CCNP SWITCH
What are the 4 ways to learn about networks?
1) Directly Connected 2) Dynamic Routing Protocols 3) Static Routes 4) Default Routes
What two processes need to be enabled in order for a MLS to make forwarding decisions based on IP addresses?
1) ip routing must be enabled, it is disabled by default 2) a Layer 3 address needs to be created so that end user devices can use it as a default gateway
What is the two step logic for Cisco switches to choose the speed when autonegotiation fails?
1. Speed: Sense the speed (w/o autonegotiation), but if it fails, use the IEEE default (slowest supported speed, often 10 Mbps.) 2. Duplex: Use the IEEE defaults: If speed = 10 or 100, use half duplex; otherwise, use full duplex.
A switch's port Gi0/1 has been correctly enabled with port security. The config sets the violation mode to restrict. A frame that violates the port security policy enters the interface, followed by a frame that does not. What correctly describes what happens in this scenario?
1. The switch generates syslog messages about the violating traffic for the first frame. 2. The switch increments the violation counter for Gi0/1 by 1.
Describe a Multi-Layer Switch (MLS).
A MLS is a device that can make forwarding decisions based on Layer 2 MAC addresses and Layer 3 IP addresses.
What is a switch?
A device which is used to connect multiple computers inside LAN.
Switches collect MAC addresses using what ?
ARP ( Address Resolution Protocol)
What is the default setting for all ports on a switch?
All ports are enabled by default
autonegotiation
An IEEE standard mechanism (802.3u) with which two nodes can exchange messages for the purpose of choosing to use the same Ethernet standards on both ends of the link, ensuring that the link functions and functions well.
half-duplex
Any communication in which only one device at a time can send data. In Ethernet LAns, the normal result of the CSMA/CD algorithm that enforces the rule that only one device should send at any point in time.
full duplex
Any communication in which two communication devices can concurrently send and receive data. In Ethernet LANs, the allowance for both devices to send and receive at the same time, allowed when both devices disable their CSM/CD logic.
What describes a way to disable IEEE standard autonegotiation on a 10/100 port on a Cisco switch?
Configure the speed 100 and duplex full interface subcommands
CAM stands for?
Content Addressable Memory
What is required when configuring port security with sticky learning?
Enabling port security with the switchport port-security interface subcommand.
A Cisco switch connect w/ its G0/1 port to an end user's PC. The end user, thinking the user is helping, manually sets the PC's OS to use a speed of 1000Mbps and to use full duplex, and disables the use of autonegotion. The switch's G0/1 port has default settings for speed and duplex. What speed and duplex settings with the switch decide to use?
Full Duplex 1000 Mbps
What must be enabled on a switch if you want to send traffic from one end device to another using an SVI?
IP Routing; which is configured with the following command: S1(config)#ip routing
In which mode of the CLI could you configure the duplex setting for interface Fast Ethernet 0/5?
Interface configuration mode
Port security
Interface level security- allows you to configure multiple security features
What does the "S1(config)#interface VLAN xx" command do?
It creates a Layer 3 logical interface interface that lives within the specified VLAN. An IP address can be assigned to this logical interface
What does a Layer 2 switch use the "S1(config)#interface VLAN xx" command for?
It creates a logical interface for the purposes of remote management. Layer 2 switches do not support the routing of traffic between VLANs. Only MLS allow multiple VLAN interfaces, as well as support the ip routing between those Layer 3 interfaces
What is a Switch Virtual Interface?
It's a logical interface associated with an existing VLAN for the purpose of routing traffic between VLANs.
Types of switches?
Layer 2 switches and layer 3 switches (multi-layer switches)
What is the job of a layer 2 and layer 3 switches?
Layer 2 switches forward frame packets using mac addresses. Layer 3 switches route using IP addresses.
Functions of switches
Learning: Learning Mac Addresses using ARP messages and storing them in CAM table Forwarding: passing network traffic to a device connected to one port of a Network Switch to another device connected to another port on the switch. Preventing Layer 2 Switching Loops: Redundant links are created in a practical settings, switches prevent switching loops and broadcast storms
What are three other terms used for a Switch Virtual Interface (SVI)?
Logical Interface Management Interface Interface VLAN
MAC stands for?
Media Access Control
How do you configure a Switch Virtual Interface?
S1(config)#interface VLAN XX S1(config-if)#ip address 192.168.1.1 255.255.255.0
Flooding
Switches Forward Ethernet frame through all its ports except the source port
What must the end user device use as its default gateway if it is using an SVI to route traffic?
The end user device use the IP address of the SVI as its default gateway.
What happens when auto negotiation fails for the Ethernet interface on Cisco device?
The interface will attempt to sense the link speed, if possible, if not the slowest link speed supported on the interface is used (around 10 Mbps) If the link speed selected is 10 Mbps or 100 Mbps, half-duplex is used. If its 1000 Mbps, full-duplex is used.
What must you consider if you manually configure the speed or duplex settings?
it disables auto-MDIX, so you must use the correct cable.
Lists detailed status and statistical information about all interfaces (or the listed interface only)
show interfaces [interface (type number)]
Lists the dynamically learned entries in the switch's address (forwarding) table
show mac address-table dynamic [interface (type number)]
Lists MAC addresses defined or learned on ports configured with port security.
show mac address-table secure [interface type number]
Lists static MAC addresses and MAC addresses learned or defined with port security
show mac address-table static [interface (type number)]
Lists one line per interface that summarizes the port security settings for any interface on which it is enabled.
show port-security
Lists an interface's port security config settings and security operational status.
show port-security interface (type number)
Interface config mode command that tells the switch to always be an access port, or always be a trunk port.
switchport mode {access | trunk}
Interface config mode command that statistically adds a specific MAC address as an allowed MAC address on the interface
switchport port-security mac-address (mac-address)
Interface subcommand that tells the switch to learn MAC addresses on the interface and add them to the config for the interface as secure MAC addresses.
switchport port-security mac-address sticky
Interface subcommand that sets the maximum number of static secure MAC addresses that can be assigned to a single interface
switchport port-security maximum (value)
Interface subcommand that tells the switch what to do if an inappropriate MAC address tries to access the network through a secure switch port.
switchport port-security violation {protect | restrict | shutdown}