CCNA Final exam
UDP contains what transport protocol
DHCP, TFTP
A client packet is received by a server. The packet has a destination port number of 53. What service is the client requesting?
DNS
Which type of server relies on record types such as A, NS, AAAA, and MX in order to provide services?
DNS
A user is attempting to access http://www.cisco.com/ without success. Which two configuration values must be set on the host to allow this access?
DNS server default gateway
A client packet is received by a server. The packet has a destination port number of 80. What service is the client requesting?
HTTP
A client packet is received by a server. The packet has a destination port number of 143. What service is the client requesting?
IMAP
A client packet is received by a server. The packet has a destination port number of 110. What service is the client requesting?
POP3
stateful packet inspection
Prevents unsolicited incoming sessions
A network administrator needs to keep the user ID, password, and session contents private when establishing remote CLI connectivity with a switch to manage it. Which access method should be chosen?
SSH
Two pings were issued from a host on a local network. The first ping was issued to the IP address of the default gateway of the host and it failed. The second ping was issued to the IP address of a host outside the local network and it was successful. What is a possible cause for the failed ping?
Security rules are applied to the default gateway device, preventing it from processing ping requests.
explain global unicast address (GUA)
Similar to a public IPv4 address. These are globally unique, internet-routable addresses. GUAs can be configured statically or assigned dynamically.
A client packet is received by a server. The packet has a destination port number of 69. What service is the client requesting?
TFTP
What is the consequence of configuring a router with the ipv6 unicast-routing global configuration command?
The IPv6 enabled router interfaces begin sending ICMPv6 Router Advertisement messages.
An IPv6 enabled device sends a data packet with the destination address of FF02::2. What is the target of this packet?
all IPv6 configured routers on the local link
what is the ipv6 address range for All-nodes multicast group and All-routers multicast group?
all nodes- ff02::1 all routers- ff02::2
What characteristic describes a DoS attack?
an attack that slows or crashes a device or network service
Which three layers of the OSI model map to the application layer of the TCP/IP model?
application session presentation
The TCP/IP model consists of four layers:
application, transport, internet, and network access.
What command can be used on a Windows PC to see the IP configuration of that computer?
ipconfig
What does the term "attenuation" mean in data communication?
loss of signal strength as distance increases
. What are two common causes of signal degradation when using UTP cabling?
low-quality cable or connectors improper termination
What characteristic describes a Trojan horse?
malicious software or code running on an end device
What characteristic describes a virus?
malicious software or code running on an end device
What three requirements are defined by the protocols used in network communications to allow message transmission across a network?
message size message encoding delivery options
What two ICMPv6 message types must be permitted through IPv6 access control lists to allow resolution of Layer 3 addresses to Layer 2 MAC addresses?
neighbor solicitations neighbor advertisements
Why would a Layer 2 switch need an IP address?
to enable the switch to be managed remotely A switch, as a Layer 2 device, does not need an IP address to transmit frames to attached devices. However, when a switch is accessed remotely through the network, it must have a Layer 3 address. The IP address must be applied to a virtual interface rather than to a physical interface. Routers, not switches, function as default gateways.
When a switch configuration includes a user-defined error threshold on a per-port basis, to which switching method will the switch revert when the error threshold is reached?
store-and-forward
Which switching method drops frames that fail the FCS check?
store-and-forward switching
how do you get the number of subnets and host
subnet is 2 by the power of the number of 1s ex. x.x.x.11100000 is 2^3= 16 host is last bit turned on = 32 host
During the process of forwarding traffic, what will the router do immediately after matching the destination IP address to a network on a directly connected routing table entry?
switch the packet to the directly connected interface
Which two statements describe how to assess traffic flow patterns and network traffic types using a protocol analyzer?
- Capture traffic during peak utilization times to get a good representation of the different traffic types. - Perform the capture on different network segments.
The data link layer is actually divided into two sublayers:
- Logical Link Control (LLC) - Media Access Control (MAC)
3 characteristic of store and forward method
- always store the entire frame - check the CRC before forwarding - checks the frame length before forwarding
3 characteristic of cut-through
- low latency - begins forwarding when the destination address is received - may forward runt frames because it may begin to forward before fully received
Which two functions are performed at the MAC sublayer of the OSI Data Link Layer to facilitate Ethernet communication?
- places information in the Ethernet frame that identifies which network layer protocol is being encapsulated by the frame - implements trailer with frame check sequence for error detection
Which is a multicast MAC address?
01-00-5E-00-00-03
What are three characteristics of the CSMA/CD process?
1) A device listens and waits until the media is not busy before transmitting. 2) After detecting a collision, hosts can attempt to resume transmission after a random time delay has expired. 3) All of the devices on a segment see data that passes on the network medium. The Carrier Sense Multiple Access/Collision Detection (CSMA/CD) process is a contention-based media access control mechanism used on shared media access networks, such as Ethernet. When a device needs to transmit data, it listens and waits until the media is available (quiet), then it will send data. If two devices transmit at the same time, a collision will occur. Both devices will detect the collision on the network. When a device detects a collision, it will stop the data transmission process, wait for a random amount of time, then try again.
An administrator defined a local user account with a secret password on router R1 for use with SSH. Which three additional steps are required to configure R1 to accept only encrypted SSH connections? (Choose three.)
1) Configure the IP domain name on the router. 2) Generate the SSH keys. 3) Enable inbound vty SSH sessions.
Which two functions are performed at the MAC sublayer of the OSI data link layer?
1) Controls the NIC responsible for sending and receiving data on the physical medium. 2) Provides a mechanism to allow multiple devices to communicate over a shared medium.
Which two statements are correct about MAC and IP addresses during data transmission if NAT is not involved?
1) Destination IP addresses in a packet header remain constant along the entire path to a target host. 2) Destination and source MAC addresses have local significance and change every time a frame goes from one LAN to another.
Which two statements describe features of an IPv4 routing table on a router?
1) Directly connected interfaces will have two route source codes in the routing table: C and S. 2) If a default static route is configured in the router, an entry will be included in the routing table with source code S.
Which two fields or features does Ethernet examine to determine if a received frame is passed to the data link layer or discarded by the NIC?
1) Frame Check Sequence 2)minimum frame size
Which two statements describe features or functions of the logical link control sublayer in Ethernet standards?
1) Logical link control is implemented in software. 2) The data link layer uses LLC to communicate with the upper layers of the protocol suite. Logical link control is implemented in software and enables the data link layer to communicate with the upper layers of the protocol suite. Logical link control is specified in the IEEE 802.2 standard. IEEE 802.3 is a suite of standards that define the different Ethernet types. The MAC (Media Access Control) sublayer is responsible for the placement and retrieval of frames on and off the media. The MAC sublayer is also responsible for adding a header and a trailer to the network layer protocol data unit (PDU).
Which two statements accurately describe an advantage or a disadvantage when deploying NAT for IPv4 in a network?
1) NAT introduces problems for some applications that require end-to-end connectivity. 2) NAT provides a solution to slow down the IPv4 address depletion.
Refer to the exhibit. PC1 issues an ARP request because it needs to send a packet to PC2. In this scenario, what will happen next?
1) PC2 will send an ARP reply with its MAC address. 2) PC2 will send an ARP reply with the PC2 MAC address.
What are two problems that can be caused by a large number of ARP request and reply messages?
1) The ARP request is sent as a broadcast, and will flood the entire subnet. 2) All ARP request messages must be processed by all nodes on the local network.
Which two statements are correct in a comparison of IPv4 and IPv6 packet headers?
1) The Source Address field name from IPv4 is kept in IPv6. 2) The Time-to-Live field from IPv4 has been replaced by the Hop Limit field in IPv6.
What are the two most effective ways to defend against malware?
1) Update the operating system and other application software. 2) Install and update antivirus software.
match 3 characteristics of MAC address
1) contained in the layer 2 header 2) separated into OUI and a unique identifier 3) 48 bits
match 3 characteristics of IP address
1) contained in the layer 3 header 2) separated into network portion and a unique identifier 3) 32 or 128 bits
What are two functions that are provided by the network layer?
1) directing data packets to destination hosts on other networks 2) providing end devices with a unique network identifier
characteristics of peer to peer network
1) no dedicated server required 2) client and server role are sent on a per request basis
characteristics of peer to peer application
1) requires a specific user interface 2) a background service is required
What are the three parts of an IPv6 global unicast address?
1) subnet ID 2) global routing prefix 3) interface ID
What two security solutions are most likely to be used only in a corporate environment?
1) virtual private networks 2) intrusion prevention systems
What are two features of ARP?
1. If a host is ready to send a packet to a local destination device and it has the IP address but not the MAC address of the destination, it generates an ARP broadcast. 2. If a device receiving an ARP request has the destination IPv4 address, it responds with an ARP reply.
how many host is /25
128 host
Which subnet would include the address 192.168.1.96 as a usable host address?
192.168.1.64/26
what do the 1s and 0s represent in the network mask? ex. 11111111.11111111.00000000.000000
1s represent the network and 0s represent the number of host
What is the subnet ID associated with the IPv6 address 2001:DA48:FC5:A4:3D1B::1/64?
2001:DA48:FC5:A4::/64
Which layer of the TCP/IP model provides a route to forward messages through an internetwork?
internet
A network administrator is adding a new LAN to a branch office. The new LAN must support 200 connected devices. What is the smallest network mask that the network administrator can use for the new network?
255.255.255.0
The new LAN must support 90 connected devices. What is the smallest network mask that the network administrator can use for the new network?
255.255.255.128
A network administrator is adding a new LAN to a branch office. The new LAN must support 61 connected devices. What is the smallest network mask that the network administrator can use for the new network?
255.255.255.192
What subnet mask is needed if an IPv4 network has 40 devices that need IP addresses and address space is not to be wasted?
255.255.255.192
A network administrator wants to have the same network mask for all networks at a particular small site. The site has the following networks and number of devices: IP phones - 22 addresses PCs - 20 addresses needed Printers - 2 addresses needed Scanners - 2 addresses needed The network administrator has deemed that 192.168.10.0/24 is to be the network used at this site. Which single subnet mask would make the most efficient use of the available addresses to use for the four subnetworks?
255.255.255.224
The new LAN must support 25 connected devices. What is the smallest network mask that the network administrator can use for the new network?
255.255.255.224
A network administrator is adding a new LAN to a branch office. The new LAN must support 10 connected devices. What is the smallest network mask that the network administrator can use for the new network?
255.255.255.240
The new LAN must support 4 connected devices. What is the smallest network mask that the network administrator can use for the new network?
255.255.255.248
An organization is assigned an IPv6 address block of 2001:db8:0:ca00::/56. How many subnets can be created without using bits in the interface ID space?
256
What service is provided by HTTP?
A basic set of rules for exchanging text, graphic images, sound, video, and other multimedia files on the web.
Which scenario describes a function provided by the transport layer?
A student has two web browser windows open in order to access two web sites. The transport layer ensures the correct web page is delivered to the correct browser window. The source and destination port numbers are used to identify the correct application and window within that application.
Define ARP
Address Resolution Protocol. Provides dynamic address mapping between an IPv4 address and a hardware address and if its dynamic or static.
What service is provided by SMTP?
Allows clients to send email to a mail server and the servers to send email to other servers.
What service is provided by FTP?
Allows for data transfers between a client and a file server.
What service is provided by Internet Messenger?
An application that allows real-time chatting among remote users.
What method is used to manage contention-based access on a wireless network?
CSMA/CA
What happens when the transport input ssh command is entered on the switch vty lines?
Communication between the switch and remote users is encrypted. The transport input ssh command when entered on the switch vty (virtual terminal lines) will encrypt all inbound controlled telnet connections.
A client packet is received by a server. The packet has a destination port number of 67. What service is the client requesting?
DHCP
What are the two methods a device can use to generate its own IPv6 interface ID?
EUI64 randomly generated
A new network administrator has been asked to enter a banner message on a Cisco device. What is the fastest way a network administrator could test whether the banner is properly configured?
Exit privileged EXEC mode and press Enter .
Which range of link-local addresses can be assigned to an IPv6-enabled interface?
FE80::/10
A client packet is received by a server. The packet has a destination port number of 21. What service is the client requesting?
FTP
TCP contains what transport protocols
FTP, HTTP, SMTP
What mechanism is used by a router to prevent a received IPv4 packet from traveling endlessly on a network?
It decrements the value of the TTL field by 1 and if the result is 0, it discards the packet and sends a Time Exceeded message to the source host.
How does the service password-encryption command enhance password security on Cisco routers and switches?
It encrypts passwords that are stored in router or switch configuration files. The service password-encryption command encrypts plaintext passwords in the configuration file so that they cannot be viewed by unauthorized users.
A client is using SLAAC to obtain an IPv6 address for its interface. After an address has been generated and applied to the interface, what must the client do before it can begin to use this IPv6 address?
It must send an ICMPv6 Neighbor Solicitation message to ensure that the address is not already in use on the network.
What is a characteristic of the LLC sublayer?
It places information in the frame allowing multiple Layer 3 protocols to use the same network interface and media.
What is one main characteristic of the data link layer?
It shields the upper layer protocol from being aware of the physical medium to be used in the communication.
A host is trying to send a packet to a device on a remote LAN segment, but there are currently no mappings in the ARP cache. How will the device obtain a destination MAC address?
It will send an ARP request for the MAC address of the default gateway.
What service is provided by BOOTP?
Legacy application that enables a diskless workstation to discover its own IP address and find a BOOTP server on the network.
What attribute of a NIC would place it at the data link layer of the OSI model?
MAC address
What is an advantage for small organizations of adopting IMAP instead of POP?
Messages are kept in the mail servers until they are manually deleted from the email client. IMAP and POP are protocols that are used to retrieve email messages. The advantage of using IMAP instead of POP is that when the user connects to an IMAP-capable server, copies of the messages are downloaded to the client application. IMAP then stores the email messages on the server until the user manually deletes those messages.
What are two ICMPv6 messages that are not present in ICMP for IPv4?
Neighbor Solicitation Router Advertisement
What is a benefit of using cloud computing in networking?
Network capabilities are extended without requiring investment in new infrastructure, personnel, or software.
- There are 4 hops between this device and the device at 192.168.100.1. - There is connectivity between this device and the device at 192.168.100.1.
On the basis of the output, which two statements about network connectivity are correct?
Which two protocols operate at the top layer of the TCP/IP protocol suite?
POP DNS
Which two factors may interfere with the copper cabling and result in signal distortion and data corruption?
RFI EMI
define subnet bits
Remember that the number of host bits (to the power of 2) defines the number of hosts per subnet (minus 2), and the number of subnet bits (to the power of two) defines the number of subnets
What service is provided by DNS?
Resolves domain names, such as cisco.com, into IP addresses.
What is the MAC sublayer responsible for?
Responsible for data encapsulation and media access control, and provides data link layer addressing.
What service is provided by POP3?
Retrieves email from the server by downloading the email to the local mail application of the client.
A technician with a PC is using multiple applications while connected to the Internet. How is the PC able to keep track of the data flow between multiple application sessions and have each application receive the correct packet flows?
The data flow is being tracked based on the source port number that is used by each application. Each application will use a unique source port number to provide simultaneous communication from multiple applications through the Internet.
What will happen if the default gateway address is incorrectly configured on a host?
The host cannot communicate with hosts in other networks.
During the encapsulation process, what occurs at the data link layer for a PC connected to an Ethernet network?
The physical address is added.
The global configuration command ip default-gateway 172.16.100.1 is applied to a switch. What is the effect of this command?
The switch can be remotely managed from a host on another network. A default gateway address is typically configured on all devices to allow them to communicate beyond just their local network.In a switch this is achieved using the command ip default-gateway <ip address>.
What action will occur if a switch receives a frame and does have the source MAC address in the MAC table?
The switch refreshes the timer on that entry.
error detection frame
This field checks if the frame has been damaged during the transfer.
addressing frame
This field helps to direct the frame toward its destination.
frame start
This field identifies the beginning of a frame.
explain Link-local Address (LLA)
This is required for every IPv6-enabled device. LLAs are used to communicate with other devices on the same local link. With IPv6, the term link refers to a subnet. LLAs are confined to a single link.
global routing prefix
This network portion of the address is assigned by the provider
interface ID
This part of the address is the equivalent to the host portion of an IPv4 address
subnet ID
This part of the address is used by an organization to identify subnets.
Which type of security threat would be responsible if a spreadsheet add-on disables the local software firewall?
Trojan horse
What service is provided by HTTPS?
Uses encryption to secure the exchange of text, graphic images, sound, and video on the web.
Which wireless technology has low-power and data rate requirements making it popular in home automation applications?
ZigBee
What characteristic describes an IPS?
a network device that filters access and traffic coming into a network
What characteristic describes a VPN?
a tunneling protocol that provides remote users with secure access into the network of an organization
What are two primary responsibilities of the Ethernet MAC sublayer?
accessing the media data encapsulation
What characteristic describes antispyware?
applications that protect end devices from becoming infected with malicious software
Three bank employees are using the corporate network. The first employee uses a web browser to view a company web page in order to read some announcements. The second employee accesses the corporate database to perform some financial transactions. The third employee participates in an important live audio conference with other corporate managers in branch offices. If QoS is implemented on this network, what will be the priorities from highest to lowest of the different data types?
audio conference, financial transactions, web page
A company has a file server that shares a folder named Public. The network security policy specifies that the Public folder is assigned Read-Only rights to anyone who can log into the server while the Edit rights are assigned only to the network admin group. Which component is addressed in the AAA network service framework?
authorization After a user is successfully authenticated (logged into the server), the authorization is the process of determining what network resources the user can access and what operations (such as read or edit) the user can perform.
What are three commonly followed standards for constructing and installing cabling?
cable lengths pinouts connector types
What are two characteristics shared by TCP and UDP?
checksum port numbering
What three items are contained in an Ethernet header and trailer?
destination MAC address error-checking information source MAC address
What are two characteristics of IP?
does not require a dedicated end-to-end connection operates independently of the network media The Internet Protocol (IP) is a connectionless, best effort protocol. This means that IP requires no end-to-end connection nor does it guarantee delivery of packets. IP is also media independent, which means it operates independently of the network media carrying the packets.
Which switching method has the lowest level of latency?
fast-forward
Which frame field is created by a source node and used by a destination node to ensure that a transmitted data signal has not been altered by interference, distortion, or signal loss?
frame check sequence field
What is one advantage of using the cut-through switching method instead of the store-and-forward switching method?
has a lower latency appropriate for high-performance computing applications
A network administrator is designing the layout of a new wireless network. Which three areas of concern should be accounted for when building a wireless network?
interference security coverage area
A technician can ping the IP address of the web server of a remote company but cannot successfully ping the URL address of the same web server. Which software utility can the technician use to diagnose the problem?
nslookup Nslookup is a utility that allows the user to manually query the name servers to resolve a given host name. This utility can also be used to troubleshoot name resolution issues and to verify the current status of the name servers.
A wired laser printer is attached to a home computer. That printer has been shared so that other computers on the home network can also use the printer. What networking model is in use?
peer-to-peer (P2P)
To troubleshoot the problem, the technician wants to initially confirm the IP address and DNS configurations on the PCs, and also verify connectivity to the local router. Which three Windows CLI commands and utilities will provide the necessary information?
ping ipconfig nslookup
packet filtering
prevents access based on IP or MAC address
application filtering
prevents access by port number
URL filtering
prevents access to websites
What are proprietary protocols?
protocols developed by organizations who have control over their definition and operation
What is a function of the data link layer?
provides for the exchange of frames over a common local media
A disgruntled employee is using some free wireless networking tools to determine information about the enterprise wireless networks. This person is planning on using this information to hack the wireless network. What type of attack is this?
reconnaissance
If PC1 is sending a packet to PC2 and routing has been configured between the two routers, what will R1 do with the Ethernet frame header attached by PC1?
remove the Ethernet header and configure a new Layer 2 header before sending it out S0/0/0 when PC1 forms the various headers attached to the data one of those headers is the Layer 2 header. Because PC1 connects to an Ethernet network, an Ethernet header is used. The source MAC address will be the MAC address of PC1 and the destination MAC address will be that of G0/0 on R1. When R1 gets that information, the router removes the Layer 2 header and creates a new one for the type of network the data will be placed onto (the serial link).
Which two commands can be used on a Windows host to display the routing table?
route print netstat -r On a Windows host, the route print or netstat -r commands can be used to display the host routing table. Both commands generate the same output. On a router, the show ip route command is used to display the routing table. The netstat -s command is used to display per-protocol statistics. The tracert command is used to display the path that a packet travels to its destination.
The employee is unaware that after a successful login, the connection to the company ISP failed. The secondary connection, however, activated within seconds. The disruption was not noticed by the employee or other employees. What three network characteristics are described in this scenario?
security quality of service fault tolerance
What characteristic describes adware?
software that is installed on a user device and collects information about the user
Which information does the show startup-config command display?
the contents of the saved configuration file in the NVRAM
Users are reporting longer delays in authentication and in accessing network resources during certain time periods of the week. What kind of information should network engineers check to find out if this situation is part of a normal network behavior?
the network performance baseline
What characteristic describes identity theft?
the use of stolen credentials to access private data
type frame
this field is used by the LLC to identify the layer 3 protocol
What is the purpose of the TCP sliding window?
to request that a source decrease the rate at which it transmits data The TCP sliding window allows a destination device to inform a source to slow down the rate of transmission. To do this, the destination device reduces the value contained in the window field of the segment
What technique is used with UTP cable to help protect against signal interference from crosstalk?
twisting the wires together into pairs
What are two actions performed by a Cisco switch? (Choose two.)
using the source MAC addresses of frames to build and maintain a MAC address table utilizing the MAC address table to forward frames via the destination MAC address
Which two traffic types use the Real-Time Transport Protocol (RTP)?
video voice