CCNA2 Chapter 3 Exam
What are three primary benefits of using VLANs? (Choose three.)
*security *improved IT staff efficiency *cost reduction
What VLANs are allowed across a trunk when the range of allowed VLANs is set to the default value?
All VLANs will be allowed across the trunk.
What must the network administrator do to remove Fast Ethernet port fa0/1 from VLAN 2 and assign it to VLAN 3?
Enter the switchport access vlan 3 command in interface configuration mode.
Refer to the exhibit. What can be determined from the output that is shown?
Interface FastEthernet 0/1 is configured with the switchport protected command.
Open the PT Activity. Perform the tasks in the activity instructions and then answer the question. Which PCs will receive the broadcast sent by PC-C?
PC-D, PC-E
Which switch feature ensures that no unicast, multicast, or broadcast traffic is passed between ports that are configured with this feature?
PVLAN protected port.
What happens to a port that is associated with VLAN 10 when the administrator deletes VLAN 10 from the switch?
The port goes back to the default VLAN.
Place the options in the following order:
dynamic auto nonegotiate dynamic desirable trunk
Which type of VLAN is used to designate which traffic is untagged when crossing a trunk port?
native
Which command is used to remove only VLAN 20 from a switch?
no vlan 20
Fill in the blank. Use the full command syntax. The ___________________ command displays the VLAN assignment for all ports as well as the existing VLANs on the switch.
"show vlan brief"
Match the IEEE 802.1Q standard VLAN tag field in the description. (not all options are used) Place the options in the following order:
User Priority - value that supports level or service implementation Type - value for the tag protocol ID value Canonical Format Identifier - identifier that enables Token Ring frames to be carried across Ethernet Links - not scored - -value for the application protocol of the user data in a frame VLAN ID - VLAN number
Refer to the exhibit. DLS1 is connected to another switch, DLS2, via a trunk link. A host that is connected to DLS1 is not able to communicate to a host that is connected to DLS2, even though they are both in VLAN 99. Which command should be added to Fa0/1 on DLS1 to correct the problem?
switchport trunk native vlan 66.
In a basic VLAN hopping attack, which switch feature do attackers take advantage of?
the default automatic trunking configuration.
Which three statements accurately describe VLAN types? (Choose three).
*An 802.1Q trunk port, with a native VLAN assigned, supports both tagged and untagged traffic. *A management VLAN is any VLAN that is configured to access management features of the switch. *After the initial boot of an unconfigured switch, all ports are members of the default VLAN.
Which two statements are true about VLAN implementation? (Choose two.)
*Devices in one VLAN do not hear the broadcasts from devices in another VLAN. *VLANs logically group hosts, regardless of physical location.
Which two Layer 2 security best practices would help prevent VLAN hopping attacks? (Choose two.)
*Disable DTP autonegotiation on end-user ports. *Change the native VLAN number to one that is distinct from all user VLANs and is not VLAN 1.
Which two characteristics match extended range VLANs? (Choose two.)
*They are saved in the running-config file by default. *VLAN IDs exist between 1006 to 4094.
A network administrator is determining the best placement of VLAN trunk links. Which two types of point-to-point connections utilize VLAN trunking? (Choose two.)
*between a switch and a server that has an 802.1Q NIC *between two switches that utilize multiple VLANs
Under which two occasions should an administrator disable DTP while managing a local area network? (Choose two.)
*on links that should not be trunking. *when connecting a Cisco switch to a non-Cisco switch.
Which two modes does Cisco recommend when configuring a particular switch port? (Choose two.)
*trunk *access
Refer to the exhibit. Interface Fa0/1 is connected to a PC. Fa0/2 is a trunk link to another switch. All other ports are unused. Which security best practice did the administrator forget to configure?
All user ports are associated with VLANs distinct from VLAN 1 and distinct from the "black-hole" VLAN.
A Cisco Catalyst switch has been added to support the use of multiple VLANs as part of an enterprise network. The network technician finds it necessary to clear all VLAN information from the switch in order to incorporate a new network design. What should the technician do to accomplish this task?
Delete the startup configuration and the vlan.dat file in the flash memory of the switch and reboot the switch.
A Cisco switch currently allows traffic tagged with VLANs 10 and 20 across trunk port Fa0/5. What is the effect of issuing a switchport trunk allowed vlan 30 command on Fa0/5?
It allows only VLAN 30 on Fa0/5.
Refer to the exhibit. A frame is traveling between PC-A and PC-B through the switch. Which statement is true concerning VLAN tagging of the frame?
No VLAN tag is added to the frame.
Port Fa0/11 on a switch is assigned to VLAN 30. If the command no switchport access vlan 30 is entered on the Fa0/11 interface, what will happen?
Port Fa0/11 will be returned to VLAN 1.
Which command should the network administrator implement to prevent the transfer of DTP frames between a Cisco switch and a non-Cisco switch?
S1(config-if)# switchport nonegotiate
Refer to the exhibit. PC-A and PC-B are both in VLAN 60. PC-A is unable to communicate with PC-B. What is the problem?
The VLAN that is used by PC-A is not in the list of allowed VLANs on the trunk.
What happens to switch ports after the VLAN to which they are assigned is deleted?
The ports stop communicating with the attached devices.
What is the effect of issuing a switchport access vlan 20 command on the Fa0/18 port of a switch that does not have this VLAN in the VLAN database?
VLAN 20 will be created automatically.
An administrator has determined that the traffic from a switch that corresponds to a VLAN is not being received on another switch over a trunk link. What could be the problem?
allowed VLANs on trunks.
Which combination of DTP modes set on adjacent Cisco switches will cause the link to become an access link instead of a trunk link?
dynamic auto - dynamic auto
What is the default DTP mode on Cisco 2960 and 3560 switches?
dynamic auto.
Which command displays the encapsulation type, the voice VLAN ID, and the access mode VLAN for the Fa0/1 interface?
show interfaces Fa0/1 switchport.
