link goes down. The floating static route command ip route 0.0.0.0 0.0.0.0 S0/1/1 100 was issued on Branch and now traffic is using the backup link even when the OSPF link is up and functioning. Which change should be made to the static route command so that traffic will only use the OSPF link when it is up?
Add the next hop neighbor address of 198.51.0.8.
Change the administrative distance to 1.
Change the destination network to 198.51.0.5.
Change the administrative distance to 120.

Change the administrative distance to 120.

How well did you know this?

Not at all

Perfectly

Refer to the exhibit. An attacker on PC X sends a frame with two 802.1Q tags on it, one for VLAN 40 and another for VLAN 12. What will happen to this frame?
SW-A will drop the frame because it is invalid.
SW-A will leave both tags on the frame and send it to SW-B, which will forward it to hosts on VLAN 40.
SW-A will remove both tags and forward the rest of the frame across the trunk link, where SW-B will forward the frame to hosts on VLAN 40.
SW-A will remove the outer tag and send the rest of the frame across the trunk link, where SW-B will forward the frame to hosts on VLAN 12.

SW-A will remove both tags and forward the rest of the frame across the trunk link, where SW-B will forward the frame to hosts on VLAN 40.

How well did you know this?

Not at all

Perfectly

Which statement is true about the difference between OSPFv2 and OSPFv3?
OSPFv3 routers use a different metric than OSPFv2 routers use.
OSPFv3 routers do not need to elect a DR on multiaccess segments.
OSPFv3 routers do not need to have matching subnets to form neighbor adjacencies.
OSPFv3 routers use a 128 bit router ID instead of a 32 bit ID.

OSPFv3 routers do not need to have matching subnets to form neighbor adjacencies.

How well did you know this?

Not at all

Perfectly

What are two ways of turning off DTP on a trunk link between switches? (Choose two.)
Change the native VLAN on both ports.
Configure attached switch ports with the nonegotiate command option.
Configure attached switch ports with the dynamic desirable command option.
Configure one port with the dynamic auto command option and the opposite attached switch port with the dynamic desirable command option.
Place the two attached switch ports in access mode.

Configure attached switch ports with the nonegotiate command option..
Place the two attached switch ports in access mode.

How well did you know this?

Not at all

Perfectly

Why would an administrator use a network security auditing tool to flood the switch MAC address table with fictitious MAC addresses?
to determine if the switch is forwarding the broadcast traffic correctly
to determine which ports are functioning
to determine which ports are not correctly configured to prevent MAC address flooding
to determine when the CAM table size needs to be increased in order to prevent overflows

to determine which ports are not correctly configured to prevent MAC address flooding

How well did you know this?

Not at all

Perfectly

A new network policy requires an ACL to deny HTTP access from all guests to a web server at the main office. All guests use addressing from the IPv6 subnet 2001:DB8:19:C::/64. The web server is configured with the address 2001:DB8:19:A::105/64. Implementing the NoWeb ACL on the interface for the guest LAN requires which three commands? (Choose three.)
permit tcp any host 2001:DB8:19:A::105 eq 80
deny tcp host 2001:DB8:19:A::105 any eq 80
deny tcp any host 2001:DB8:19:A::105 eq 80
permit ipv6 any any
deny ipv6 any any
ipv6 traffic-filter NoWeb in
ip access-group NoWeb in

deny tcp any host 2001:DB8:19:A::105 eq 80.

permit ipv6 any any

How well did you know this?

Not at all

Perfectly

An OSPF router has three directly connected networks; 172.16.0.0/16, 172.16.1.0/16, and 172.16.2.0/16. Which OSPF network command would advertise only the 172.16.1.0 network to neighbors?
router(config-router)# network 172.16.1.0 0.0.255.255 area 0
router(config-router)# network 172.16.0.0 0.0.15.255 area 0
router(config-router)# network 172.16.1.0 255.255.255.0 area 0
router(config-router)# network 172.16.1.0 0.0.0.0 area 0

router(config-router)# network 172.16.1.0 0.0.255.255 area 0

How well did you know this?

Not at all

Perfectly

Refer to the exhibit. Which type of route is 172.16.0.0/16?

child route
level 1 parent route
default route
ultimate route

level 1 parent route

How well did you know this?

Not at all

Perfectly

Refer to the exhibit. Which type of IPv6 static route is configured in the exhibit?
fully specified static route
recursive static route
directly attached static route
floating static route

recursive static route

How well did you know this?

Not at all

Perfectly

Which subnet mask would be used as the classful mask for the IP address 128.107.52.27?

0.0.0
255.0.0
255.255.0
255.255.224

255.255.0.0

How well did you know this?

Not at all

Perfectly

Refer to the exhibit. A small business uses VLANs 8, 20, 25, and 30 on two switches that have a trunk link between them. What native VLAN should be used on the trunk if Cisco best practices are being implemented?
1
5
8
20
25
30

How well did you know this?

Not at all

Perfectly

The buffers for packet processing and the running configuration file are temporarily stored in which type of router memory?

Flash
NVRAM
RAM
ROM

RAM

How well did you know this?

Not at all

Perfectly

A network technician is configuring port security on switches. The interfaces on the switches are configured in such a way that when a violation occurs, packets with unknown source address are dropped and no notification is sent. Which violation mode is configured on the interfaces? off restrict protect shutdown

Protect

``` A standard ACL has been configured on a router to allow only clients from the 10.11.110.0/24 network to telnet or to ssh to the VTY lines of the router. Which command will correctly apply this ACL? access-group 11 in access-class 11 in access-list 11 in access-list 110 in ```

access-group 11 in

Refer to the exhibit. What address will summarize the LANs attached to routers 2-A and 3-A and can be configured in a summary static route to advertise them to an upstream neighbor? 10. 0.0.0/24 10. 0.0.0/23 10. 0.0.0/22 10. 0.0.0/21

10.0.0.0/21

A security specialist designs an ACL to deny access to a web server from all sales staff. The sales staff are assigned addressing from the IPv6 subnet 2001:db8:48:2c::/64. The web server is assigned the address 2001:db8:48:1c::50/64. Configuring the WebFilter ACL on the LAN interface for the sales staff will require which three commands? (Choose three.) permit tcp any host 2001:db8:48:1c::50 eq 80 deny tcp host 2001:db8:48:1c::50 any eq 80 deny tcp any host 2001:db8:48:1c::50 eq 80 permit ipv6 any any deny ipv6 any any ip access-group WebFilter in ipv6 traffic-filter WebFilter in

deny tcp host 2001:db8:48:1c::50 any eq 80. deny tcp any host 2001:db8:48:1c::50 eq 80. deny ipv6 any any

To enable RIP routing for a specific subnet, the configuration command network 192.168.5.64 was entered by the network administrator. What address, if any, appears in the running configuration file to identify this network? 192. 168.5.64 192. 168.5.0 192. 168.0.0 No address is displayed.

192.168.5.0

Refer to the exhibit. An ACL preventing FTP and HTTP access to the interval web server from all teaching assistants has been implemented in the Board Office. The address of the web server is 172.20.1.100 and all teaching assistants are assigned addresses in the 172.21.1.0/24 network. After implement the ACL, access to all servers is denied. What is the problem? inbound ACLs must be routed before they are processed the ACL is implicitly denying access to all the servers named ACLs requite the use of port numbers the ACL is applied to the interface using the wrong direction

named ACLs requite the use of port numbers

``` Refer to the exhibit. Assuming that the routing tables are up to date and no ARP messages are needed, after a packet leaves H1, how many times is the L2 header rewritten in the path to H2? 1 2 3 4 5 6 ```

A router learns of multiple toward the same destination. Which value in a routing table represents the trustworthiness of learned routes and is used by the router to determine which route to install into the routing table for specific situation? Metric Colour Meter Bread

Metric

What is the minimum configuration for a router interface that is participating in IPv6 routing? ``` Ipv6 OSPF Link-access To have only a link-local IPv6 address Protocol ```

To have only a link-local IPv6 address

Which two statements are true about half-duplex and full-duplex communications? (Choose two.) Full duplex offers 100 percent potential use of the bandwidth. Half duplex has only one channel. All modern NICs support both half-duplex and full-duplex communication. Full duplex allows both ends to transmit and receive simultaneously. Full duplex increases the effective bandwidth.

Full duplex offers 100 percent potential use of the bandwidth.. Full duplex allows both ends to transmit and receive simultaneously.

Fill in the blank. The acronym describes the type of traffic that has strict QoS requirements and utilizes a one-way overall delay less than 150 ms across the network. __?__

VoIP

Which two commands should be implemented to return a Cisco 3560 trunk port to its default configuration? (Choose two.) S1(config-if)# no switchport trunk allowed vlan S1(config-if)# no switchport trunk native vlan S1(config-if)# switchport mode dynamic desirable S1(config-if)# switchport mode access S1(config-if)# switchport access vlan 1

S1(config-if)# no switchport trunk allowed vlan. | S1(config-if)# no switchport trunk native vlan

``` Which command will enable auto-MDIX on a device? S1(config-if)# mdix auto S1# auto-mdix S1(config-if)# auto-mdix S1# mdix auto S1(config)# mdix auto S1(config)# auto-mdix ```

S1(config-if)# mdix auto

What is the effect of issuing the passive-interface default command on a router that is configured for OSPF? Routers that share a link and use the same routing protocol It prevents OSPF messages from being sent out any OSPF-enabled interface. All of above Routers that share a link and use the same routing protocol

It prevents OSPF messages from being sent out any OSPF-enabled interface.

A network administrator is implementing a distance vector routing protocol between neighbors on the network. In the context of distance vector protocols, what is a neighbor? routers that are reachable over a TCP session routers that share a link and use the same routing protocol routers that reside in the same area routers that exchange LSAs

routers that share a link and use the same routing protocol

Refer to the exhibit. A network administrator has just configured address translation and is verifying the configuration. What three things can the administrator verify? (Choose three.) Address translation is working. Three addresses from the NAT pool are being used by hosts. The name of the NAT pool is refCount. A standard access list numbered 1 was used as part of the configuration process. Two types of NAT are enabled. One port on the router is not participating in the address translation.

Address translation is working. A standard access list numbered 1 was used as part of the configuration process.. Two types of NAT are enabled.

Match the router memory type that provides the primary storage for the router feature. (Not all options are used.) console access –Not Scored– full operating system > limited operating system > routing table > startup configuration file > ROM flash RAM NVRAM

FLASH ROM RAM NVRAM

Which two methods can be used to provide secure management access to a Cisco switch? (Choose two.) Configure all switch ports to a new VLAN that is not VLAN 1. Configure specific ports for management traffic on a specific VLAN. Configure SSH for remote management. Configure all unused ports to a “black hole.” Configure the native VLAN to match the default VLAN.

Configure specific ports for management traffic on a specific VLAN. Configure SSH for remote management.

``` Refer to the exhibit. Which highlighted value represents a specific destination network in the routing table? 0.0.0.0 10.16.100.128 10.16.100.2 110 791 ```

10.16.100.128

Refer to the exhibit. If RIPng is enabled, how many hops away does R1 consider the 2001:0DB8:ACAD:1::/64 network to be? 1 4 2 3

Refer to the exhibit. Host A has sent a packet to host B. What will be the source MAC and IP addresses on the packet when it arrives at host B? Source MAC: 00E0.FE10.17A3 Source IP: 10.1.1.10 Source MAC: 00E0.FE91.7799 Source IP: 10.1.1.1 Source MAC: 00E0.FE91.7799 Source IP: 192.168.1.1 Source MAC: 00E0.FE91.7799 Source IP: 10.1.1.10 Source MAC: 00E0.FE10.17A3 Source IP: 192.168.1.1

Source MAC: 00E0.FE91.7799 | Source IP: 10.1.1.10

Which network design may be recommended for a small campus site that consists of a single building with a few users? a network design where the access and distribution layers are collapsed into a single layer a network design where the access and core layers are collapsed into a single layer a collapsed core network design a three-tier campus network design where the access, distribution, and core are all separate layers, each one with very specific functions

a collapsed core network design

efer to the exhibit. A small business uses VLANs 2, 3, 4, and 5 between two switches that have a trunk link between them. What native VLAN should be used on the trunk if Cisco best practices are being implemented? 1 2 3 4 5 6 11

A router learns of multiple routes toward the same destination. Which value in a routing table represents the trustworthiness of learned routes and is used by the router to determine which route to install into the routing table for this specific situation? routing protocol outgoing interface metric administrative distance

administrative distance

Which value in a routing table represents trustworthiness and is used by the router to determine which route to install into the routing table when there are multiple routes toward the same destination? administrative distance metric outgoing interface routing protocol

administrative distance

The network address 172.18.9.128 with netmask 255.255.255.128 is matched by which wildcard mask? 0. 0.0.31 0. 0.0.255 0. 0.0.127 0. 0.0.63

0.0.0.127

Which three addresses could be used as the destination address for OSPFv3 messages? (Choose three.) FF02::5 FF02::6 FF02::A 2001:db8:cafe::1 FF02::1:2 FE80::1

FF02::5 FF02::6 FE80::1

Refer to the exhibit. What is the OSPF cost to reach the West LAN 172.16.2.0/24 from East? 65

A network administrator is configuring an ACL with the command access-list 10 permit 172.16.32.0 0.0.15.255. Which IPv4 address matches the ACE? 172. 16.20.2 172. 16.26.254 172. 16.47.254 172. 16.48.5

172.16.47.254

Refer to the exhibit. A new network policy requires an ACL denying FTP and Telnet access to a Corp file server from all interns. The address of the file server is 172.16.1.15 and all interns are assigned addresses in the 172.18.200.0/24 network. After implementing the ACL, no one in the Corp network can access any of the servers. What is the problem? Inbound ACLs must be routed before they are processed. The ACL is implicitly denying access to all the servers. Named ACLs require the use of port numbers. The ACL is applied to the interface using the wrong direction.

Inbound ACLs must be routed before they are processed. | The ACL is implicitly denying access to all the servers.

Which two statements are correct if a configured NTP master on a network cannot reach any clock with a lower stratum number? The NTP master will claim to be synchronized at the configured stratum number. An NTP server with a higher stratum number will become the master. Other systems will be willing to synchronize to that master using NTP. The NTP master will be the clock with 1 as its stratum number. The NTP master will lower its stratum number.

The NTP master will claim to be synchronized at the configured stratum number. Other systems will be willing to synchronize to that master using NTP.

A network engineer has created a standard ACL to control SSH access to a router. Which command will apply the ACL to the VTY lines? access-group 11 in access-class 11 in access-list 11 in access-list 110 in

access-class 11 in

A network administrator is configuring a new Cisco switch for remote management access. Which three items must be configured on the switch for the task? (Choose three.) ``` vty lines VTP domain loopback address default gateway default VLAN IP address ```

loopback address. default VLAN. IP address

A network administrator configures a router to provide stateful DHCPv6 operation. However, users report that workstations do not receive IPv6 addresses within the scope. Which configuration command should be checked to ensure that statefull DHCPv6 is implemented? The dns-server line is included in the ipv6 dhcp pool section. The ipv6 nd managed-config-flag is entered for the interface facing the LAN segment. The ipv6 nd other-config-flag is entered for the interface facing the LAN segment. The domain-name line is included in the ipv6 dhcp pool section.

The dns-server line is included in the ipv6 dhcp pool section.

A company has an internal network of 172.16.25.0/24 for their employee workstations and a DMZ network of 172.16.12.0/24 to host servers. The company uses NAT when inside hosts connect to outside network. A network administrator issues the show ip nat translations command to check the NAT configurations. Which one of source IPv4 addresses is translated by R1 with PAT? 10. 0.0.31 172. 16.12.5 172. 16.12.33 192. 168.1.10 172. 16.25.35

172.16.25.35

Which characteristic describes cut-through switching? Error-free fragments are forwarded, so switching occurs with lower latency. Frames are forwarded without any error checking. Only outgoing frames are checked for errors. Buffering is used to support different Ethernet speeds.

Frames are forwarded without any error checking.

``` A network administrator is configuring port security on a Cisco switch. The company security policy specifies that when a violation occurs, packets with unknown source addresses should be dropped and no notification should be sent. Which violation mode should be configured on the interfaces? off restrict protect shutdown ```

protect

What are two reasons that will prevent two routers from forming an OSPFv2 adjacency? (Choose two.) mismatched subnet masks on the link interfaces a mismatched Cisco IOS version that is used use of private IP addresses on the link interfaces one router connecting to a FastEthernet port on the switch and the other connecting to a GigabitEthernet port mismatched OSPF Hello or Dead timers

mismatched OSPF Hello or Dead timers. | mismatched subnet masks on the link interfaces

which type of traffic is designed for a native VLAN? management user-generated un tagged tagged

un tagged

``` A company security policy requires that all MAC addressing be dynamically learned and added to both the MAC address table and the running configuration on each switch. Which port security configuration will accomplish this? auto secure MAC addresses dynamic secure MAC addresses static secure MAC addresses sticky secure MAC addresses ```

sticky secure MAC addresses

named ACLs requite the use of port numbers

What are two features of a link-state routing protocol? (Choose two.) The database information for each router is obtained from the same source. Routers send triggered updates in response to a change. Routers create a topology of the network by using information from other routers. Paths are chosen based on the lowest number of hops to the designated router. Routers send periodic updates only to neighboring routers.

Routers send triggered updates in response to a change. | Routers create a topology of the network by using information from other routers.

``` Which summary IPv6 static route statement can be configured to summarize only the routes to networks 2001:db8:cafe::/58 through 2001:db8:cafe:c0::/58? ipv6 route 2001:db8:cafe::/54 S0/0/0 ipv6 route 2001:db8:cafe::/60 S0/0/0 ipv6 route 2001:db8:cafe::/62 S0/0/0 ipv6 route 2001:db8:cafe::/56 S0/0/0 ```

ipv6 route 2001:db8:cafe::/56 S0/0/0

``` When a Cisco switch receives untagged frames on a 802.1Q trunk port, which VLAN ID is the traffic switched to by default? data VLAN ID native VLAN ID unused VLAN ID management VLAN ID ```

native VLAN ID

A college marketing department has a networked storage device that uses the IP address 10.18.7.5, TCP port 443 for encryption, and UDP port 4365 for video streaming. The college already uses PAT on the router that connects to the Internet. The router interface has the public IP address of 209.165.200.225/30. The IP NAT pool currently uses the IP addresses ranging from 209.165.200.228-236. Which configuration would the network administrator add to allow this device to be accessed by the marketing personnel from home? ip nat pool mktv 10.18.7.5 10.18.7.5 ip nat inside source static tcp 10.18.7.5 443 209.165.200.225 443 ip nat inside source static udp 10.18.7.5 4365 209.165.200.225 4365 ip nat inside source static tcp 209.165.200.225 443 10.18.7.5 443 ip nat inside source static udp 209.165.200.225 4365 10.18.7.5 4365 No additional configuration is necessary. ip nat outside source static 10.18.7.5 209.165.200.225

ip nat inside source static tcp 10.18.7.5 443 209.165.200.225 443

Refer to the exhibit. How did the router obtain the last route that is shown? The ip address interface configuration mode command was used in addition to the network routing protocol configuration mode command. The ipv6 route command was used. the ip route command was used. Another router in the same organization provided the default route by using a dynamic routing protocol.

Another router in the same organization provided the default route by using a dynamic routing protocol.

Refer to the exhibit. A Layer 3 switch routes for three VLANs and connects to a router for Internet connectivity. Which two configurations would be applied to the switch? (Choose two.) (config)# interface gigabitethernet 1/1 (config-if)# no switchport (config-if)# ip address 192.168.1.2 255.255.255.252 (config)# interface vlan 1 (config-if)# ip address 192.168.1.2 255.255.255.0 (config-if)# no shutdown (config)# interface gigabitethernet1/1 (config-if)# switchport mode trunk (config)# interface fastethernet0/4 (config-if)# switchport mode trunk (config)# ip routing

(config)# ip routing (config)# interface gigabitethernet 1/1 (config-if)# no switchport

A network contains multiple VLANs spanning multiple switches. What happens when a device in VLAN 20 sends a broadcast Ethernet frame? Only devices in VLAN 20 see the frame. Devices in VLAN 20 and the management VLAN see the frame. Only devices that are connected to the local switch see the frame. All devices in all VLANs see the frame.

Only devices in VLAN 20 see the frame.

``` Which two packet filters could a network administrator use on an IPv4 extended ACL? (Choose two.) computer type source TCP hello address ICMP message type destination UDP port number destination MAC address ```

ICMP message type | destination UDP port number

Refer to the exhibit. R1 was configured with the static route command ip route 209.165.200.224 255.255.255.224 S0/0/0 and consequently users on network 172.16.0.0/16 are unable to reach resources on the Internet. How should this static route be changed to allow user traffic from the LAN to reach the Internet? Add an administrative distance of 254. Change the destination network and mask to 0.0.0.0 0.0.0.0 Change the exit interface to S0/0/1. Add the next-hop neighbor address of 209.165.200.226.

Change the destination network and mask to 0.0.0.0 0.0.0.0

How is the router ID for an OSPFv3 router determined? the highest IPv6 address on an active interface the highest EUI-64 ID on an active interface the highest IPv4 address on an active interface the lowest MAC address on an active interface

the highest IPv4 address on an active interface

Two employees in the Sales department work different shifts with their laptop computers and share the same Ethernet port in the office. Which set of commands would allow only these two laptops to use the Ethernet port and create violation log entry without shutting down the port if a violation occurs? switchport mode access switchport port-security switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security mac-address sticky switchport port-security violation restrict switchport mode access switchport port-security maximum 2 switchport port-security mac-address sticky switchport mode access switchport port-security maximum 2 switchport port-security mac-address sticky switchport port-security violation protect

switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security mac-address sticky switchport port-security violation restrict

Which two factors are important when deciding which interior gateway routing protocol to use? (Choose two.) ``` speed of convergence scalability ISP selection the autonomous system that is used campus backbone architecture ```

speed of convergence | scalability

Which two statements are characteristics of routed ports on a multilayer switch? (Choose two.) In a switched network, they are mostly configured between switches at the core and distribution layers. They support subinterfaces, like interfaces on the Cisco IOS routers. The interface vlan command has to be entered to create a VLAN on routed ports. They are used for point-to-multipoint links. They are not associated with a particular VLAN.

In a switched network, they are mostly configured between switches at the core and distribution layers. They are not associated with a particular VLAN.

``` A network administrator is adding ACLs to a new IPv6 multirouter environment. Which IPv6 ACE is automatically added implicitly at the end of an ACL so that two adjacent routers can discover each other? permit ip any host ip_address permit icmp any any nd-na permit ip any any deny ip any any ```

permit icmp any any nd-na

``` Refer to the exhibit. The Gigabit interfaces on both routers have been configured with subinterface numbers that match the VLAN numbers connected to them. PCs on VLAN 10 should be able to print to the P1 printer on VLAN 12. PCs on VLAN 20 should print to the printers on VLAN 22. What interface and in what direction should you place a standard ACL that allows printing to P1 from data VLAN 10, but stops the PCs on VLAN 20 from using the P1 printer? (Choose two.) outbound R2 S0/0/1 R1 S0/0/0 inbound R1 Gi0/1.12 R2 Gi0/1.20 ```

outbound | R1 Gi0/1.12

Which statement describes a route that has been learned dynamically? It is automatically updated and maintained by routing protocols. It is unaffected by changes in the topology of the network. It has an administrative distance of 1. It is identified by the prefix C in the routing table.

It is automatically updated and maintained by routing protocols.

A network administrator is explaining to a junior colleague the use of the lt and gt keywords when filtering packets using an extended ACL. Where would the lt or gt keywords be used? in an IPv6 extended ACL that stops packets going to one specific destination VLAN in an IPv4 extended ACL that allows packets from a range of TCP ports destined for a specific network device in an IPv4 named standard ACL that has specific UDP protocols that are allowed to be used on a specific server in an IPv6 named ACL that permits FTP traffic from one particular LAN getting to another LAN

in an IPv4 extended ACL that allows packets from a range of TCP ports destined for a specific network device

On a switch that is configured with multiple VLANs, which command will remove only VLAN 100 from the switch? Switch(config)# no vlan 100 Switch(config-if)# no switchport access vlan 100 Switch(config-if)# no switchport trunk allowed vlan 100 Switch# delete flash:vlan.dat

Switch(config)# no vlan 100

A router needs to be configured to route within OSPF area 0. Which two commands are required to accomplish this? (Choose two.) RouterA(config-router)# network 192.168.2.0 255.255.255.0 0 RouterA(config-router)# network 192.168.2.0 0.0.0.255 0 RouterA(config)# router ospf 1 RouterA(config-router)# network 192.168.2.0 0.0.0.255 area 0 RouterA(config)# router ospf 0

RouterA(config)# router ospf 1 | RouterA(config-router)# network 192.168.2.0 0.0.0.255 area 0

What is a function of the distribution layer? interconnection of large-scale networks in wiring closets network access to the user fault isolation high-speed backbone connectivity

interconnection of large-scale networks in wiring closets

Which three requirements are necessary for two OSPFv2 routers to form an adjacency? (Choose three.) The link interface subnet masks must match. The two routers must include the inter-router link network in an OSPFv2 network command. The OSPFv2 process ID must be the same on each router. The OSPF hello or dead timers on each router must match. The OSPFv2 process is enabled on the interface by entering the ospf process area-id command. The link interface on each router must be configured with a link-local address.

The link interface subnet masks must match. The two routers must include the inter-router link network in an OSPFv2 network command. The OSPF hello or dead timers on each router must match.

Which three pieces of information does a link-state routing protocol use initially as link-state information for locally connected links? (Choose three.) the cost of that link the type of network link the link bandwidth the link next-hop IP address the link router interface IP address and subnet mask

the cost of that link the type of network link. the link router interface IP address and subnet mask

Refer to the exhibit. R1 has been configured as shown. However, PC1 is not able to receive an IPv4 address. What is the problem? R1 is not configured as a DHCPv4 server. A DHCP server must be installed on the same LAN as the host that is receiving the IP address. The ip address dhcp command was not issued on the interface Gi0/1. The ip helper-address command was applied on the wrong interface

The ip helper-address command was applied on the wrong interface.

What best describes the operation of distance vector routing protocols? They use hop count as their only metric. They send their routing tables to directly connected neighbors. They flood the entire network with routing updates. They only send out updates when a new network is added.

They send their routing tables to directly connected neighbors.

A network administrator is using the router-on-a-stick method to configure inter-VLAN routing. Switch port Gi1/1 is used to connect to the router. Which command should be entered to prepare this port for the task? Switch(config)# interface gigabitethernet 1/1 Switch(config-if)# spanning-tree vlan 1 Switch(config)# interface gigabitethernet 1/1 Switch(config-if)# spanning-tree portfast Switch(config)# interface gigabitethernet 1/1 Switch(config-if)# switchport mode trunk Switch(config)# interface gigabitethernet 1/1 Switch(config-if)# switchport access vlan 1

Switch(config)# interface gigabitethernet 1/1 | Switch(config-if)# switchport mode trunk

Which three advantages are provided by static routing? (Choose three.) The path a static route uses to send data is known. No intervention is required to maintain changing route information. Static routing does not advertise over the network, thus providing better security. Static routing typically uses less network bandwidth and fewer CPU operations than dynamic routing does. Configuration of static routes is error-free. Static routes scale well as the network grows.

The path a static route uses to send data is known. Static routing does not advertise over the network, thus providing better security. Static routing typically uses less network bandwidth and fewer CPU operations than dynamic routing does.

Which information does a switch use to populate the MAC address table? the destination MAC address and the outgoing port the source MAC address and the incoming port the source and destination MAC addresses and the incoming port the source MAC address and the outgoing port the source and destination MAC addresses and the outgoing port the destination MAC address and the incoming port

the source MAC address and the incoming port

Refer to the exhibit. A network administrator is configuring a router as a DHCPv6 server. The administrator issues a show ipv6 dhcp pool command to verify the configuration. Which statement explains the reason that the number of active clients is 0? The IPv6 DHCP pool configuration has no IPv6 address range specified. The state is not maintained by the DHCPv6 server under stateless DHCPv6 operation. The default gateway address is not provided in the pool. No clients have communicated with the DHCPv6 server yet.

The state is not maintained by the DHCPv6 server under stateless DHCPv6 operation.

Open the PT Activity. Perform the tasks in the activity instructions and then answer the question. What is the problem preventing PC0 and PC1 from communicating with PC2 and PC3? The routers are using different OSPF process IDs. The serial interfaces of the routers are in different subnets. No router ID has been configured on the routers. The gigabit interfaces are passive.

The serial interfaces of the routers are in different subnets.

Which command will create a static route on R2 in order to reach PC B? R1(config)# ip route 172.16.2.0 255.255.255.0 172.16.2.254 R1(config)# ip route 172.16.2.0 255.255.255.0 172.16.3.1 R1(config)# ip route 172.16.2.1 255.255.255.0 172.16.3.1 R1(config)# ip route 172.16.3.0 255.255.255.0 172.16.2.254

R1(config)# ip route 172.16.2.0 255.255.255.0 172.16.3.1

A network administrator is designing an ACL. The networks 192.168.1.0/25, 192.168.0.0/25, 192.168.0.128/25, 192.168.1.128/26, and 192.168.1.192/26 are affected by the ACL. Which wildcard mask, if any, is the most efficient to use when specifying all of these networks in a single ACL permit entry? 0. 0.0.127 0. 0.0.255 0. 0.1.255 0. 0.255.255

0.0.1.255

What happens immediately after two OSPF routers have exchanged hello packets and have formed a neighbor adjacency? They request more information about their databases. They negotiate the election process if they are on a multiaccess network. They exchange DBD packets in order to advertise parameters such as hello and dead intervals. They exchange abbreviated lists of their LSDBs

They exchange abbreviated lists of their LSDBs

What is the purpose of setting the native VLAN separate from data VLANs? The native VLAN is for routers and switches to exchange their management information, so it should be different from data VLANs. A separate VLAN should be used to carry uncommon untagged frames to avoid bandwidth contention on data VLANs. The native VLAN is for carrying VLAN management traffic only. The security of management frames that are carried in the native VLAN can be enhanced

A separate VLAN should be used to carry uncommon untagged frames to avoid bandwidth contention on data VLANs.

``` Which command, when issued in the interface configuration mode of a router, enables the interface to acquire an IPv4 address automatically from an ISP, when that link to the ISP is enabled? ip helper-address ip address dhcp ip dhcp pool service dhcp ```

ip address dhcp

``` Which two commands can be used to verify the content and placement of access control lists? (Choose two.) show processes show cdp neighbor show access-lists show ip route show running-config ```

show access-lists | show running-config

What summary static address would be configured on R1 to advertise to R3? 192. 168.0.0/24 192. 168.0.0/23 192. 168.0.0/22 192. 168.0.0/21

192.168.0.0/22

``` Which type of router memory temporarily stores the running configuration file and ARP table? flash NVRAM RAM ROM ```

NVRAM

What is the purpose of an access list that is created as part of configuring IP address translation? The access list permits or denies specific addresses from entering the device doing the translation. The access list defines the private IP addresses that are to be translated. The access list prevents external devices from being a part of the address translation. The access list defines the valid public addresses for the NAT or PAT pool.

The access list defines the private IP addresses that are to be translated.

While analyzing log files, a network administrator notices reoccurring native VLAN mismatches. What is the effect of these reoccurring errors? The control and management traffic on the error-occurring trunk port is being misdirected or dropped. Unexpected traffic on the error-occurring trunk port is being received. All traffic on the error-occurring trunk port is being misdirected or dropped. All traffic on the error-occurring trunk port is being switched correctly regardless of the error.

The control and management traffic on the error-occurring trunk port is being misdirected or dropped.

Which two characteristics describe the native VLAN? (Choose two.) This VLAN is necessary for remote management of a switch. Designed to carry traffic that is generated by users, this type of VLAN is also known as the default VLAN. The native VLAN provides a common identifier to both ends of a trunk. The native VLAN traffic will be untagged across the trunk link. High priority traffic, such as voice traffic, uses the native VLAN.

The native VLAN provides a common identifier to both ends of a trunk. The native VLAN traffic will be untagged across the trunk link.

Refer to the exhibit. An attacker on PC X sends a frame with two 802.1Q tags on it, one for VLAN 40 and another for VLAN 12. What will happen to this frame? SW-A will drop the frame because it is invalid. SW-A will leave both tags on the frame and send it to SW-B, which will forward it to hosts on VLAN 40. SW-A will remove both tags and forward the rest of the frame across the trunk link, where SW-B will forward the frame to hosts on VLAN 40. SW-A will remove the outer tag and send the rest of the frame across the trunk link, where SW-B will forward the frame to hosts on VLAN 12.

SW-A will remove both tags and forward the rest of the frame across the trunk link, where SW-B will forward the frame to hosts on VLAN 40.

A new network policy requires an ACL to deny HTTP access from all guests to a web server at the main office. All guests use addressing from the IPv6 subnet 2001:DB8:19:C::/64. The web server is configured with the address 2001:DB8:19:A::105/64. Implementing the NoWeb ACL on the interface for the guest LAN requires which three commands? (Choose two.) permit tcp any host 2001:DB8:19:A::105 eq 80 deny tcp host 2001:DB8:19:A::105 any eq 80 deny tcp any host 2001:DB8:19:A::105 eq 80 permit ipv6 any any deny ipv6 any any ipv6 traffic-filter NoWeb in ip access-group NoWeb in

deny tcp any host 2001:DB8:19:A::105 eq 80 | permit ipv6 any any

Which subnet mask would be used as the classful mask for the IP address 192.135.250.27? 255. 0.0.0 255. 255.0.0 255. 255.255.0 255. 255.255.224

255.255.255.0

access-group 11 in

deny tcp host 2001:db8:48:1c::50 any eq 80 deny tcp any host 2001:db8:48:1c::50 eq 80 deny ipv6 any any

``` Refer to the exhibit. Which highlighted value represents a specific destination network in the routing table? 0.0.0.0 10.16.100.128 10.16.100.2 110 791 ```

10.16.100.128

``` Refer to the exhibit. Host A has sent a packet to host B. What will be the source MAC and IP addresses on the packet when it arrives at host B? Source MAC: 00E0.FE10.17A3 Source IP: 10.1.1.10 Source MAC: 00E0.FE91.7799 Source IP: 10.1.1.1 Source MAC: 00E0.FE91.7799 Source IP: 192.168.1.1 Source MAC: 00E0.FE91.7799 Source IP: 10.1.1.10 Source MAC: 00E0.FE10.17A3 Source IP: 192.168.1.1 ```

Source MAC: 00E0.FE91.7799 | Source IP: 10.1.1.10

``` Refer to the exhibit. A small business uses VLANs 2, 3, 4, and 5 between two switches that have a trunk link between them. What native VLAN should be used on the trunk if Cisco best practices are being implemented? 1 2 3 4 5 6 11 ```