Test your basic knowledge |

CCNP Switch Deck

Instructions:

Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can study here.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.

This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.

1. How do you configure LACP standby links?
Full duplex
LACP port priority
Flash (class 3)
Those that connect to other switches

2. WPA2 encryption
Yes to both
Needs hardware upgrade over WEP - uses AES encryption
Arp for local subnet - if on different subnet - will arp for dgw
Half-duplex

3. If a port is configured for errdisable auto recovery - how long does it stay down?
Each network device handles packets individually with no advance reservations
Plain text or md5
300 sec by default
Configuration and TCN

4. What are the characteristics of the distribution layer?
1 -2 -5.5 and 11 Mbps - Channels 1/6/11 - 2.4Ghz
Aggregation - high L3 throughput - security and policy based connectivity functions through access lists and packet filters - QoS - scalable high-speed links
Because each frame is checked
1/2 and 3/6

5. What are the 3 trunk switchport modes?
Cisco ILP and 802.3af
Trunk - dynamic auto - dynamic desireable (default)
Gateway load balancing protocol - cisco proprietary
Bridge priority and MAC

6. What is the STP forward delay timer?
Incoming frames dropped - but MACs learned
Root - designated - blocking - alternate - forwarding (host)
The time that a port spends in both listening and learning states . Default 15 seconds
Switches make an effort to move packets as quickly as possible

7. What is the GLBP AVG?
Multicast to 01-80-c2-00-00-00
Connects to a host on an isolated or community vlan. Communicates only with promiscuous port or ports on same community vlan
Enables portfast - sets the port to access and disables PAgP
One router is the active virtual gateway - has highest priority or IP in group - answers all ARP requests and gives MAC based on load balancing

8. What is the default VTP state?
Discarding - learning - forwarding
Time between BDPUs sent by root bridge. Default of 2 seconds
Gateway load balancing protocol - cisco proprietary
VTP server for domain null with no password or secure mode

9. What does the minimum keyword do in HSRP?
Using a mobility exchange message
Forces the router to wait for a period of time before attempting overthrow
The switch checks the MAC and IP reported in the reply against trusted values. If they don't match - it is dropped and logged
Dynamic WEP keys that change periodically

10. How do Cisco IP phones communicate with the CCM?
Effectively stops STP on filtered ports
1-client sends DHCP discover as broadcast - 2-DHCP server sends DHCP offer - client sends DHCP Request - DHCP server sends DHCP ack
With the skinny protocol
Local only

11. What is portfast?
Route once - switch many
900 MHz - 2.4Ghz - and 5-6GHz
When a wireless station transmits a frame - the receiving one must send an ack
Almost eliminates listening and learning states for single hosts on an access link

12. can root guard and udld be used together?
Tracks of BDPUs on nondesignated ports. When those BDPUs stop coming - the port is put into loop-inconsistent state and blocks
Trusted ports
Feature Manager - after the ACL is created - the FM compiles the ACEs into the table
Yes

13. Where should you change the network diameter value?
After another forwarding delay - the port can send and receive data frames - collect MAC addresses - and send and receove BDPUs
Cisco recommends only on the root bridge
1-(opt) configure load balancing - 2-select the interface(s) - 3-assign the protocol - 4-select the mode and submode
Data goes over native vlan - voice goes over specified VLAN - voice QOS is 802.1p

14. What are the steps to configure a PAgP port channel?
1-(opt) configure load balancing - 2-select the interface(s) - 3-assign the protocol - 4-select the mode and submode
Yes to both
Reboots and searches for a new WLC
Allows devices to interoperate with PVST and CST. Can use both dot1q and ISL

15. What are the steps to configure MST?
1- enable MST - 2-enter MST config mode - 3-assign region name and region configuration rev - 4-map vlans to an MSTI - 5-show pending changes - 6- commit by exiting
Completed dhcp bindings - mac addresses - IP addresses - etc.
Prevents the dhcp binding DB from being checked.
The campus network's backbone

16. Where should STP timers be configured and why?
0-255 (lower is better)
One that can be detected on a switch interface (ie. Up/down)
The frame tag includes a 3 bit COS value from 0 (low) to 7 (high). Native vlans are untagged so no COS
On root - because the root bridge propagates timers with config BDPU

17. What is UDLD normal mode?
Isolated and community
Promiscuous and host
The wireless clients communicate directly with no other means of connectivity such as a WAP
If a unidirectional link is detected - the port continues normally - but the port is marked as undetermined and a syslog is generated

18. What scope is 802.1x enabled?
Single instance of STP for all VLANs. BDPUs are sent over trunks using the native VLAN with untagged frames. Dot1q based
Only a single host connects . If one BDPU is received - it is no longer an edge port
Globally
The port is forced to always authorize any connected client with no authentication necessary (default)

19. What does BDPU filtering do?
Real-time functions such as beacons and probes - encryption and interactions with the client at L2
No
Differentiated services code point
Effectively stops STP on filtered ports

20. What does port-security protect do?
1/2 and 3/6
Port stays up - packets from violating MACs dropped - no logging
After forwarding delay - port can learn new MAC addresses
12 kbps with headers and compression

21. What cabling do GBICs use?
Checks the source MAC in the header against the sender MAC in the ARP reply
Switch(config-if)# standby xx where x= group number
BGP - EIGRP - OSPF - and IS-IS.
SC fiber or RJ-45

22. What is the cost of a 1Gbps link?
1 -2 -5.5 and 11 Mbps - Channels 1/6/11 - 2.4Ghz
Low cost - high density ports - multiple scalable uplinks - vlans - traffic and protocol filtering and QoS
4
Distribution layer

23. What are the PAgP negotiation modes
On (all ports channel) - auto (channels when asked) - and desirable(actively asks to form a channel)
0-255
Yes
Between interfaces that are assigned to L2 VLANs or L2 trunks

24. If you want IP source guard to detect spoofed MAC addresses - what must you do?
For hosts that doesn't understand routing - the DGW is configured to reply with its own mac
Turn on port security
Switched Virtual Interface - an L3 address can be assigned to a logical interface that represents an entire VLAN - which becomes the DGW for that VLAN
Tracks of BDPUs on nondesignated ports. When those BDPUs stop coming - the port is put into loop-inconsistent state and blocks

25. How does a WLC hand off a client's association to another WLC?
Distribution layer
Using a mobility exchange message
Every switch and router in a network must be configured with appropriate QoS features and policies
With portfast

26. WPA encryption
134 bits - consisting of source and destination addresses and protocol information from the packet or frame
Interim solution - uses same hardware as WEP - but uses TKIP encryption
Host Standby Router protocol. Cisco proprietary. Switch is either active - standby - or listen
With portfast

27. How does the VRRP master router handle the VIP?
Data and voice over native vlan no QOS and no 802.1p trunk
The master router can share the VIP
A single broadcast domain
The MST instance (MSTI) runs alongside the IST and represents an STP instance

28. How long are TCAM masks?
134 bits
Cisco proprietary. 1 instance of STP/VLAN. Requires ISL instead of dot1q
TCAM
0-65535 (def 32768) lower=better

29. RSTP uses which standard?
802.1w
0000.5e00.01xx
Lowest cumulative cost to root
Option 43

30. Where is the QoS trust boundary usually configured on an IP phone?
2-8 FE - GE - or 10GE are bundled.
CEF is distributed completely among multiple L3 forwarding engines.
Usually QoS from VOIP but not PC dataa
The port is forced to always authorize any connected client with no authentication necessary (default)

31. How does every GLBP command begin
Globally
Gets assistance from other NSF-aware neighbors. NSF features need to be built into the routing protocols on router needing and providing assistance
The DCF interframe space- the random backoff time before a wireless set can transmit
Switch(config-if)# glbp xx where xx = group number

32. What are the two private vlan association modes?
Critical...used most often for IPT
Promiscuous and host
Virtual Router Redundancy Protocol - pretty much the same as HSRP
2-8 FE - GE - or 10GE are bundled.

33. When are RSTP bdpus sent?
It's a router that maintains routes (static or dynamic) - and populates the FIB
Show standby
Every hello interval regardless of whether BDPUs are received from root - allowing any switch to take an active role maintaining the topology
Transmits keystrokes from phone and commands from CCM

34. How many tunnels exist between the LAP and WLC?
The port is forced to always authorize any connected client with no authentication necessary (default)
Use sh interface on the interface and look for error counts > 10
2 - one for control messages and one for data
No

35. What does the skinny protocol do?
Routers at the distribution layer become the bottlenecks or broadcast or multicast traffic slows the switches in the switch block
Transmits keystrokes from phone and commands from CCM
Dynamic arp inspection
Trunk

36. What is the default 10mbps Enet duplex?
It updates the L2 headers with the proper src and dst MAC - L3 TTL - L3 checksum - and L2 checksum information
After another forwarding delay - the port can send and receive data frames - collect MAC addresses - and send and receove BDPUs
Half-duplex
All L2 connectivity should be contained within the access layer.

37. What is a wall wart?
Listens to the first packet going to router and away from the router. If it can switch in both directions - it learns a shortcut path so subsequent packets can be switched without the RP
An ac adaptor that plugs into a wall outlet.
They should be an unconditional Etherchannel because the WLC can't negotiate a channel.
The station must wait until the frame in progress has completed - then wait a random amount of time before transmitting

38. What is a topology change?
When a port moves into forwarding or from fowarding or learning to blocking.
Will trunk if asked
Automatically by duplex mode in use. Full duplex are point ot point. Half duplex ports use traditional 802.1D convergence is used.
Forces the router to wait for a period of time after the switch is reloaded before attempting to overthrow

39. 802.11a
Up to 54Mbps - not cross-compatible - 12 to 23 clean channels - 5.8 Ghz
1- root bridge is elected - 2-the state of eery switch port in the STP domain must be brought from blocking state to the appropriate state
It updates the L2 headers with the proper src and dst MAC - L3 TTL - L3 checksum - and L2 checksum information
The switch adds its MAC to the option 82 field so that the DHCP reply echoes back the switch's own information

40. How do VRRP routers handle preemption?
On by default
Used to switch packets that can't be forwarded normallly due to an encapsulation failure - unresolved address - unsupported protocol - etc.
4
It can't

41. What is the STP listening state?
Use the spanning-tree root macro
Hashing algorithm
802.1D
Can send and receive BDPUs

42. What is the range of PAgP channel group numbers?
12 kbps with headers and compression
Access or trunk
1 to 64
Etherchannel ports have inconsistent config

43. Of what significance are private VLANs
Local only
An AP's coverage area
Both ends should be on because on modes doesn't send PAgP or LACP packets
Routers are assigned to common GLBP group. All routers can be active and can load balance

44. One vlan should =
If three are missed in a row - the neighbor is considered down and the data for that neighbor is aged
Bridge priority and MAC
1 IP subnet
Port stays up - packets from violating MACs dropped - no logging

45. What is the PVLAN promiscuous mode?
A TCN BDPU is sent out of the switch's root port. The switch will continue sending TCN's every hello interval until ack'd by upstream neighbor. The root bridge will send a Config BDPU to all switches
Connects to a router - firewall - or gateway. Can communicate with anything else connected to the primary or any secondary. Ignores pvlan config
From the DHCP snooping database or from static entries
1- trunking mode - 2-trunk encapsulation - 3-native VLAN - 4-allowed VLAN

46. How does L3 QOS classification happen?
0-255 (lower is better)
1 to 64
The switch adds its MAC to the option 82 field so that the DHCP reply echoes back the switch's own information
The TOS field in the header is used. 2 methods 3 bits or 6 bits

47. What are the 4 steps to extend QoS trust?
It can't
1- enable qos - 2-define qos parameters to be trusted - 3-make trust conditional - 4-instruct IP phone how to extnd boundary
If any BDUP is received on a port - it puts the port into the errdisable state
Usually QoS from VOIP but not PC dataa

48. What is DSCP codepoint AF41(34)?
Flash override (class 4)
Backbonefast uses RLQ to determine if upstream switches have stable connections to root bridge
It's a router that maintains routes (static or dynamic) - and populates the FIB
From the DHCP snooping database or from static entries

49. What functions does a WLC perform?
Root - designated - blocking - alternate - forwarding (host)
Control functions
When a specific interface is tracked - HSRP reduces it's priority after a specified interval.
Determines when the AVG will stop using the old VMAC in ARP replies

50. How do you renable an err-disable port by default?
Cisco ILP and 802.3af
Discarding - learning - forwarding
Manually
By brining up a tunnel between them to carry 802.11 related messages and client data.