SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
CCNP Switch Deck
Start Test
Study First
Subjects
:
cisco
,
it-skills
,
ccnp
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. How does every HSRP config command begin?
1-enable AAA on switch - 2-define RADIUS servers - 3-define authentication method - 4-enable 802.1x on switch - 5-conf. 802.1x ports - 6-allow hosts
Switch(config-if)# standby xx where x= group number
26-byte header - 4-byte trailer with CRC
1 -2 -5.5 and 11 Mbps - Channels 1/6/11 - 2.4Ghz
2. Where are security and QoS ACLs stored?
TCAM
MAC of the end device
1-ID link path costs - 2-ID roodt bridge - 3-select root port (1/switch) - 4-select designated port (1/segment) - 5-ID blocking port
L2
3. What are 2 ways to configure VLAN and VTP information?
A group of wireless devices that share a common SSID
Enables switches at the end of the spanning tree branches to have a functioning root port while keeping 1 or more redundant potential ports in blocking mode. When the main fails - the other comes up.
Both layer 2 switching and IVR
Global config (vlan - vtp mode - and vtp domain) and VLAN DB mode commands. Global config is preferred because VLAN DB mode commands are legacy
4. What is the access layer best practice?
10-15%
All L2 connectivity should be contained within the access layer.
1 -2 -5.5 and 11 Mbps - Channels 1/6/11 - 2.4Ghz
1- inferior BDPU on blocked-considered alternative - 2-inferior on root-all blocked ports considered alternate - 3-if inferior arrives on root and no blocked ports - assumes loss of connectivity to root
5. What 2 conditions does IP source guard check for?
Source IP and MAC must match those addresses learned by DHCP snooping or a static entry
1500B
After another forwarding delay - the port can send and receive data frames - collect MAC addresses - and send and receove BDPUs
A point to point port type
6. How do you configure LACP standby links?
Checks the sender's ip in all arp requests and checks the sender's IP against target IP in all replies
Per-port or globally for all fiber-optic ports. Can be enabled globally - but will only affect fiber ports
LACP port priority
Per VLAN
7. What if RSTP BDPUs aren't received?
The total delay from start to finish
If three are missed in a row - the neighbor is considered down and the data for that neighbor is aged
Real-time Transport Protocol
Manually
8. What are the restrictions for bundling into an Etherchannel?
Change in trunk encap
Cisco recommends only on the root bridge
A point to point port type
Must be same type - speed - VLAN(s) - native vlan - pass the same set of vlans -duplex - and spanning tree settings
9. What pins does FE use?
TCAM
1/2 and 3/6
Per-port or globally for all fiber-optic ports. Can be enabled globally - but will only affect fiber ports
Used when there are 1 or more VLANs mapped to a single STP instance
10. What is the size of a TCAM value?
On ports where you never expect to find a root bridge for a VLAN
Packets must be sent to the L3 engine for further processing
134 bits - consisting of source and destination addresses and protocol information from the packet or frame
Collision domain
11. What is an MST instance?
Between any type of interface as long as the interface can have an L3 address assigned
Data and voice over native vlan - no QOS but still uses 802.1p trunk
Configure and enable DHCP snooping
The MST instance (MSTI) runs alongside the IST and represents an STP instance
12. How is an RSTP edge port configured
With portfast
By short-circuiting the max age timer
It updates the L2 headers with the proper src and dst MAC - L3 TTL - L3 checksum - and L2 checksum information
Single instance of STP for all VLANs. BDPUs are sent over trunks using the native VLAN with untagged frames. Dot1q based
13. What is RPR+?
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
14. What is the SDM?
Enables portfast - sets the port to access and disables PAgP
Switching Database Manager - configures and prunes TCAM partitions
224.0.0.2 (all routers)
That they aren't using the same frequencies.
15. What is differentiated services model QOS?
Only when a nonedge port transitions to forwarding
Each network device handles packets individually with no advance reservations
MST attributes must be manually entereed on each switch in the region. They don' t propagate like VTP.
Regions and instances
16. What are the 2 power over ethernet methods?
Cisco ILP and 802.3af
Reboots and searches for a new WLC
With portfast
Per-port or globally for all fiber-optic ports. Can be enabled globally - but will only affect fiber ports
17. What is a LACP priority?
1-65535 (def 32768) lower priority - higher probability
Virtual Router Redundancy Protocol - pretty much the same as HSRP
A point to point port type
The priority is a 2 byte value followed by the MAC that decides which ports are actively participating in Etherchannel (lower=higher priority)
18. What is 802.1x force-authorized?
By creating a static IP binding
Multicast to 01-80-c2-00-00-00
The port is forced to always authorize any connected client with no authentication necessary (default)
Switches make an effort to move packets as quickly as possible
19. How does DAI work?
All ARP packets that arrive on untrusted ports are inspected.
Needs hardware upgrade over WEP - uses AES encryption
L2
Two distribution switches that aggregate one or more access switches
20. What are the steps to configuring HSRP MD5 authentication?
Yes to both
When a port moves into forwarding or from fowarding or learning to blocking.
1-name the chain - 2-establish a key number - 3-create the key string - 4-apply the chain to the string
Port with redundant - but less deisrable connection to a segment. Possibly root candidate
21. What is portfast?
The master router can share the VIP
Almost eliminates listening and learning states for single hosts on an access link
3 seconds. Holdtime =3 hellos + 1
It's a router that maintains routes (static or dynamic) - and populates the FIB
22. What types of link can an etherchannel be?
Access
By an ARP access list that defines the permitted bindings
Access or trunk
1-ID link path costs - 2-ID roodt bridge - 3-select root port (1/switch) - 4-select designated port (1/segment) - 5-ID blocking port
23. What is the VRRP master router?
The active router. All other routers are in backup state
Automatically using DTP and CDP
A point to point port type but the neighboring device runs traditional 802.1D STP
By an ARP access list that defines the permitted bindings
24. What is DSCP codepoint AF21(18)?
Immediate (class 2)
Bridge priority and MAC
The station must wait until the frame in progress has completed - then wait a random amount of time before transmitting
Using digital certificates
25. How does ISL do trunking?
134 bits - consisting of source and destination addresses and protocol information from the packet or frame
All nondesignated ports - but ok for all ports
By encapsulating each frame in a header and trailer
When a wireless station transmits a frame - the receiving one must send an ack
26. What is best effort delivery QOS?
900 MHz - 2.4Ghz - and 5-6GHz
Hosts associated with a secondary VLAN can communicate with ports on the primary but not with another secondary VLAN
Switches make an effort to move packets as quickly as possible
On the left as you face the connector
27. How should the switch port to which a WLC be configured?
1- enable qos - 2-define qos parameters to be trusted - 3-make trust conditional - 4-instruct IP phone how to extnd boundary
Notifies upstream neighbors by sending multicasts on behalf of hosts at the interval of the max update rate parameter.
Trunk
1 second. Backup routers can learn the interval from the master
28. How are multiple VLANs mapped to multiple SSIDs?
10-15%
An AP's coverage area
By using a trunk link
Isl - dot1q - negotiate (default)
29. How much overlap should a wireless repeater have?
Can hear only BDPUs
Roughly 50%
The time interval that a switch stores a DBPU before discarding it. Default 20 seconds
SC fiber or RJ-45
30. What are the 3 trunk encap modes?
Host Standby Router protocol. Cisco proprietary. Switch is either active - standby - or listen
Switch(config-if)# vrrp xx where xx= group number
Isl - dot1q - negotiate (default)
Almost eliminates listening and learning states for single hosts on an access link
31. How is a QoS trust bondary configured?
Every switch and router in a network must be configured with appropriate QoS features and policies
Round robin - weighted - or host-dependent
7 switches from root bridge
Access or trunk
32. What is step 1 of enabling IP source guard?
All user ports that have portfast enabled
The active router. All other routers are in backup state
Configure and enable DHCP snooping
Distribution layer
33. What types of ports autonegotiate?
They should be an unconditional Etherchannel because the WLC can't negotiate a channel.
FE and GE
Access
Hosts associated with a secondary VLAN can communicate with ports on the primary but not with another secondary VLAN
34. How often are VRRP advertisements sent?
Cisco proprietary. 1 instance of STP/VLAN. Requires ISL instead of dot1q
Configure and enable DHCP snooping
CEF is distributed completely among multiple L3 forwarding engines.
1 second. Backup routers can learn the interval from the master
35. What is a topology change?
A VLAN that spans the entire fabric
When a port moves into forwarding or from fowarding or learning to blocking.
Connects to a router - firewall - or gateway. Can communicate with anything else connected to the primary or any secondary. Ignores pvlan config
1 -2 -5.5 and 11 Mbps - Channels 1/6/11 - 2.4Ghz
36. What does the dst-mac option do when checking ARP replies
Notifies upstream neighbors by sending multicasts on behalf of hosts at the interval of the max update rate parameter.
By using a trunk link
16 - of which up to 8 are active. The others are in standby
Checks the destination MAC in the header against the target MAC in the ARP reply
37. What address does HSRP send hello packets to?
Group (0-255) - priority (1-254 254 is highest - 100 default)
224.0.0.2 (all routers)
Normal and aggressive
802.11
38. What does the standby HSRP router do?
Weak key rotation
1-enable AAA on switch - 2-define RADIUS servers - 3-define authentication method - 4-enable 802.1x on switch - 5-conf. 802.1x ports - 6-allow hosts
Protects STP when a physical malfunction only allows traffic in 1 direction - even though the link shows as up (cisco proprietary)
Only the standby monitors the hello messages from the active router
39. How doed backbonefast work?
By short-circuiting the max age timer
By default weight is 100. Can be made dynamic per interface
The station must wait until the frame in progress has completed - then wait a random amount of time before transmitting
All fiber-optic links between switches (must be enabled on both ends)
40. When should CDP be enabled?
134 bits
Virtual Router Redundancy Protocol - pretty much the same as HSRP
Only for trusted Cisco gear - especially phones
Trusted ports
41. Each switch port is a _____ ______
Port is forced to never authorize any connected client
224.0.0.2 (all routers)
Collision domain
The frame tag includes a 3 bit COS value from 0 (low) to 7 (high). Native vlans are untagged so no COS
42. What is a punt adjacency?
Discarding - learning - forwarding
Packets must be sent to the L3 engine for further processing
Port
2 strand MMF with MT-RJ or SC connectors
43. How does an L2 switch do QOS?
If three are missed in a row - the neighbor is considered down and the data for that neighbor is aged
An L2 switch can only forward frames best effort unless going across a trunk
A router keeps a routing table and an ARP table. The FIB combines them for every next-hop entry
Only on ports that have same static VLANs or trunking. It also modifies parameters of the channel if one of the ports is modified
44. What is the bridge priority range?
Port
All non-edge ports are discarding. After the root bridge is identified - the port with superior BDPU becomes root
0007.b4xx.xxyy where xx.xx is six 0 bits followed by a 10-bit GLBP group numberr. Yyyy is the virtual forwarder number
0-65535 (def 32768) lower=better
45. How does backbonefast determine whether alternative paths exist?
1- inferior BDPU on blocked-considered alternative - 2-inferior on root-all blocked ports considered alternate - 3-if inferior arrives on root and no blocked ports - assumes loss of connectivity to root
Feature Manager - after the ACL is created - the FM compiles the ACEs into the table
1-lowest root bridge ID - 2-lowest root path cost - 3-lowest bridgeID - 4-lowest port ID
The switch checks the MAC and IP reported in the reply against trusted values. If they don't match - it is dropped and logged
46. What are LOU register pairs?
Virtual Router Redundancy Protocol - pretty much the same as HSRP
Use the spanning-tree root macro
Used when ACLs specify port ranges...used by TCAM
Real-time Transport Protocol
47. What are the 3 unlicensed frequencies?
10-15%
Group (0-255) - priority (1-254 254 is highest - 100 default)
Distributed coordinion function - the use of timers to prevent wireless collisions
900 MHz - 2.4Ghz - and 5-6GHz
48. What is a QoS trust boundary?
The point at which a switch decides to trust incoming Qos. Usually at boundary with ISP
Multicast to 01-80-c2-00-00-00
Any dhcp reply coming from an untrusted port is discarded and the offending port is put in errdisable
Critical...used most often for IPT
49. What is BDPU Guard?
If any BDUP is received on a port - it puts the port into the errdisable state
Hosts associated with a secondary VLAN can communicate with ports on the primary but not with another secondary VLAN
If a unidirectional link is detected - the port continues normally - but the port is marked as undetermined and a syslog is generated
Cisco recommends only on the root bridge
50. What is the duration time in a wireless frame?
Port is forced to never authorize any connected client
When the AP uplinks to an Ethernet network.
A path is pre-arranged for priority along the complete path from source to destination using the RSVP protocol.
Each frame transmits its expected duration time
