CCNP Switch Deck

Instructions:

• Answer 50 questions in 15 minutes.
• If you are not ready to take this test, you can study here.
• Match each statement with the correct term.
• Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. RSTP alternate port
Cisco proprietary. 1 instance of STP/VLAN. Requires ISL instead of dot1q
1-enable AAA on switch - 2-define RADIUS servers - 3-define authentication method - 4-enable 802.1x on switch - 5-conf. 802.1x ports - 6-allow hosts
Port with alternative path to root less desirable than root
The frame tag includes a 3 bit COS value from 0 (low) to 7 (high). Native vlans are untagged so no COS


2. What must be in common for a BSS to form?
1-lowest root bridge ID - 2-lowest root path cost - 3-lowest bridgeID - 4-lowest port ID
1-65535 (def 32768) lower priority - higher probability
It updates the L2 headers with the proper src and dst MAC - L3 TTL - L3 checksum - and L2 checksum information
Matching SSID - compatible data rate - authentication credentials


3. Define VRRP
Full duplex
By encapsulating each frame in a header and trailer
Virtual Router Redundancy Protocol - pretty much the same as HSRP
When a client roams between Aps in different subnets


4. Of what significance are private VLANs
If the client maintains the same IP address as it roams between Aps. All must have same VLAN - SSID - and subnet
Trusted or untrusted
Local only
80% of the user traffic should stay in the VLAN


5. What is a CEF glean?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


6. If there are 2 ports with same root cost - how is the tie broken for designated port?
Port with best root path cost on segment
The frame tag includes a 3 bit COS value from 0 (low) to 7 (high). Native vlans are untagged so no COS
Show standby
1-lowest root bridge ID - 2-lowest root path cost - 3-lowest bridgeID - 4-lowest port ID


7. What is best effort delivery QOS?
No
Switches make an effort to move packets as quickly as possible
1500B
Dynamic WEP keys that change periodically


8. What is 802.1x force-unauthorized?
Port is forced to never authorize any connected client
Src-ip - dst-ip - src-dst-ip - src-mac - dst-mac - src-dst-mac - src-port - dst-port - src-dst-port
2 strand MMF with MT-RJ or SC connectors
Roughly 50%


9. On what scope is DAI enabled?
Low cost - high density ports - multiple scalable uplinks - vlans - traffic and protocol filtering and QoS
Only when a nonedge port transitions to forwarding
802.1x with EAP over LAN (EAPOL)
Per VLAN


10. What is the default VTP state?
The station can transmit immediately and wait for an ack
Matching SSID - compatible data rate - authentication credentials
VTP server for domain null with no password or secure mode
Usually QoS from VOIP but not PC dataa


11. How many potential links can LACP define?
VTP server for domain null with no password or secure mode
With portfast
Frames that barely exceed 1518B or 1622B due to headers
16 - of which up to 8 are active. The others are in standby


12. What is RPR?
Within a single MST region - an IST instances runs to work out a loop free topology between links where CST meets the region boundary and all switches in the region. It runs at the boundary.
Route processor redundancy - redundant sup is partially booted and initialized and must reload module in the switch and init all sup functions
An AP's coverage area
Embeds the tag within the frame


13. What is step 1 of enabling IP source guard?
Enables switches at the end of the spanning tree branches to have a functioning root port while keeping 1 or more redundant potential ports in blocking mode. When the main fails - the other comes up.
When the size of a cell is intentionally reduced
Hosts within a secondary can communicate with each other and with the primary - but not with another secondary vlan
Configure and enable DHCP snooping


14. How does RSTP converge?
Aggregation - high L3 throughput - security and policy based connectivity functions through access lists and packet filters - QoS - scalable high-speed links
If a proposal is received - the recipient isolates - all nonedge ports blocked until proposal sent causing neighbors to synch - which propagates out in waves
Frames are forwarded
Port stays up - but packets from violating MACs are dropped. Switch logs violating packets


15. What is the STP forward delay timer?
The time that a port spends in both listening and learning states . Default 15 seconds
Port that connects to another switch and becomes a designated port
That they aren't using the same frequencies.
The port uses 802.1x exchange to move from unauthorized to authorized. Requires app on client


16. What must be supported for port-based security to occur?
Using a mobility exchange message
All user ports that have portfast enabled
802.1x with EAP over LAN (EAPOL)
Discarding - learning - forwarding


17. How is an RSTP edge port configured
Src-ip - dst-ip - src-dst-ip - src-mac - dst-mac - src-dst-mac - src-port - dst-port - src-dst-port
Trunk
With portfast
Either desirable or auto mode


18. How does ILP do power discovery?
Sends a test tone on the transmit pair. If a device is detected - CDP is used to narrow down the power class.
The TOS field in the header is used. 2 methods 3 bits or 6 bits
0000.0c07.acxx where xx is the group number as a 2-digit hex value
It's a router that maintains routes (static or dynamic) - and populates the FIB


19. What does the skinny protocol do?
Backbonefast uses RLQ to determine if upstream switches have stable connections to root bridge
Port with best root path cost on segment
By short-circuiting the max age timer
Transmits keystrokes from phone and commands from CCM


20. What is an isolated secondary VLAN?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


21. What is the range of HSRP group numbers?
Each physical interface has a different IP address. All physical interfaces point to a virtual interface called the standby address or VIP
Only when a nonedge port transitions to forwarding
Cisco proprietary. 1 instance of STP/VLAN. Requires ISL instead of dot1q
0-255


22. What does uplinkfast do?
Enables switches at the end of the spanning tree branches to have a functioning root port while keeping 1 or more redundant potential ports in blocking mode. When the main fails - the other comes up.
1- root bridge is elected - 2-the state of eery switch port in the STP domain must be brought from blocking state to the appropriate state
That they aren't using the same frequencies.
4


23. How are VACLs applied
Port stays up - but packets from violating MACs are dropped. Switch logs violating packets
A port can only forward or relay BDPUs - but can't receive them - disabled by default - enabled per-port - blocks port when superior BDPUs are received
To a VLAN and not to a VLAN interface (SVI)
Etherchannel ports have inconsistent config


24. Where is root guard enabled?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


25. 802.11b
Access
Control functions
Variation in delay
1 -2 -5.5 and 11 Mbps - Channels 1/6/11 - 2.4Ghz


26. What is a bridge ID made up of?
Sends special layer 2 UDLD frames and expects an echo. Both ends must be configured for UDLD
3 seconds. Holdtime =3 hellos + 1
Group (0-1023) priority (1-255 higher better def 100)
Bridge priority and MAC


27. What is dynamic desireable?
Configure and enable DHCP snooping
The port asks the other end to trunk
SC fiber or RJ-45
Group (0-255) - priority (1-254 254 is highest - 100 default)


28. what should you do if you expect a PAgP capable switch at the other end vs. a server or host?
A private VLAN can be logically associated with a special secondary vlan
Yes to both
Configure non-silent submode
The master router can share the VIP


29. Where should STP timers be configured and why?
On root - because the root bridge propagates timers with config BDPU
802.1x with EAP over LAN (EAPOL)
A single broadcast domain
Use the spanning-tree root macro


30. How are RSTP point to point ports determined?
Automatically by duplex mode in use. Full duplex are point ot point. Half duplex ports use traditional 802.1D convergence is used.
On root - because the root bridge propagates timers with config BDPU
Can hear only BDPUs
Checks the sender's ip in all arp requests and checks the sender's IP against target IP in all replies


31. How do you enable CEF?
It is enabled by default on all CEF capable switches
Dynamic arp inspection
Dynamic WEP keys that change periodically
Forces the router to wait for a period of time after the switch is reloaded before attempting to overthrow


32. What are the 2 types of BDPU?
Configuration and TCN
Port
When a port moves into forwarding or from fowarding or learning to blocking.
The TOS field in the header is used. 2 methods 3 bits or 6 bits


33. What are the characteristics of the access layer?
Low cost - high density ports - multiple scalable uplinks - vlans - traffic and protocol filtering and QoS
Host Standby Router protocol. Cisco proprietary. Switch is either active - standby - or listen
Regions and instances
Hosts within a secondary can communicate with each other and with the primary - but not with another secondary vlan


34. Which fiber is the receive?
Port stays up - packets from violating MACs dropped - no logging
On the left as you face the connector
No
All nondesignated ports - but ok for all ports


35. What is the GLBP AVG?
By sending a gratuitous ARP
Access or trunk
Local only
One router is the active virtual gateway - has highest priority or IP in group - answers all ARP requests and gives MAC based on load balancing


36. How does adding option-82 to DHCP snooping affect things?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


37. What happens when an ARP reply is received on an untrusted port?

Warning: Invalid argument supplied for foreach() in /var/www/html/basicversity.com/show_quiz.php on line 183


38. What is an untrusted port under dhcp snooping?
Any dhcp reply coming from an untrusted port is discarded and the offending port is put in errdisable
Host Standby Router protocol. Cisco proprietary. Switch is either active - standby - or listen
A path is pre-arranged for priority along the complete path from source to destination using the RSVP protocol.
The DCF interframe space- the random backoff time before a wireless set can transmit


39. How does GLBP work?
Each peer sends and receives hellos. Def hello is 3 sec - def hold is 10 sec
1- root bridge is elected - 2-the state of eery switch port in the STP domain must be brought from blocking state to the appropriate state
The redundant SUP is booted and sup and route engine is init'd. No L2 or L3 functions are started. Allows switchports to retain state
Routers are assigned to common GLBP group. All routers can be active and can load balance


40. What does the src-mac option do when checking ARP replies
An AP's coverage area
Checks the source MAC in the header against the sender MAC in the ARP reply
All user ports that have portfast enabled
The station must wait until the frame in progress has completed - then wait a random amount of time before transmitting


41. What is a wireless mobility group?
Routers are assigned to common GLBP group. All routers can be active and can load balance
A client can roam to any WLC as long as it stays in a mobility group
Port stays up - packets from violating MACs dropped - no logging
All L2 connectivity should be contained within the access layer.


42. RSTP uses which standard?
802.1w
2-8 FE - GE - or 10GE are bundled.
FE and GE
Up to 54Mbps - not cross-compatible - 12 to 23 clean channels - 5.8 Ghz


43. What is DSCP codepoint AF11(10)?
Turn on port security
All non-edge ports are discarding. After the root bridge is identified - the port with superior BDPU becomes root
Priority (class 1)
Configuration and TCN


44. How does ISL handle COS?
Port that connects to another switch and becomes a designated port
An ac adaptor that plugs into a wall outlet.
On by default
The frame tag contains a 3 but portion tagged from 0 (low) to 7 (high)


45. Which 4 things must be agreeable to trunk?
By using a trunk link
1- trunking mode - 2-trunk encapsulation - 3-native VLAN - 4-allowed VLAN
Either desirable or auto mode
It is enabled by default on all CEF capable switches


46. Where is the QoS trust boundary usually configured on an IP phone?
Usually QoS from VOIP but not PC dataa
1500B
After another forwarding delay - the port can send and receive data frames - collect MAC addresses - and send and receove BDPUs
Control functions


47. What is the GLBP redirect timer?
1- enable MST - 2-enter MST config mode - 3-assign region name and region configuration rev - 4-map vlans to an MSTI - 5-show pending changes - 6- commit by exiting
By brining up a tunnel between them to carry 802.11 related messages and client data.
Determines when the AVG will stop using the old VMAC in ARP replies
If three are missed in a row - the neighbor is considered down and the data for that neighbor is aged


48. 802.11g
Compatible with 802.11b - up to 54Mbps in 12 data rates - 3 channels - 2.4Ghz
A client can roam to any WLC as long as it stays in a mobility group
Cisco ILP and 802.3af
Each physical interface has a different IP address. All physical interfaces point to a virtual interface called the standby address or VIP


49. What is a PVLAN?
Only when a nonedge port transitions to forwarding
Used to switch packets that can't be forwarded normallly due to an encapsulation failure - unresolved address - unsupported protocol - etc.
A private VLAN can be logically associated with a special secondary vlan
Plain text or md5


50. What is the traditional MLS view of switching?
Route once - switch many
Arp for local subnet - if on different subnet - will arp for dgw
Port
Routers at the distribution layer become the bottlenecks or broadcast or multicast traffic slows the switches in the switch block