IST 475 Chapter 5
A production switch is reloaded and finishes with a Switch> prompt. What two facts can be determined? (Choose two.)
A and B. A. A full version of the Cisco IOS was located and loaded. B. POST occurred normally. The prompt occurs after a switch boots normally but does not have or has failed to load a startup configuration file.
Which two statements are true about using full-duplex Fast Ethernet? (Choose two.)
A and E. A. Full-duplex Fast Ethernet offers 100 percent efficiency in both directions. E. Performance is improved with bidirectional data flow. In full duplex operation, the NIC does not process frames any faster, the data flow is bidirectional, and there are no collisions
Which two statements are true regarding switch port security? (Choose two.)
B and C B. Dynamically learned secure MAC addresses are lost when the switch reboots. C. If fewer than the maximum number of MAC addresses for a port are configured statically, dynamically learned addresses are added to CAM until the maximum number is reached.
A network administrator configures the port-security feature on a switch. The security policy specifies that each access port should allow up to two MAC addresses. When the maximum number of MAC addresses is reached, a frame with the unknown source MAC address is dropped and a notification is sent to the syslog server. Which security violation mode should be configured for each access port?
B. B. Restrict In port security implementation, an interface can be configured for one of three violation modes: Protect—a port security violation causes the interface to drop packets with unknown source addresses and no notification is sent that a security violation has occurred. Restrict—a port security violation causes the interface to drop packets with unknown source addresses and to send a notification that a security violation has occurred. Shutdown—a port security violation causes the interface to immediately become error-disabled and turns off the port LED. No notification is sent that a security violation has occurred.
Which action will bring an error-disabled switch port back to an operational state?
B. Issue the shutdown and then no shutdown interface commands When a violation occurs on a switch port that is configured for port security with the shutdown violation action, it is put into the err-disabled state. It can be brought back up by shutting down the interface and then issuing the no shutdown command
What is one difference between using Telnet or SSH to connect to a network device for management purposes?
B. Telnet sends a username and password in plain text, whereas SSH encrypts the username and password. SSH provides security for remote management connections to a network device. SSH does so through encryption for session authentication (username and password) as well as for data transmission. Telnet sends a username and password in plain text, which can be targeted to obtain the username and password through data capture. Both Telnet and SSH use TCP, support authentication, and connect to hosts in CLI
What is a function of the switch boot loader?
B. To provide an environment to operate in when the switch operating system cannot be found The switch boot loader environment is presented when the switch cannot locate a valid operating system. The boot loader environment provides a few basic commands that allow a network administrator to reload the operating system or provide an alternate location of the operating system
Which statement describes the port speed LED on the Cisco Catalyst 2960 switch?
C. If the LED is green, the port is operating at 100 Mb/s. The port speed LED indicates that the port speed mode is selected. When selected, the port LEDs will display colors with different meanings. If the LED is off, the port is operating at 10 Mb/s. If the LED is green, the port is operating at 100 Mb/s. If the LED is blinking green, the port is operating at 1000 Mb/s
In which situation would a technician use the show interfaces command?
C. When packets are being dropped from a particular directly attached host The show interfaces command is useful to detect media errors, to see if packets are being sent and received, and to determine if any runts, giants, CRCs, interface resets, or other errors have occurred. Problems with reachability to a remote network would likely be caused by a misconfigured default gateway or other routing issue, not a switch issue. The show mac address-table command shows the MAC address of a directly attached device.
Which interface is the default location that would contain the IP address used to manage a 24-port Ethernet switch?
D Interface VLAN 1 is the default management SVI.