CNA 150 - Module 3
VoIP traffic requires:
> Assured bandwidth to ensure voice quality > Transmission priority over other types of network traffic > Ability to be routed around congested areas on the network > Delay of less than 150 ms across the network
The following are characteristics of extended range VLANs:
> They are used by service providers to service multiple customers and by global enterprises large enough to need extended range VLAN IDs. > They are identified by a VLAN ID between 1006 and 4094. > Configurations are saved, by default, in the running configuration. > They support fewer VLAN features than normal range VLANs. > Requires VTP transparent mode configuration to support extended range VLANs.
Characteristics of normal range VLANs:
> They are used in all small- and medium-sized business and enterprise networks. > They are identified by a VLAN ID between 1 and 1005. > IDs 1002 through 1005 are reserved for legacy network technologies (i.e., Token Ring and Fiber Distributed Data Interface). > IDs 1 and 1002 to 1005 are automatically created and cannot be removed. > Configurations are stored in the switch flash memory in a VLAN database file called vlan.dat. > When configured, VLAN trunking protocol (VTP), helps synchronize the VLAN database between switches.
Canonical Format Identifier (CFI)
A 1-bit identifier that enables Token Ring frames to be carried across Ethernet links.
VLAN ID
A 12-bit VLAN identification number that supports up to 4096 VLAN IDs.
Type
A 2-byte value called the tag protocol ID (TPID) value. For Ethernet, it is set to hexadecimal 8x8100.
User priority
A 3-bit value that supports level or service implementation.
> It allows only VLAN 30 on Fa0/5.
A Cisco switch currently allows tagged with VLANs 10 and 20 across trunk port Fa0/5. What is the effect of issuing a switchport trunk allowed vlan 30 command on Fa0/5? > It allows VLANs 1 to 30 on Fa0/5. > It allows VLANs 10, 20, and 30 on Fa0/5. > It allows only VLAN 30 on Fa0/5. > It allows a native VLAN of 30 to be implemented on Fa0/5.
DTP (Dynamic Trunking Protocol)
A Cisco-proprietary protocol that negotiates both the status and encapsulation of trunk ports.
Voice VLAN
A VLAN for supporting VOIP.
Management VLAN
A data VLAN configured specifically for network management traffic.
> A switch with a port that is configured as a trunk is needed when connecting to the router.
A high school uses VLAN15 for the laboratory network and VLAN30 for the faculty network. What is required to enable communication between these two VLANs while using the router-on-a-stick approach? > A multilayer switch is needed. > A router with at least two LAN interfaces is needed. > Two groups of switches are needed, each with ports that are configured for one VLAN. > A switch with a port that is configured as a trunk is needed when connecting to the router.
> between two switches that utilize multiple VLANs > between a switch and a server that has an 802.1Q NIC
A network administrator is determining the best placement of VLAN trunk links. Which two types of point-to-point connections utilize VLAN trunking? (Choose two.) > between two switches that utilize multiple VLANs > between a switch and a client PC > between a switch and a server that has an 802.1Q NIC > between a switch and a network printer > between two switches that share a common VLAN
the VLAN assignment and membership for all switch ports
A network administrator issues the show vlan brief command while troubleshooting a user support ticket. What output will be displayed? > the VLAN assignment and membership for device MAC addresses > the VLAN assignment and membership for all switch ports > the VLAN assignment and trunking encapsulation > the VLAN assignment and native VLAN
> Only devices in VLAN 20 see the frame.
A network contains multiple VLANs spanning multiple switches. What happens when a device in VLAN 20 sends a broadcast Ethernet frame? > All devices in all VLANs see the frame. > Devices in VLAN 20 and the management VLAN see the frame. > Only devices in VLAN 20 see the frame. > Only devices that are connected to the local switch see the frame.
Trunk port
A switch port which carries traffic for multiple VLANs.
Access port
A switch port which carries traffic for only one VLAN.
> It allows data to flow in both directions at the same time on the interface.
A technician is configuring a new Cisco 2960 switch. What is the effect of issuing the Sw1(config-if)# duplex full command? > It encrypts user-mode passwords when users connect remotely. > It configures the switch as the default gateway. > It automatically adjusts the port to allow device connections to use either a straight-through or a crossover cable. > It allows data to flow in both directions at the same time on the interface. > It allows data to flow in only one direction at a time on the interface.
> It returns to global config mode.
A technician is configuring a new Cisco 2960 switch. What is the effect of issuing the Sw1(config-if)# exit command? > It enters user mode. > It returns to privileged mode. > It returns to global config mode. > It configures the default gateway for the switch.
> It applies an IPV6 address to the virtual interface.
A technician is configuring a new Cisco 2960 switch. What is the effect of issuing the Sw1(config-if)# ipv6 address 2001:db8:a2b4:88::1/64 command? > It applies an IPv4 address to the virtual interface. > It permits an IPv6 address to be configured on a switch physical interface. > It applies an IPv6 address to the virtual interface. > It updates the MAC address table for the associated port. > It activates a virtual or physical switch interface.
> It disables a virtual or physical switch interface.
A technician is configuring a new Cisco 2960 switch. What is the effect of issuing the Sw1(config-if)# shutdown command? > It permits an IPv6 address to be configured on a switch physical interface. > it updates the MAC address table for the associated port. > It applies an IPv6 address to the virtual interface > It disables a virtual or physical switch interface. > It applies an IPv4 address to the virtual interface.
> It enters privileged mode.
A technician is configuring a new Cisco 2960 switch. What is the effect of issuing the Sw1> enable command? > It enters privileged mode. > It enters the global configuration mode. > It enters configuration mode for a switch virtual interface. > It updates the MAC address table for the associated port. > It permits an IPv6 address to be configured on a switch physical interface.
switchport mode dynamic auto
Allows the port to negotiate DTP if the other side is set to trunk or desirable. Otherwise it will become an access port.
Switchport mode access
Always forces that port to be an access port with no VLAN tagging EXCEPT for the voice vlan. DTP is not used and a trunk will never be formed.
VLAN tag
An 802.1Q trunk port inserts a 4-byte tag in the Ethernet frame header to identify the VLAN to which the frame belongs.
> Switches from other vendors do not support DTP.
An administrator is investigating a failure on a trunk link between a Cisco switch from another vendor. After a few show commands, the administrator notices that the switches are not negotiating a trunk. What is a probable cause for this issue? > Both switches are in trunk mode. > Both switches are in nonegotiate mode. > Switches from other vendors do not support DTP. > DTP frames are flooding the entire network.
Data VLAN
Data VLANs are VLANs configured to separate user-generated data traffic. These separate the network into groups of users or devices.
VLAN1
Default VLAN - All switch ports are on VLAN1 unless otherwise configured.
True or False: DTP is an open standard IEEE protocol that specifies auto negotiation trunk links.
False
True or False: It is best practice to configure the native VLAN as VLAN1.
False
True or False: Two switchports on a link both configured as dynamic auto will successfully negotiate a trunk.
False
True or False If an 802.1Q trunk port receives an untagged frame with the VLAN ID that is the same as the native VLAN, it drops the frame.
False Control traffic sent on the native VLAN should NOT be tagged.
True or False: Voice and network management traffic should be on data VLAN's.
False Voice and network management should NOT be permitted on data VLANs.
True or False: An access port can belong to multiple data VLANs at a time.
False. An access port can belong to only ONE data VLAN at a time.
> A separate VLAN is needed for voice traffic.
If an organization is changing to include Cisco IP phones in its network, what design feature must be considered to ensure voice quality? > Voice traffic needs to be tagged with the native VLAN. > A separate VLAN is needed for voice traffic. > Additional switch ports that are dedicated to Cisco IP phones are required. > Voice traffic and data traffic require separate trunk links between switches.
> flash memory
In which location are the normal range VLANs stored on a Cisco switch by default? > flash memory > startup-config > running-config > RAM
> flash
In which memory location are VLAN configurations of normal range VLANs stored on a Catalyst switch? > flash > NVRAM > RAM > ROM
1. dynamic desirable = D. actively attempts to convert the link to a trunk 2. dynamic auto = B. passively waits for the neighbor to initiate trunking 3. nonegotiate = C. requires manual configuration of trunking or nontrunking 4. trunk = E. permanent trunking mode
Match the DTP mode with its function. (Not all options will be used.) 1. dynamic desirable 2. dynamic auto 3. nonegotiate 4. trunk A. permanent nontrunking mode B. passively waits for the neighbor to initiate trunking C. requires manual configuration of trunking or nontrunking. D. actively attempts to convert the link to a trunk. E. permanent trunking mode
1. Type = B. a value for the tag protocol ID value 2. VLAN ID = E. a VLAN number 3. User Priority = A. a value that supports level or service implementation. 4. Canonical Format Identifier = C. an identifier that enables Token Ring frames to be carried across Ethernet links.
Match the IEEE 802.1Q standard VLAN tag field with the description. (Not all options are used.) 1. Type 2. VLAN ID 3. User Priority 4. Canonical Format Identifier A. a value that supports level or service implementation B. a value for the tag protocol ID value C. an identifier that enables Token Ring frames to be carried across Ethernet links D. a value for the application protocol of the user data in the frame E. a VLAN number
> running configuration file
On a Cisco switch, where is extended range VLAN information stored? > running configuration file > startup configuration file > NVRAM > flash
> Switch(config)# no vlan 100
On a switch that is configured with multiple VLANs, which command will remove only VLAN 100 from the switch? > Switch# delete flash:vlan.dat > Switch(config-if)# no switchport access vlan 100 > Switch(config)# no vlan 100 > Switch(config-if)# no switchport trunk allowed vlan 100
> Port Fa0/11 will be returned to VLAN 1.
Port Fa0/11 on a switch is assigned to VLAN 30. If the command no switchport access vlan 30 is entered on the Fa0/11 interface, what will happen? > Port Fa0/11 will be shutdown. > An error message would be displayed. > Port Fa0/11 will be returned to VLAN 1. > VLAN 30 will be deleted.
switchport mode dynamic desirable
Pro-active DTP negotiation will begin and if the other-side is set to trunk, desirable, or auto. The interface will become a trunk. Otherwise the port will become an access port.
> PC3 > PC4 > PC6
Refer to the exhibit Topology. PC2 sends an ARP broadcast frame. Which PCs will receive the ARP broadcast frame? (Choose all that apply.) > PC1 > PC3 > PC4 > PC5 > PC6
> PC5
Refer to the exhibit Topology. PC3 sends an ARP broadcast frame. Which PC will receive the ARP broadcast frame? > PC1 > PC2 > PC4 > PC5 > PC6
> PC4
Refer to the exhibit topology. PC1 sends an ARP broadcast frame. Which PC will receive the ARP broadcast frame? > PC2 > PC3 > PC4 > PC5 >PC6
> switchport mode trunk
Refer to the exhibit. A network administrator has configured router CiscoVille with the above commands to provide inter-VLAN routing. What command will be required on a switch that is connected to the Gi0/0 interface on router CiscoVille to allow inter-VLAN routing? > switchport mode access > no switchport > switchport mode trunk > switchport mode dynamic desirable
> trunk port
Refer to the exhibit. A network administrator has configured router CiscoVille with the commands to provide inter-VLAN routing. What type of port will be required on a switch that is connected to Gi0/0 on router CiscoVille to allow inter-VLAN routing? > routed port > access port > trunk port > SVI
> IP addresses on the subinterfaces are incorrectly matched to the VLANs.
Refer to the exhibit. A network administrator is configuring RT1 for inter-VLAN routing. The switch is configured correctly and is functional. Host1, Host2, and Host3 cannot communicate with each other. Based on the router configuration, what is causing the problem? > Interface Fa0/0 is missing IP address configuration information. > IP addresses on the subinterfaces are incorrectly matched to VLANs. > Each subinterface of Fa0/0 needs separate no shutdown commands. > Routers do not support 802.1Q encapsulation on subinterfaces.
> They are configured as trunk interfaces.
Refer to the exhibit. A network administrator is reviewing port and VLAN assignments on switch S2 and notices that interfaces Gi0/1 and Gi0/2 are not included in the output. Why would the interfaces be missing from the output? > There is a native VLAN mismatch between the switches. > They are configured as trunk interfaces. > There is no media connected to the interfaces. > They are administratively shut down.
> The encapsulation dot1Q 5 command contains the wrong VLAN.
Refer to the exhibit. A network administrator is verifying the configuration of inter-VLAN routing. Users complain that PC2 cannot communicate with PC1. Based on the output, what is the possible cause of the problem? > Gi0/0 is not configured as a trunk port. > The command interface GigabitEthernet0/0.5 was entered incorrectly. > There is no IP address configured on the interface Gi0/0. > The no shutdown command is not entered on subinterfaces. > The encapsulation dot1Q 5 command contains the wrong VLAN.
> Gi1/1 is in the default VLAN. > Gi1/1 is configured as trunk mode.
Refer to the exhibit. A network administrator is verifying the configuration of inter-VLAN routing. Users complain that PCs on different VLANs cannot communicate. Based on the output, what are two configuration errors on switch interface Gi1/1? (Choose two.) > Gi1/1 is in the default VLAN. > Voice VLAN is not assigned to Gi1/1. > Gi1/1 is configured as trunk mode. > Negotiation of trunking is turned on, on Gi1/1. > The trunking encapsulation protocol is configured wrong.
> 4
Refer to the exhibit. A network administrator needs to configure router-on-a-stick for the networks that are shown. How many subinterfaces will have to be created on the router if each VLAN that is shown is to be routed and each VLAN has its own subinterface? > 1 > 2 > 3 > 4 > 5
> There is an incorrect IP address configured on GigabitEthernet 0/0.30.
Refer to the exhibit. A router-on-a-stick configuration was implemented for VLANs 15, 30, and 45, according to the show running-config command output. PCs on VLAN 45 that are using the 172.16.45.0 /24 network are having trouble connecting to PCs on VLAN 30 in the 172.16.30.0 /24 network. Which error is most likely causing this problem? > The wrong VLAN has been configured on GigabitEthernet 0/0.45. > The command no shutdown is missing on GigabitEthernet 0/0.30. > The GigabitEthernet 0/0 interface is missing an IP address. > The is an incorrect IP address configured on GigabitEthernet 0/0.30.
> The command used to assign the voice VLAN to the switch port is incorrect.
Refer to the exhibit. A technician is programming switch SW3 to manage voice and data traffic through port Fa0/20. What, if anything, is wrong with the configuration? > There is nothing wrong with the configuration. > Interface Fa0/20 can only have one VLAN assigned. > The mls qos trust cos command should reference VLAN 35. > The command used to assign the voice VLAN to the switch port is incorrect.
> Allow VLAN 20 on the trunk link.
Refer to the exhibit. All workstations are configured correctly in VLAN 20. Workstations that are connected to switch SW1 are not able to send traffic to workstations on SW2. What could be done to remedy the problem? Allow VLAN 20 on the trunk link. Enable DTP on both ends of the trunk. Configure all workstations on SW1 to be part of the default VLAN. Configure all workstations on SW2 to be part of the native VLAN.
> trunk
Refer to the exhibit. In what switch mode should port G0/1 be assigned if Cisco best practices are being used? > access > trunk > native > auto
> Interface G0/2 is not configured as a trunk.
Refer to the exhibit. PC1 is unable to communicate with server 1. The network administrator issues the show interfaces trunk command to begin troubleshooting. What conclusion can be made based on the output of this command? > Interface G0/2 is not configured as a trunk. > VLAN 20 has not been created. > The encapsulation on interface G0/1 is incorrect. > The DTP mode is incorrectly set to dynamic auto on interface G0/1.
> The encapsulation dot1Q 20 command has not been configured.
Refer to the exhibit. What is the cause of the error that is displayed in the configuration of inter-VLAN routing on router CiscoVille? The gig0/0 interface does not support inter-VLAN routing. The no shutdown command has not been configured. The IP address on CiscoVille is incorrect. The encapsulation dot1Q 20 command has not been configured.
Examples of network management traffic
SSH Telnet HTTPS HTTP SNMP
Set the port to permanent trunking mode.
Switchport mode trunk
Native VLAN
The one VLAN which travels a trunk port without a VLAN tag.
True or False: VLAN would not be very useful without VLAN trunks.
True VLAN trunks allow all VLAN traffic to propagate between switches and enables devices connected to different switches (but in the same VLAN) to communicate without a router.
switchport nonegotiate
Turns off DTP and forces the interface into a trunk.
> when connecting a Cisco switch to a non-Cisco switch > on links that should not be trunking
Under which two occasions should an administrator disable DTP while managing a local area network? > when connecting a Cisco switch to a non-Cisco switch > when a neighbor switch uses a DTP mode of dynamic auto > when a neighbor switch uses a DTP mode of dynamic desirable > on links that should not be trunking > on links that should dynamically attempt trunking
By default, all Layer 2 control traffic is associated with: __________________?
VLAN1
mls qos trust [cos | device cisco-phone | dscp | ip-precedence]
Voice traffic must be labeled as trusted as soon as it enters the network. Use the ____________________ interface configuration command to set the trusted state of an interface, and to indicate which fields of the packet are used to classify traffic.
> security > cost reduction > improved IT staff efficiency
What are three primary benefits of using VLANs? (Choose three.) > security > a reduction in a number of trunk lines > cost reduction > end user satisfaction > improved IT staff efficiency > no required configuration
> The port becomes inactive.
What happens to a port that is associated with VLAN 10 when the administrator deletes VLAN 10 from the switch? > The port becomes inactive. > The port goes back to the default VLAN. > The port automatically associates itself with the native VLAN. > The port creates the VLAN again.
> The ports stop communicating with the attached devices.
What happens to switch ports after the VLAN to which they are assigned is deleted? > The ports are disabled. > The ports stop communicating with the attached devices. > The ports are placed in trunk mode. > The ports are assigned to VLAN 1, the default VLAN.
> It is not assigned to a VLAN.
What is a characteristic of a routed port on a Layer 3 switch? > It supports trunking. > It is not assigned to a VLAN. > It is commonly used as a WAN link. > It cannot have an IP address assigned to it.
> dynamic auto
What is the default switchport mode for Cisco Catalyst switches. > access > trunk > dynamic auto > dynamic desirable
> A separate VLAN should be used to carry uncommon untagged frames to avoid bandwidth contention on data VLANs.
What is the purpose of setting the native VLAN separate from data VLANs? > The native VLAN is for carrying VLAN management traffic only. > The security of management frames that are carried in the native VLAN can be enhanced. > A separate VLAN should be used to carry uncommon untagged frames to avoid bandwidth contention on data VLANs. > The native VLAN is for routers and switches to exchange their management information, so it should be different from data VLANs.
> It holds the VLAN database.
What is the purpose of the vlan.dat file on a switch? > It holds the running configuration. > It holds the saved configuration. > It holds the VLAN database. > It holds the operating system.
> native VLAN ID
When a Cisco switch receives untagged frames on a 802.1Q trunk port, which VLAN ID is the traffic switched to by default? > unused VLAN ID > native VLAN ID > data VLAN ID > management VLAN ID
> A dedicated router is required. > Multiple subinterfaces may impact the traffic flow speed.
When routing a large number of VLANs, what are two disadvantages of using the router-on-a-stick inter-VLAN routing method rather than the multilayer switch inter-VLAN routing method? (Choose two.) > Multiple SVIs are needed. > A dedicated router is required. > Router-on-a-stick requires subinterfaces to be configured on the same subnets. > Router-on-a-stick requires multiple physical interfaces on a router. > Multiple subinterfaces may impact the traffic flow speed.
> in flash memory
Where is the vlan.dat file stored on a switch? > in RAM > in NVRAM > in flash memory > on the externally attached storage media or internal hard drive.
> show interfaces Fa0/1 switchport
Which command displays the encapsulation type, the voice VLAN ID, and the access mode VLAN for the Fa0/1 interface? > show vlan brief > show interfaces Fa0/1 switchport > show mac address-table interface Fa0/1 > show interfaces trunk
> management VLAN
Which distinct type of VLAN is used by an administrator to access and configure a switch? > default VLAN > native VLAN > data VLAN > management VLAN
> Assign the voice VLAN to the switch port. > Ensure that voice traffic is trusted and tagged with a CoS priority value. > Add a voice VLAN. > Configure the switch port in access mode.
Which four steps are needed to configure a voice VLAN on a switch port? (Choose four). > Configure the interface as an IEEE 802.1Q trunk. > Assign the voice VLAN to the switch port. > Activate spanning-tree PortFast on the interface. > Ensure that voice traffic is trusted and tagged with a CoS priority value. > Add a voice VLAN. > Configure the switch port interface with subinterfaces. > Assign a data VLAN to the switch port. > Configure the switch port in access mode.
All of these answers are correct.
Which is true of VLAN 1? > All ports are assigned to VLAN 1 by default. > The native VLAN is VLAN 1 by default. > The management VLAN is VLAN 1 by default. > VLAN 1 cannot be renamed or deleted.
> a high port density switch
Which solution would help a college alleviate network congestion due to collisions? > a firewall that connects to the two Internet providers > a high port density switch > a router with two Ethernet ports > a router with three Ethernet ports
> trunk > dynamic desirable
Which two DTP modes will form a trunk with an interface that is configured as dynamic auto? (Choose two.) > access > trunk > dynamic auto > dynamic desirable
> The native VLAN traffic will be untagged across the trunk link. > The native VLAN provides a common identifier to both ends of a trunk.
Which two characteristics describe the native VLAN? Designed to carry traffic that is generated by users, this type of VLAN is also known as the default VLAN. The native VLAN traffic will be untagged across the trunk link. This VLAN is necessary for remote management of a switch. High priority traffic, such as voice traffic, uses the native VLAN. The native VLAN provides a common identifier to both ends of a trunk.
> Switching packets is faster with SVI. > There is no need for a connection to a router.
Which two statements are correct with respect to SVI inter-VLAN routing? > Switching packets is faster with SVI. > There is no need for a connection to a router. > Virtual interfaces support subinterfaces. > SVIs can be bundled into EtherChannels. > SVIs eliminates the need for a default gateway in the hosts.
Native
Which type of VLAN is assigned to 802.1Q trunk ports to carry untagged traffic? > default > native > data > managment
Specify the list of VLANs to be allowed on the trunk link.
switchport trunk allowed vlan (vlan-list)
Sets the native VLAN to something other than VLAN 1.
switchport trunk native vlan (vlan-id)
switchport mode dynamic desirable
Command that re-enables dynamic trunking protocol.
show interfaces (interface-ID ) switchport
The switch output displays the configuration of switch port F0/1 on switch S1. The configuration is verified with the ____________________ command.
switchport mode trunk
This interface will always be a trunk no matter what happens on the other side. It will also use DTP to negotiate a neighboring interface that is set to dynamic desirable or dynamic auto into a trunk.
switchport mode trunk and switchport nonegotiate
To enable trunking from a Cisco switch to a device that does not support DTP, use the _____________________ and ___________________ interface configuration mode commands. This causes the interface to become a trunk, but it will not generate DTP frames.
True or False: The access port connected to the Cisco IP phone can be configured to use two separate VLANs.
True
True or False: VLANs can improve security by isolating sensitive data from the rest of the network.
True
True or False: VLANs improve network performance by segmenting broadcast domains.
True
