CH 9: TCP/IP Internetworking II

In an IPv6 global unicast address, the interface ID is ________ bits long.

64

Your firm has an 8-bit network part. If you need at least 200 subnets, what must your subnet part size be?

8

NAT ________. A) allows a firm to have more internal IP addresses B) reduces cost C) both A and B D) neither A nor B

A) allows a firm to have more internal IP addresses

Which of the following would be an SNMP object? A) number of rows in routing table B) system uptime (since last reboot) C) both A and B D) neither A nor B

C) both A and B

Convert the following EUI-48 address to a modified EUI-64 address: AA-00-00-FF-FF-00.

ae00:00ff:feff:ff0

If your subnet part is 7 bits long, how many subnets can you have?

none of the above

In the Border Gateway Protocol, "gateway" means ________.

router

Dynamic ________ protocols allow routers to transmit routing table information to one another.

routing

Corporations wish to have ________ domain names.

second-level

In IPsec, agreements about how security will be done are called ________.

security associations

The SA is negotiated in the ________.

IKE phase

Which of the following is used in ESP? A) ESP header B) ESP trailer C) Integrity check value D) all of the above

all of the above

Your subnet part is 8 bits long. How many hosts can you have per subnet?

254

Your firm has a 22-bit network part. What subnet part would you select to give at least 10 subnets?

4 bits

Which of the following is a private IP address range?

10.x.x.x

Which is a type of top-level domain?

generic TLD

Which of the following IPv4 addresses would be used for Internet transmission?

128.171.x.x

If the subnet ID in an IPv6 address is 32 bits, how long is the routing prefix?

32 bits

In IP subnet planning, you need to have at least 130 subnets. How large should your subnet part be?

8

Which of the following would be an SNMP object? A) number of rows in routing table B) a managed switch C) both A and B D) neither A nor B

Number of rows in routing table

An advantage of using DHCP to configure clients is that ________.

the configuration information will be up-to-date

In transport mode, ESP fields surround an IPv4 packet's ________.

data field

ICMP is used for ________.

error messages

Which protects more of the original IP packet?

tunnel mode

Which of the following would be an SNMP interface object?

whether the interface is undergoing testing

Your firm has a 22-bit network part and a 6-bit subnet part. How many hosts can you have per subnet?

14

If your subnet part is 8 bits long, you can have ________ subnets.

254

You have a 20-bit network part and a 4-bit subnet part. How many hosts can you have per subnet?

254

The DNS ________ record is for the host name's ________ address A) A; IPv4 B) A; IPv6 C) AAAA; IPv4 D) none of the above

A; IPv4

The DNS ________ record is for the host name's ________ address A) AAAA; IPv4 B) AAAA; IPv6 C) both A and B D) neither A nor B

AAAA; IPv6

Companies get second-level domains from ________.

domain registrars

Pinging is to send ICMP ________ messages to the target host.

echo request

In tunnel mode, ESP fields surround an IPv4 packet's ________.

entire length

A step in creating an EUI-64 is dividing a 48-bit MAC address in half and inserting ________ in the center.

fffe

In NAT, the ________ creates new external source IP addresses and port numbers.

firewall

Which is NOT one of the three parts of a public IPv6 unicast address?

host part

A company is free to select whatever ________ dynamic routing protocol it wishes.

interior

For a particular domain name, a DNS server will have ________.

multiple records

The almost-universal exterior dynamic routing protocol is ________. A) EIGRP B) OSPF C) both A and B D) neither A nor B

neither A nor B

The routing prefix in IPv6 is like the ________ part in an IPv4 address.

network

NAT enhances security by ________.

preventing sniffers from learning internal IP addresses

You need to use EIGRP if ________.

some of your traffic is TCP/IP traffic

What field in an IPv6 global unicast address corresponds to the subnet part of an IPv4 address?

subnet ID

If the local DNS server does not know an IP address and must contact a remote DNS server, which DNS server will return the response to the client?

the local DNS server

".com" is a ________.

top-level domain

".edu" is a ________.

top-level domain

In IPv6, ESP protects the IP packet's_____.. A) entire length B) payload C) header D) none of the above

D) none of the above

Which of the following can route non-IP packets?

EIGRP

Which of the following is more widely used?

ESP

The IEEE calls a 64-bit interface addresses that it designed a(n) ________ address.

Extended Unique Identifier-64

NAT is transparent to all applications.

False

Good security is an enabler if a company wishes to use SNMP ________ commands.

Get

The first stage of IPsec uses the ________ protocol.

IKE

Which has stronger security?

IPSec

In remote access VPNs, IPsec has an ________ at the corporate site.

IPsec gateway

SA protections are applied in the ________.

IPsec protection

________ is the process of presenting external IP addresses that are different from internal IP addresses used within the firm.

NAT

________ is an interior dynamic routing protocol.

OSPF

The highest-level DNS servers are called ________.

Root servers

Which is less expensive to implement?

SSL/TLS

Options for major cryptographic methods are sometimes unacceptably weak and must be prohibited.

True

In SNMP, the manager communicates directly with a(n) ________.

agent

Ping is for ________ messages.

supervisory

If your routing prefix is 16 bits, how long is your subnet ID?

48 bits

A company has a domain name. What else must it have before it can make a website available to the public? A) a DNS server to host its domain name B) the website itself C) both A and B D) neither A nor B

C) both A and B

NAT ________. A) allows a firm to have more internal IP addresses B) provides some security C) both A and B D) neither A nor B

C) both A and B

The domain name system ________. A) is a way to find a host's IP addresses if your computer only knows the host's host name B) is a general naming system for the Internet C) both A and B D) neither A nor B

C) both A and B

________ is a general naming system for the Internet.

DNS

For an internal client to use NAT to communicate with an external webserver, the client must be configured to do so.

False

In SNMP, companies are often reluctant to use ________ commands because of security dangers.

Set

IPsec protects ________ layer content.

application

SAs in two directions ________.

are sometimes different

In a large company, you want ________.

as small a routing prefix as you can have

What security concern do ICMP echo request messages and echo response messages bring?

attackers can learn that the other host's IP address is in use

If your local DNS server does not know the host name of an IP address, it will get the address from a(n) ________.

authoritative DNS server

A DHCP server provides a client with ________. A) one or more IP addresses for it to use B) the IP address of one or more DNS servers C) both A and B D) neither A nor B

both A and B

SLAs define ________.

both cryptographic methods and cryptographic options

IPsec is used for ________ VPNs.

both remote-access and site-to-site

In DNS, a group of resources under the control of an organization is called a ________.

domain

The part of an IPv6 global unicast address that designates the host is called the ________.

interface ID

A company is free to select its ________.

interior dynamic routing protocol