cccnav7

¡Supera tus tareas y exámenes ahora con Quizwiz!

Which message does an IPv4 host use to reply when it receives a DHCPOFFER message from a DHCP server?

DHCPREQUEST

a message that is used to identify the explicit server and lease offer to accept

DHCPREQUEST

Which protocol can be used to monitor the network?

SNMP

Which type of wireless network is suitable for providing wireless access to a city or district?

wireless metropolitan-area network

The address pool of a DHCP server is configured with 192.168.234.0/27. The network administrator reserves 22 IP addresses for IP phones. How many IP addresses are left in the pool to be assigned to other hosts?

8

Which switch component reduces the amount of packet handling time inside the switch?

ASIC

What are three techniques for mitigating VLAN attacks? (Choose three.)

Enable trunking manually. / Disable DTP / Set the native VLAN to an unused VLAN

A company uses DHCP servers to dynamically assign IPv4 addresses to employee workstations. The address lease duration is set as 5 days. An employee returns to the office after an absence of one week. When the employee boots the workstation, it sends a message to obtain an IP address. Which Layer 2 and Layer 3 destination addresses will the message contain?

FF-FF-FF-FF-FF-FF and 255.255.255.255

Which characteristic describes cut-through switching?

Frames are forwarded without any error checking.

a cisco proprietary FHRP that provides redundancy through use of an active device and standby device

HSRP

Which statement describes HSRP?

It is used within a group of routers for selecting an active device and a standby device to provide gateway services to a LAN.

Refer to the exhibit. PC-A is unable to receive an IPv6 address from the stateful DHCPv6 server. What is the problem?

The ipv6 dhcp relay command should be applied to interface Gig0/0.

Refer to the exhibit. What can be determined about port security from the information that is shown?

The port violation mode is the default for any port that has port security enabled.

Refer to the exhibit. A network administrator is configuring a router for DHCPv6 operation. Which conclusion can be drawn based on the commands?

The router is configured for stateless DHCPv6 operation.

How do switch buffers affect network performance?

They store frames received, thus preventing premature frame discarding when network congestion occurs.

Which type of VLAN-hopping attack may be prevented by designating an unused VLAN as the native VLAN?

VLAN double-tagging

an open standard FHRP that provides redundancy through use of a virtual routers master and one or more backups

VRRP

Which component of AAA allows an administrator to track individuals who access network resources and any changes that are made to those resources?

accounting

What is a result when the DHCP servers are not operational in a network?

Workstations are assigned with IP addresses in the 169.254.0.0/16 network.

Which kind of message is sent by a DHCP client when its IP address lease has expired?

a DHCPREQUEST unicast message​

Which switch characteristic helps keep traffic local and alleviates network congestion?

high port density

Which command, when issued in the interface configuration mode of a router, enables the interface to acquire an IPv4 address automatically from an ISP, when that link to the ISP is enabled?

ip address dhcp

When configuring a switch for SSH access, what other command that is associated with the login local command is required to be entered on the switch?

username username secret secret

The address pool of a DHCP server is configured with 10.92.71.0/25. The network administrator reserves 8 IP addresses for servers. How many IP addresses are left in the pool to be assigned to other

118

Refer to the exhibit. A network engineer is troubleshooting host connectivity on a LAN that uses a first hop redundancy protocol. Which IPv4 gateway address should be configured on the host?

192.168.2.100

What is the minimum Ethernet frame size that will not be discarded by the receiver as a runt frame?

64 bytes

Refer to the exhibit. PC1 and PC2 should be able to obtain IP address assignments from the DHCP server. How many ports among switches should be assigned as trusted ports as part of the DHCP snooping configuration?

7

What type of wireless antenna is best suited for providing coverage in large open spaces, such as hallways or large conference rooms?

802.11ac 802.11a

Which access control component, implementation, or protocol is based on device roles of supplicant, authenticator, and authentication server?

802.1X

What is the significant difference between a hub and a Layer 2 LAN switch?

A hub extends a collision domain, and a switch divides collision domains.

Refer to the exhibit. What should be done to allow PC-A to receive an IPv6 address from the DHCPv6 server?

Add the ipv6 dhcp relay command to interface Fa0/0

On a Cisco 3504 WLC dashboard, which option provides access to the full menu of features?

Advanced

What does a switch use to locate and load the IOS image?

BOOT environment variable

What is the function provided by CAPWAP protocol in a corporate wireless network?

CAPWAP provides the encapsulation and forwarding of wireless user traffic between an access point and a wireless LAN controller.

a message that is used to locate any available DHCP server on a network

DHCPDISCOVER

a message that is used to suggest a lease to a client

DHCPOFFER

Which statement is correct about Ethernet switch frame forwarding decisions?

Frame forwarding decisions are based on MAC address and port mappings in the CAM table.

Refer to the exhibit. Port security has been configured on the Fa 0/12 interface of switch S1. What action will occur when PC1 is attached to switch S1 with the applied configuration?

Frames from PC1 will cause the interface to shut down immediately, and a log entry will be made.

Refer to the exhibit. What protocol can be configured on gateway routers R1 and R2 that will allow traffic from the internal LAN to be load balanced across the two gateways to the Internet?

GLBP

Which FHRP implementation is a Cisco-proprietary protocol that suppports IPv4 load sharing?

GLBP

Question as presented:

Hot Standby Router Protocol (HSRP) is a Cisco-proprietary protocol that is designed to allow for transparent failover of a first-hop IPv4 device.

What is a characteristic of an IPv4 loopback interface on a Cisco IOS router?

It is a logical interface internal to the router.

What is the result of a DHCP starvation attack?

Legitimate clients are unable to lease IP addresses.

Refer to the exhibit. Which destination MAC address is used when frames are sent from the workstation to the default gateway?

MAC address of the virtual router

A network administrator is working to improve WLAN performance on a dual-band wireless router. What is a simple way to achieve a split-the-traffic result?

Make sure that different SSIDs are used for the 2.4 GHz and 5 GHz bands.

A network administrator deploys a wireless router in a small law firm. Employee laptops join the WLAN and receive IP addresses in the 10.0.10.0/24 network. Which service is used on the wireless router to allow the employee laptops to access the internet?

NAT

Open the PT Activity. Perform the tasks in the activity instructions and then answer the question Which event will take place if there is a port security violation on switch S1 interface Fa0/1?

Packets with unknown source addresses will be dropped.

A company uses the method SLAAC to configure IPv6 addresses for the workstations of the employees. A network administrator configured the IPv6 address on the LAN interface of the router. The interface status is UP. However, the workstations on the LAN segment did not obtain the correct prefix and prefix length. What else should be configured on the router that is attached to the LAN segment for the workstations to obtain the information?​

R1(config)# ipv6 unicast-routing

A network administrator of a college is configuring the WLAN user authentication process. Wireless users are required to enter username and password credentials that will be verified by a server. Which server would provide such service?

RADIUS

Open the PT Activity. Perform the tasks in the activity instructions and then answer the question. What is the keyword that is displayed on www.netacad.com?

Router

Which command will allow a network administrator to check the IP address that is assigned to a particular MAC address?

Router# show ip dhcp binding

Which two commands can be used to enable BPDU guard on a switch? (Choose two.)

S1(config)# spanning-tree portfast bpduguard default S1(config-if)# spanning-tree bpduguard enable

Which protocol adds security to remote connections?

SSH

Which tasks can be accomplished by using the command history feature? (Choose two.)

Set the command history buffer size. Recall previously entered commands

A technician is troubleshooting a slow WLAN that consists of 802.11b and 802.11g devices . A new 802.11n/ac dual-band router has been deployed on the network to replace the old 802.11g router. What can the technician do to address the slow wireless speed?

Split the wireless traffic between the 802.11n 2.4 GHz band and the 5 GHz band.

he DHCP message types to the order of the DHCPv4 process

Step 1 DHCPDISCOVER Step 2 DHCPOFFER Step 3 DHCPREQUEST Step 4 DHCPACK

the step number to the sequence of stages that occur during the HSRP failover process.

Step 1 The forwarding router fails Step 2 The standby router stops seeing hello messages from the forwarding router Step 3 The standby router assumes the role of the forwarding router Step 4 The new forwarding router assumes both the ip and MAC addresses of the virtual router

What are two protocols that are used by AAA to authenticate users against a central database of usernames and password? (Choose two.)

TACACS+ / RADIUS

What is the result of a network technician issuing the command ip dhcp excluded-address 10.0.15.1 10.0.15.15 on a Cisco router?

The Cisco router will exclude 15 IP addresses from being leased to DHCP clients.

What is one indication that a Windows computer did not receive an IPv4 address from a DHCP server?

The computer receives an IP address that starts with 169.254

While attending a conference, participants are using laptops for network connectivity. When a guest speaker attempts to connect to the network, the laptop fails to display any available wireless networks. The access point must be operating in which mode?

active

After which step of the switch bootup sequence is the boot loader executed?

after POST execution

Which access control component, implementation, or protocol controls what users can do on the network?

authorization

Which component of AAA is used to determine which resources a user can access and which operations the user is allowed to perform?

authorization

determines what resources users can access or the operations they are allowed to perform

authorization

Which type of management frame may regularly be broadcast by an AP?

beacon

Which command is used to set the BOOT environment variable that defines where to find the IOS image file on a switch?

boot system

An administrator issues the commands: Router (config)# interface g0/1 Router (config -if)# ip address dhc

configuring the router to obtain IP parameters from a DHCPv4 server

What is the reason that an ISP commonly assigns a DHCP address to a wireless router in a SOHO environment?

easy IP address management

the descriptions to the corresponding DHCPv6 server type STATELESS

enabled in ra messages with ipv6 nd other - config -flag command clients send only DHCPv6 INFORMATION REQUEST messages to the server enabled on the client with the ipv6 address autoconfig command

What is a wireless security mode that requires a RADIUS server to authenticate wireless users?

enterprise

Refer to the exhibit. A switch receives a Layer 2 frame that contains a source MAC address of 000b.a023.c501 and a destination MAC address of 0050.0fae.75aa. Place the switch steps in the order they occur. (Not all options are used.)

occurs first the switch adds the source MAC address to the MAC address table occurs Second Because the destination is not known. the switch forwards the frame out all ports except the prot through which the frame arrived

If one end of an Ethernet connection is configured for full duplex and the other end of the connection is configured for half duplex, where would late collisions be observed?

on the half-duplex end of the connection

What must an administrator have in order to reset a lost password on a router?

physical access to the router

What security benefit is gained from enabling BPDU guard on PortFast enabled interfaces?

preventing rogue switches from being added to the network

What are the two methods that are used by a wireless NIC to discover an AP? (Choose two.)

receiving a broadcast beacon frame / transmitting a probe request

Which command displays information about the auto-MDIX setting for a specific interface?​

show controllers

An IT secterm-36urity specialist enables port security on a switch port of a Cisco switch. What is the default violation mode in use until the switch port is configured to use a different violation mode?

shutdown

What information is added to the switch table from incoming frames?

source MAC address and incoming port number

Refer to the exhibit. Based on the output that is shown, what kind of IPv6 addressing is being configured?

stateless DHCPv6

the DHCP message types to the order of the stateful DHCPv6 process when a client first connects to an IPv6 network.

step 1 DHCPv6 Solicit Step 2 Dhcpv6 Advertise Step 3 Dhcpv6 Request Step 4 DHCPv6 Reply

As part of the new security policy, all switches on the network are configured to automatically learn MAC addresses for each port. All running configurations are saved at the start and close of every business day. A severe thunderstorm causes an extended power outage several hours after the close of business. When the switches are brought back online, the dynamically learned MAC addresses are retained. Which port security configuration enabled this?

sticky secure MAC addresses

Which switching method ensures that the incoming frame is error-free before forwarding?

store-and-forward

What information can be verified through the show ip dhcp binding command?

the IPv4 addresses that are assigned to hosts by the DHCP server

A network administrator is required to upgrade wireless access to end users in a building. To provide data rates up to 1.3 Gb/s and still be backward compatible with older devices, which wireless standard should be implemented?

802.11ac

Which FHRP implementation is a nonproprietary protocol which relies on ICMP to provide IPv4

IRDP

A company has recently implemented an 802.11n wireless network. Some users are complaining that the wireless network is too slow. Which solution is the best method to enhance the performance of the wireless network?

Split the traffic between the 2.4 GHz and 5 GHz frequency bands

Which access control component, implementation, or protocol is based upon usernames and passwords?

authentication

Which access control component, implementation, or protocol logs EXEC and configuration commands configured by a user?

authentication

proves that users are who they say they are

authentication

What is the first action in the boot sequence when a switch is powered on?

load a power-on self-test program

Which impact does adding a Layer 2 switch have on a network?

an increase in the size of the broadcast domain

the descriptions to the corresponding DHCPv6 server type stateful DHCPv6

the M flag is set to 1 in RA messages uses the address command to create a pool of addresses for clients enabled on the client with the ipv6 address dhcp command

Question as presented:

The DHCPDISCOVER message is used to identify any DHCP servers on a network. The DHCPOFFER message is used by a server to offer a lease to a client. The DHCPREQUEST message is used to identify both the specific DHCP server and the lease that the client is accepting. The DHCPACK message is used by a server to finalize a successful lease with a client. The DHCPNAK message is used when an offered lease is no longer valid.

a cisco proprietary fhrp that provides load sharing in addition to reduncancy

GLBP

Which FHRP implementation is a Cisco-proprietary protocol that suppports IPv6 load balancing?

GLBP for IPv6

Which DHCPv4 message will a client send to accept an IPv4 address that is offered by a DHCP server?

broadcast DHCPREQUEST

Refer to the exhibit. PC1 is configured to obtain a dynamic IP address from the DHCP server. PC1 has been shut down for two weeks. When PC1 boots and tries to request an available IP address, which destination IP address will PC1 place in the IP header?

255.255.255.255

A company uses DHCP to manage IP address deployment for employee workstations. The IT department deploys multiple DHCP servers in the data center and uses DHCP relay agents to facilitate the DHCP requests from workstations. Which two UDP ports are used to forward DHCP traffic? (Choose two.)

67 / 68

Question as presented:

A stateless DHCPv6 client would send a DHCPv6 INFORMATION-REQUEST message as step 3 in the process

A technician is about to install and configure a wireless network at a small branch office. What is the first security measure the technician should apply immediately upon powering up the wireless router?

Change the default user-name and password of the wireless router.

What is an advantage of SSID cloaking?​

Clients will have to manually identify the SSID to connect to the network

Which step is required before creating a new WLAN on a Cisco 3500 series WLC?

Create a new VLAN interface.

Which protocol automates assignment of IP addresses on a network, and which port number does it use? (Choose two.)

DHCP / 67

Which two Cisco solutions help prevent DHCP starvation attacks? (Choose two.)

DHCP Snooping / Port Security

A host PC is attempting to lease an address through DHCP. What message is sent by the server to let the client know it is able to use the provided IP information?

DHCPACK

a message that is used to acknowledge that the lease is successful

DHCPACK

the DHCP server confirming that the address lease has been accepted

DHCPACK

Which DHCP IPv4 message contains the following information? Destination address: 255.255.255.255Client IPv4 address: 0.0.0.0Default gateway address: 0.0.0.0Subnet mask: 0.0.0.0

DHCPDISCOVER

a client initiating a message to find a DHCP server

DHCPDISCOVER

A DHCP-enabled client PC has just booted. During which two steps will the client PC use broadcast messages when communicating with a DHCP server? (Choose two.)

DHCPDISCOVER / DHCPREQUEST

a DHCP server responding to the initial request by a client

DHCPOFFER

the client accepting the IP address provided by the DHCP server

DHCPREQUEST

A network administrator enters the following commands on the switch SW1. sw1(config)# interface range fa0/5 - 10 sw1(config-if)# ip dhcp snooping limit rate 6 what is the effect after these commands are entered

FastEthernet ports 5 through 10 can receive up to 6 DHCP discovery messages per second.

A network administrator is analyzing the features that are supported by different first-hop router redundancy protocols. Which statement describes a feature that is associated with HSRP?

HSRP uses active and standby routers.

What is an advantage of configuring a Cisco router as a relay agent?

It can provide relay services for multiple UDP services.

A network administrator is configuring DAI on a switch with the command ip arp inspection validate src-mac. What is the purpose of this configuration command?

It checks the source MAC address in the Ethernet header against the sender MAC address in the ARP body.

A network administrator is configuring a RADIUS server connection on a Cisco 3500 series WLC. The configuration requires a shared secret password. What is the purpose for the shared secret password?

It is used to encrypt the messages between the WLC and the RADIUS server.

A network administrator configures a router to send RA messages with M flag as 0 and O flag as 1. Which statement describes the effect of this configuration when a PC tries to configure its IPv6 address?

It should use the information that is contained in the RA message and contact a DHCPv6 server for additional information.

Which service can be used on a wireless router to prioritize network traffic among different types of applications so that voice and video data are prioritized over email and web data?

QoS

On a Cisco 3504 WLC Summary page ( Advanced > Summary ), which tab allows a network administrator to access and configure a WLAN for a specific security option such as WPA2?

SECURITY

Refer to the exhibit. Port Fa0/2 has already been configured appropriately. The IP phone and PC work properly. Which switch configuration would be most appropriate for port Fa0/2 if the network administrator has the following goals? No one is allowed to disconnect the IP phone or the PC and connect some other wired device. If a different device is connected, port Fa0/2 is shut down. The switch should automatically detect the MAC address of the IP phone and the PC and add those addresses to the running configuration.

SWA(config-if)# switchport port-security SWA(config-if)# switchport port-security maximum 2 SWA(config-if)# switchport port-security mac-address sticky

A client device on an Ethernet segment needs an IP address in order to communicate on the network. A DHCP server with IP address 192.168.1.1 has been configured and enabled on the network. How will a client device obtain a usable IP address for this network?

Send a DHCPDISCOVER message to physical address FF-FF-FF-FF-FF-FF.

A small coffee shop is offering free Wi-Fi to customers. The network includes a wireless router and a DSL modem that is connected to the local phone company. What method is typically used to configure the connection to the phone company?

Set the WAN connection in the wireless router as a DHCP client.

A network engineer is troubleshooting a newly deployed wireless network that is using the latest 802.11 standards. When users access high bandwidth services such as streaming video, the wireless network performance is poor. To improve performance the network engineer decides to configure a 5 Ghz frequency band SSID and train users to use that SSID for streaming media services. Why might this solution improve the wireless network performance for that type of service?

The 5 GHz band has more channels and is less crowded than the 2.4 GHz band, which makes it more suited to streaming multimedia.

Refer to the exhibit. The Fa0/2 interface on switch S1 has been configured with the switchport port-security mac-address 0023.189d.6456 command and a workstation has been connected. What could be the reason that the Fa0/2 interface is shutdown? CCNA 2 v7 Modules 10 - 13: L2 Security and WLANs Exam Answers 55

The MAC address of PC1 that connects to the Fa0/2 interface is not the configured MAC address.

Question as presented:

The broadcast DHCPDISCOVER message finds DHCPv4 servers on the network. When the DHCPv4 server receives a DHCPDISCOVER message, it reserves an available IPv4 address to lease to the client and sends the unicast DHCPOFFER message to the requesting client. When the client receives the DHCPOFFER from the server, it sends back a DHCPREQUEST. On receiving the DHCPREQUEST message the server replies with a unicast DHCPACK message. DHCPREPLY and DHCPINFORMATION-REQUEST are DHCPv6 messages.

When a client is requesting an initial address lease from a DHCP server, why is the DHCPREQUEST message sent as a broadcast?

The client may have received offers from multiple servers, and the broadcast serves to implicitly decline those other offers.

After a host has generated an IPv6 address by using the DHCPv6 or SLAAC process, how does the host verify that the address is unique and therefore usable?

The host sends an ICMPv6 neighbor solicitation message to the DHCP or SLAAC-learned address and if no neighbor advertisement is returned, the address is considered unique.

Refer to the exhibit. A network administrator is implementing the stateless DHCPv6 operation for the company. Clients are configuring IPv6 addresses as expected. However, the clients are not getting the DNS server address and the domain name information configured in the DHCP pool. What could be the cause of the problem?

The router is configured for SLAAC operation.

Which statement is true about DHCP operation?​

When a device that is configured to use DHCP boots, the client broadcasts a DHCPDISCOVER message to identify any available DHCP servers on the network.​

Place the options in the following order:

a client initiating a message to find a DHCP server - DHCPDISCOVER a DHCP server responding to the initial request by a client - DHCPOFFER the client accepting the IP address provided by the DHCP server - DHCPREQUEST the DHCP server confirming that the lease has been accepted - DHCPACK

The company handbook states that employees cannot have microwave ovens in their offices. Instead, all employees must use the microwave ovens located in the employee cafeteria. What wireless security risk is the company trying to avoid?

accidental interference

records what users do and what they access

accounting

Which set of commands will configure a router as a DHCP server that will assign IPv4 addresses to the 192.168.100.0/23 LAN while reserving the first 10 and the last addresses for static assignment?

ip dhcp excluded-address 192.168.100.1 192.168.100.10 ip dhcp excluded-address 192.168.101.254 ip dhcp pool LAN-POOL-100 network 192.168.100.0 255.255.254.0 default-router 192.168.100.1

Which feature on a switch makes it vulnerable to VLAN hopping attacks?

the automatic trunking port feature enabled for all ports by default

A company uses the SLAAC method to configure IPv6 addresses for the employee workstations. Which address will a client use as its default gateway?​

the link-local address of the router interface that is attached to the network

Which feature or configuration on a switch makes it vulnerable to VLAN double-tagging attacks?

the native VLAN of the trunking port being the same as a user VLAN

A technician is configuring the channel on a wireless router to either 1, 6, or 11. What is the purpose of adjusting the channel?

to avoid interference from nearby wireless devices

Which type of wireless network is based on the 802.11 standard and a 2.4-GHz or 5-GHz radio frequency?

wireless local-area network

Which three parameters would need to be changed if best practices are being implemented for a home wireless AP? (Choose three.)

wireless network password / AP password / SSID

Which type of wireless network is suitable for national and global communications?

wireless wide-area network


Conjuntos de estudio relacionados

Price Index and Real Interest Rate

View Set

PrQ M18: Practice Quiz - Module 18: The Costs of Inflation

View Set

Pharmacology chapter 45 Drugs for diabetes mellitus

View Set

Innovation/Disruptive Innovation

View Set

EXAM 1: Fredrick Jackson Turner & the Frontier thesis

View Set

Ch 16: Nursing Management During the Postpartum Period

View Set