CIT 105 final exam
Which scenario describes a function provided by the transport layer?
A student has two web browser windows open in order to access two web sites. The transport layer ensures the correct web page is delivered to the correct browser window.
A client packet is received by a server. The packet has a destination port number of 53. What service is the client requesting?
DNS
Which type of server relies on record types such as A, NS, AAAA, and MX in order to provide services?
DNS
A new network administrator has been asked to enter a banner message on a Cisco device. What is the fastest way a network administrator could test whether the banner is properly configured?
Exit privileged EXEC mode and press Enter .
What mechanism is used by a router to prevent a received IPv4 packet from traveling endlessly on a network?
It decrements the value of the TTL field by 1 and if the result is 0, it discards the packet and sends a Time Exceeded message to the source host.
A network administrator is adding a new LAN to a branch office. The new LAN must support 90 connected devices. What is the smallest network mask that the network administrator can use for the new network?
255.255.255.128
A network administrator is adding a new LAN to a branch office. The new LAN must support 61 connected devices. What is the smallest network mask that the network administrator can use for the new network?
255.255.255.192
A network administrator is adding a new LAN to a branch office. The new LAN must support 25 connected devices. What is the smallest network mask that the network administrator can use for the new network?
255.255.255.224
A network administrator is adding a new LAN to a branch office. The new LAN must support 4 connected devices. What is the smallest network mask that the network administrator can use for the new network?
255.255.255.248
What service is provided by HTTP?
A basic set of rules for exchanging text, graphic images, sound, video, and other multimedia files on the web.
What is the consequence of configuring a router with the ipv6 unicast-routing global configuration command?
The IPv6 enabled router interfaces begin sending ICMPv6 Router Advertisement messages.
An IPv6 enabled device sends a data packet with the destination address of FF02::2. What is the target of this packet?
all IPv6 configured routers on the local link
store-and-forward switching
always stores entire frame checks the CRC before forwarding checks the frame length before forwarding
What characteristic describes a DoS attack?
an attack that slows or crashes a device or network service
What characteristic describes antispyware?
applications that protect end devices from becoming infected with malicious software
A client packet is received by a server. The packet has a destination port number of 110. What service is the client requesting?
POP3
A network administrator needs to keep the user ID, password, and session contents private when establishing remote CLI connectivity with a switch to manage it. Which access method should be chosen?
SSH
A disgruntled employee is using some free wireless networking tools to determine information about the enterprise wireless networks. This person is planning on using this information to hack the wireless network. What type of attack is this?
reconnaissance Explanation: A reconnaissance attack is the unauthorized discovery and documentation of various computing networks, network systems, resources, applications, services, or vulnerabilities.
Refer to the exhibit. If PC1 is sending a packet to PC2 and routing has been configured between the two routers, what will R1 do with the Ethernet frame header attached by PC1?
remove the Ethernet header and configure a new Layer 2 header before sending it out S0/0/0 Explanation: When PC1 forms the various headers attached to the data one of those headers is the Layer 2 header. Because PC1 connects to an Ethernet network, an Ethernet header is used. The source MAC address will be the MAC address of PC1 and the destination MAC address will be that of G0/0 on R1. When R1 gets that information, the router removes the Layer 2 header and creates a new one for the type of network the data will be placed onto (the serial link).
Which subnet would include the address 192.168.1.96 as a usable host address?
192.168.1.64/26 Explanation: For the subnet of 192.168.1.64/26, there are 6 bits for host addresses, yielding 64 possible addresses. However, the first and last subnets are the network and broadcast addresses for this subnet. Therefore, the range of host addresses for this subnet is 192.168.1.65 to 192.168.1.126. The other subnets do not contain the address 192.168.1.96 as a valid host address.
What would be the interface ID of an IPv6 enabled interface with a MAC address of 1C-6F-65-C2-BD-F8 when the interface ID is generated by using the EUI-64 process?
1E6F:65FF:FEC2:BDF8 Explanation: To derive the EUI-64 interface ID by using the MAC address 1C-6F-65-C2-BD-F8, three steps are taken. Change the seventh bit of the MAC address from a binary 0 to a binary 1 which changes the hex C, into a hex E. Insert hex digits FFFE into the middle of the address. Rewrite the address in IPv6 format. The three steps, when complete, give the interface ID of 1E6F:65FF:FEC2:BDF8.
What is the subnet ID associated with the IPv6 address 2001:DA48:FC5:A4:3D1B::1/64?
2001:DA48:FC5:A4::/64
A user is attempting to access http://www.cisco.com/ without success. Which two configuration values must be set on the host to allow this access? (Choose two.)
DNS server default gateway
A network administrator notices that some newly installed Ethernet cabling is carrying corrupt and distorted data signals. The new cabling was installed in the ceiling close to fluorescent lights and electrical equipment. Which two factors may interfere with the copper cabling and result in signal distortion and data corruption? (Choose two.)
RFI EMI
Match the application protocols to the correct transport protocols
TCP: FTP HTTP SMTP UDP: DHCP TFTP
A client packet is received by a server. The packet has a destination port number of 69. What service is the client requesting?
TFTP
What are two problems that can be caused by a large number of ARP request and reply messages? (Choose two.)
The ARP request is sent as a broadcast, and will flood the entire subnet. All ARP request messages must be processed by all nodes on the local network. Explanation: ARP requests are sent as broadcasts:(1) All nodes will receive them, and they will be processed by software, interrupting the CPU.(2) The switch forwards (floods) Layer 2 broadcasts to all ports. A switch does not change its MAC table based on ARP request or reply messages. The switch populates the MAC table using the source MAC address of all frames. The ARP payload is very small and does not overload the switch.
Refer to the exhibit. An administrator is trying to configure the switch but receives the error message that is displayed in the exhibit. What is the problem?
The administrator must first enter privileged EXEC mode before issuing the command.
Refer to the exhibit. Host B on subnet Teachers transmits a packet to host D on subnet Students. Which Layer 2 and Layer 3 addresses are contained in the PDUs that are transmitted from host B to the router?
Layer 2 destination address = 00-00-0c-94-36-abLayer 2 source address = 00-00-0c-94-36-bbLayer 3 destination address = 172.16.20.200Layer 3 source address = 172.16.10.200
What service is provided by BOOTP?
Legacy application that enables a diskless workstation to discover its own IP address and find a BOOTP server on the network.
What is an advantage for small organizations of adopting IMAP instead of POP?
Messages are kept in the mail servers until they are manually deleted from the email client. Explanation: IMAP and POP are protocols that are used to retrieve email messages. The advantage of using IMAP instead of POP is that when the user connects to an IMAP-capable server, copies of the messages are downloaded to the client application. IMAP then stores the email messages on the server until the user manually deletes those messages.
Which two statements accurately describe an advantage or a disadvantage when deploying NAT for IPv4 in a network? (Choose two.)
NAT introduces problems for some applications that require end-to-end connectivity. NAT provides a solution to slow down the IPv4 address depletion.
What are two ICMPv6 messages that are not present in ICMP for IPv4? (Choose two.)
Neighbor Solicitation Router Advertisement
Refer to the exhibit. PC1 issues an ARP request because it needs to send a packet to PC2. In this scenario, what will happen next?
PC2 will send an ARP reply with the PC2 MAC address. Explain: When a network device wants to communicate with another device on the same network, it sends a broadcast ARP request. In this case, the request will contain the IP address of PC2. The destination device (PC2) sends an ARP reply with its MAC address.
Refer to the exhibit. The IP address of which device interface should be used as the default gateway setting of host H1?
R1: G0/0
What does the term "attenuation" mean in data communication?
loss of signal strength as distance increases Explanation: Data is transmitted on copper cables as electrical pulses. A detector in the network interface of a destination device must receive a signal that can be successfully decoded to match the signal sent. However, the farther the signal travels, the more it deteriorates. This is referred to as signal attenuation
cut-through switching
low latency may forward runt frames begins forwarding when destination address is recived
What characteristic describes a Trojan horse?
malicious software or code running on an end device
Which frame field is created by a source node and used by a destination node to ensure that a transmitted data signal has not been altered by interference, distortion, or signal loss?
frame check sequence field
This is the portion of the address assigned by the provider
global routing prefix
Which two functions are performed at the MAC sublayer of the OSI Data Link Layer to facilitate Ethernet communication? (Choose two.)
implements trailer with frame check sequence for error detection implements a process to delimit fields within an Ethernet 2 frame
What are two common causes of signal degradation when using UTP cabling? (Choose two.)
improper termination low-quality cable or connectors Explanation: When terminated improperly, each cable is a potential source of physical layer performance degradation.
This part of the address is the equivalent to the host portion of an IPv4 address.
interface ID (IPv6)
A network administrator is designing the layout of a new wireless network. Which three areas of concern should be accounted for when building a wireless network? (Choose three.)
interference security coverage area Explanation: The three areas of concern for wireless networks focus on the size of the coverage area, any nearby interference, and providing network security. Extensive cabling is not a concern for wireless networks, as a wireless network will require minimal cabling for providing wireless access to hosts. Mobility options are not a component of the areas of concern for wireless networks.
Which layer of the TCP/IP model provides a route to forward messages through an internetwork?
internet
What command can be used on a Windows PC to see the IP configuration of that computer?
ipconfig
What are proprietary protocols?
protocols developed by organizations who have control over their definition and operation
An employee of a large corporation remotely logs into the company using the appropriate username and password. The employee is attending an important video conference with a customer concerning a large sale. It is important for the video quality to be excellent during the meeting. The employee is unaware that after a successful login, the connection to the company ISP failed. The secondary connection, however, activated within seconds. The disruption was not noticed by the employee or other employees.What three network characteristics are described in this scenario? (Choose three.)
security quality of service fault tolerance
During the process of forwarding traffic, what will the router do immediately after matching the destination IP address to a network on a directly connected routing table entry?
switch the packet to the directly connected interface
Which two functions are performed at the LLC sublayer of the OSI Data Link Layer to facilitate Ethernet communication? (Choose two.)
enables IPv4 and IPv6 to utilize the same physical medium places information in the Ethernet frame that identifies which network layer protocol is being encapsulated by the frame
What characteristic describes a virus?
malicious software or code running on an end device
What three requirements are defined by the protocols used in network communcations to allow message transmission across a network? (Choose three.)
message size message encoding delivery options
A wired laser printer is attached to a home computer. That printer has been shared so that other computers on the home network can also use the printer. What networking model is in use?
peer-to-peer (P2P)
Which two protocols operate at the top layer of the TCP/IP protocol suite? (Choose two.)
POP DNS
What is a function of the data link layer?
provides for the exchange of frames over a common local media
Refer to the exhibit. Which protocol was responsible for building the table that is shown?
ARP Explanation: The table that is shown corresponds to the output of the arp -a command, a command that is used on a Windows PC to display the ARP table.
What service is provided by SMTP?
Allows clients to send email to a mail server and the servers to send email to other servers.
What service is provided by FTP?
Allows for data transfers between a client and a file server.
What service is provided by Internet Messenger?
An application that allows real-time chatting among remote users.
What method is used to manage contention-based access on a wireless network?
CSMA/CA
Which two statements describe how to assess traffic flow patterns and network traffic types using a protocol analyzer? (Choose two.)
Capture traffic during peak utilization times to get a good representation of the different traffic types. Perform the capture on different network segments. Explanation: Traffic flow patterns should be gathered during peak utilization times to get a good representation of the different traffic types. The capture should also be performed on different network segments because some traffic will be local to a particular segment.
What happens when the transport input ssh command is entered on the switch vty lines?
Communication between the switch and remote users is encrypted. Explanation: The transport input ssh command when entered on the switch vty (virtual terminal lines) will encrypt all inbound controlled telnet connections.
An administrator defined a local user account with a secret password on router R1 for use with SSH. Which three additional steps are required to configure R1 to accept only encrypted SSH connections? (Choose three.)
Configure the IP domain name on the router. Generate the SSH keys. Enable inbound vty SSH sessions.
A client packet is received by a server. The packet has a destination port number of 67. What service is the client requesting?
DHCP
Match the firewall function to the type of threat protection it provides to the network. (Not all options are used.)
Explain:Firewall products come packaged in various forms. These products use different techniques for determining what will be permitted or denied access to a network. They include the following: + Packet filtering - Prevents or allows access based on IP or MAC addresses+ Application filtering - Prevents or allows access by specific application types based on port numbers+ URL filtering - Prevents or allows access to websites based on specific URLs or keywords+ Stateful packet inspection (SPI) - Incoming packets must be legitimate responses to requests from internal hosts. Unsolicited packets are blocked unless permitted specifically. SPI can also include the capability to recognize and filter out specific types of attacks, such as denial of service (DoS)
Match the network with the correct IP address and prefix that will satisfy the usable host addressing requirements for each network.
Explanation: Network A needs to use 192.168.0.128 /25, which yields 128 host addresses.Network B needs to use 192.168.0.0 /26, which yields 64 host addresses.Network C needs to use 192.168.0.96 /27, which yields 32 host addresses.Network D needs to use 192.168.0.80/30, which yields 4 host addresses.
Refer to the exhibit. Match the network with the correct IP address and prefix that will satisfy the usable host addressing requirements for each network. (Not all options are used.)
Explanation:Network A needs to use 192.168.0.0 /25 which yields 128 host addresses.Network B needs to use 192.168.0.128 /26 which yields 64 host addresses.Network C needs to use 192.168.0.192 /27 which yields 32 host addresses.Network D needs to use 192.168.0.224 /30 which yields 4 host addresses.
Which range of link-local addresses can be assigned to an IPv6-enabled interface?
FE80::/10 Explain:Link-local addresses are in the range of FE80::/10 to FEBF::/10. The original IPv6 specification defined site-local addresses and used the prefix range FEC0::/10, but these addresses were deprecated by the IETF in favor of unique local addresses. FDEE::/7 is a unique local address because it is in the range of FC00::/7 to FDFF::/7. IPv6 multicast addresses have the prefix FF00::/8.
A client packet is received by a server. The packet has a destination port number of 80. What service is the client requesting?
HTTP
What are two features of ARP? (Choose two.)
If a host is ready to send a packet to a local destination device and it has the IP address but not the MAC address of the destination, it generates an ARP broadcast. If a device receiving an ARP request has the destination IPv4 address, it responds with an ARP reply.
A host is trying to send a packet to a device on a remote LAN segment, but there are currently no mappings in its ARP cache. How will the device obtain a destination MAC address?
It will send an ARP request for the MAC address of the default gateway.
What service is provided by DNS?
Resolves domain names, such as cisco.com, into IP addresses.
What service is provided by POP3?
Retrieves email from the server by downloading the email to the local mail application of the client.
A technician with a PC is using multiple applications while connected to the Internet. How is the PC able to keep track of the data flow between multiple application sessions and have each application receive the correct packet flows?
The data flow is being tracked based on the source port number that is used by each application. Explanation: The source port number of an application is randomly generated and used to individually keep track of each session connecting out to the Internet. Each application will use a unique source port number to provide simultaneous communication from multiple applications through the Internet.
What will happen if the default gateway address is incorrectly configured on a host?
The host cannot communicate with hosts in other networks.
The global configuration command ip default-gateway 172.16.100.1 is applied to a switch. What is the effect of this command?
The switch can be remotely managed from a host on another network Explanation: A default gateway address is typically configured on all devices to allow them to communicate beyond just their local network.In a switch this is achieved using the command ip default-gateway <ip address>.
Refer to the exhibit. What three facts can be determined from the viewable output of the show ip interface brief command? (Choose three.)
The switch can be remotely managed. One device is attached to a physical interface. The default SVI has been configured.
Refer to the exhibit. On the basis of the output, which two statements about network connectivity are correct? (Choose two.)
There are 4 hops between this device and the device at 192.168.100.1. There is connectivity between this device and the device at 192.168.100.1. Explain:The output displays a successful Layer 3 connection between a host computer and a host at 19.168.100.1. It can be determined that 4 hops exist between them and the average transmission time is 1 milliseconds. Layer 3 connectivity does not necessarily mean that an application can run between the hosts.
Which type of security threat would be responsible if a spreadsheet add-on disables the local software firewall?
Trojan horse Explanation: A Trojan horse is software that does something harmful, but is hidden in legitimate software code. A denial of service (DoS) attack results in interruption of network services to users, network devices, or applications. A brute-force attack commonly involves trying to access a network device. A buffer overflow occurs when a program attempts to store more data in a memory location than it can hold.
What are the two most effective ways to defend against malware? (Choose two.)
Update the operating system and other application software. Install and update antivirus software. Explanation: A cybersecurity specialist must be aware of the technologies and measures that are used as countermeasures to protect the organization from threats and vulnerabilities.
What service is provided by HTTPS?
Uses encryption to secure the exchange of text, graphic images, sound, and video on the web.
Which two traffic types use the Real-Time Transport Protocol (RTP)? (Choose two.)
Video and Voice
Which type of server relies on record types such as A, NS, AAAA, and MX in order to provide services?
ZigBee
What are two primary responsibilities of the Ethernet MAC sublayer? (Choose two.)
accessing the media data encapsulation
Which three layers of the OSI model map to the application layer of the TCP/IP model? (Choose three.)
application session presentation Explanation: The TCP/IP model consists of four layers: application, transport, internet, and network access. The OSI model consists of seven layers: application, presentation, session, transport, network, data link, and physical. The top three layers of the OSI model: application, presentation, and session map to the application layer of the TCP/IP model.
Refer to the exhibit. If Host1 were to transfer a file to the server, what layers of the TCP/IP model would be used?
application, transport, Internet, and network access layers
What characteristic describes antivirus software?
applications that protect end devices from becoming infected with malicious software
Three bank employees are using the corporate network. The first employee uses a web browser to view a company web page in order to read some announcements. The second employee accesses the corporate database to perform some financial transactions. The third employee participates in an important live audio conference with other corporate managers in branch offices. If QoS is implemented on this network, what will be the priorities from highest to lowest of the different data types?
audio conference, financial transactions, web page
A company has a file server that shares a folder named Public. The network security policy specifies that the Public folder is assigned Read-Only rights to anyone who can log into the server while the Edit rights are assigned only to the network admin group. Which component is addressed in the AAA network service framework?
authorization After a user is successfully authenticated (logged into the server), the authorization is the process of determining what network resources the user can access and what operations (such as read or edit) the user can perform.
What are two characteristics of IP? (Choose two.)
does not require a dedicated end-to-end connection operates independently of the network media Explain:The Internet Protocol (IP) is a connectionless, best effort protocol. This means that IP requires no end-to-end connection nor does it guarantee delivery of packets. IP is also media independent, which means it operates independently of the network media carrying the packets.
A technician can ping the IP address of the web server of a remote company but cannot successfully ping the URL address of the same web server. Which software utility can the technician use to diagnose the problem?
nslookup Explain:Traceroute (tracert) is a utility that generates a list of hops that were successfully reached along the path from source to destination.This list can provide important verification and troubleshooting information. The ipconfig utility is used to display the IP configuration settings on a Windows PC. The Netstat utility is used to identify which active TCP connections are open and running on a networked host. Nslookup is a utility that allows the user to manually query the name servers to resolve a given host name. This utility can also be used to troubleshoot name resolution issues and to verify the current status of the name servers.
A group of Windows PCs in a new subnet has been added to an Ethernet network. When testing the connectivity, a technician finds that these PCs can access local network resources but not the Internet resources. To troubleshoot the problem, the technician wants to initially confirm the IP address and DNS configurations on the PCs, and also verify connectivity to the local router. Which three Windows CLI commands and utilities will provide the necessary information? (Choose three.)
ping ipconfig nslookup
What characteristic describes adware?
software that is installed on a user device and collects information about the user
What characteristic describes spyware?
software that is installed on a user device and collects information about the user
When a switch configuration includes a user-defined error threshold on a per-port basis, to which switching method will the switch revert when the error threshold is reached?
store-and-forward
Which switching method drops frames that fail the FCS check?
store-and-forward switching
This part of the address is used by an organization to identify subnets.
subnet ID
What are the three parts of an IPv6 global unicast address? (Choose three.)
subnet ID global routing prefix interface ID
What is the purpose of the TCP sliding window?
to request that a source decrease the rate at which it transmits data
What two security solutions are most likely to be used only in a corporate environment? (Choose two.)
virtual private networks intrusion prevention systems