NET 126 FINAL (Ch. 7-10)
What is the major release number in the IOS image name c1900-universalk9-mz.SPA.152-3.T.bin?
15
If a router has two interfaces and is routing both IPv4 and IPv6 traffic, how many ACLs could be created and applied to it?
8
Which three statements describe ACL processing of packets? (Choose three.)
An implicit deny any rejects any packet that does not match any ACE.* A packet can either be rejected or forwarded as directed by the ACE that is matched.* Each statement is checked only until a match is detected or until the end of the ACE list.*
Which statement is true about CDP on a Cisco device?
CDP can be disabled globally or on a specific interface.
As a DHCPv4 client lease is about to expire, what is the message that the client sends the DHCP server?
DHCPREQUEST
A company implements the stateless DHCPv6 method for configuring IPv6 addresses on employee workstations. After a workstation receives messages from multiple DHCPv6 servers to indicate their availability for DHCPv6 service, which message does it send to a server for configuration information?
DHCPv6 INFORMATION-REQUEST
What are two of the required steps to configure PAT? (Choose two.)
Define a pool of global addresses to be used for overload translation. Identify the inside interface.
A company uses DHCP servers to dynamically assign IPv4 addresses to employee workstations. The address lease duration is set as 5 days. An employee returns to the office after an absence of one week. When the employee boots the workstation, it sends a message to obtain an IP address. Which Layer 2 and Layer 3 destination addresses will the message contain?
FF-FF-FF-FF-FF-FF and 255.255.255.255
Which three statements are generally considered to be best practices in the placement of ACLs? (Choose three.)
Filter unwanted traffic before it travels onto a low-bandwidth link.* Place extended ACLs close to the source IP address of the traffic.* Place standard ACLs close to the destination IP address of the traffic.*
Refer to the following output. What is the significance of the 4 match(es) statement? R1# <output omitted>10 permit 192.168.1.56 0.0.0.7 20 permit 192.168.1.64 0.0.0.63 (4 match(es)) 30 deny any (8 match(es))
Four packets have been allowed through the router from PCs in the network of 192.168.1.64
Beginning with the Cisco IOS Software Release 15.0, which license is a prerequisite for installing additional technology pack licenses?
IPBase
What is an advantage of configuring a Cisco router as a relay agent?
Inbound ACLs are processed before the packets are routed while outbound ACLs are processed after the routing is completed
Which statement describes a difference between the operation of inbound and outbound ACLs?
Inbound ACLs are processed before the packets are routed while outbound ACLs are processed after the routing is completed.*
What is the major benefit of using NAT with Port Address Translation?
It allows many internal hosts to share the same public IPv4 address.
What are two benefits of NAT? (Choose two.)
It saves public IP addresses. It adds a degree of privacy and security to a network.
How does an IPv6 client ensure that it has a unique address after it configures its IPv6 address using the SLAAC allocation method?
It sends an ICMPv6 Neighbor Solicitation message with the IPv6 address as the target IPv6 address.
A network administrator configures a router to send RA messages with M flag as 0 and O flag as 1. Which statement describes the effect of this configuration when a PC tries to configure its IPv6 address?
It should use the information that is contained in the RA message and contact a DHCPv6 server for additional information.
Which method is used by a PAT-enabled router to send incoming packets to the correct inside hosts?
It uses the destination TCP or UDP port number on the incoming packet.
Which two statements are true about NTP servers in an enterprise network? (Choose two.)
NTP servers at stratum 1 are directly connected to an authoritative time source. NTP servers ensure an accurate time stamp on logging and debugging information.
On which router should the show access-lists command be executed?
On the router that has the ACL configured
What is the purpose of port forwarding?
Port forwarding allows an external user to reach a service on a private IPv4 address that is located inside a LAN.
When a customer purchases a Cisco IOS 15.0 software package, what serves as the receipt for that customer and is used to obtain the license as well?
Product Activation Key
An administrator has configured an access list on R1 to allow SSH administrative access from host 172.16.1.100. Which command correctly applies the ACL?
R1(config-line)# access-class 1 in
A network administrator needs to configure a standard ACL so that only the workstation of the administrator with the IP address 192.168.15.23 can access the virtual terminal of the main router. Which two configuration commands can achieve the task? (Choose two.)
Router1(config)# access-list 10 permit 192.168.15.23 0.0.0.0 Router1(config)# access-list 10 permit host 192.168.15.23
What code in the Cisco IOS 15 image filename c1900-universalk9-mz.SPA.153-3.M.bin indicates that the file is digitally signed by Cisco?
SPA
Which address is required in the command syntax of a standard ACL
Source IP address
A network administrator is configuring an ACL to restrict access to certain servers in the data center. The intent is to apply the ACL to the interface connected to the data center LAN. What happens if the ACL is incorrectly applied to an interface in the inbound direction instead of the outbound direction?
The ACL does not perform as designed
What is the effect of configuring an ACL with only ACEs that deny traffic?
The ACL will block all traffic.
What is the result of a network technician issuing the command ip dhcp excluded-address 10.0.15.1 10.0.15.15 on a Cisco router?
The Cisco router will exclude 15 IP addresses from being leased to DHCP clients.
A network engineer has configured a router with the command ip nat inside source list 4 pool corp overload. Why did the engineer use the overload option?
The company has more private IP addresses than available public IP addresses.
A ping fails when performed from router R1 to directly connected router R2. The network administrator then proceeds to issue the show cdp neighbors command. Why would the network administrator issue this command if the ping failed between the two routers?
The network administrator wants to verify Layer 2 connectivity.
When dynamic NAT without overloading is being used, what happens if seven users attempt to access a public server on the Internet when only six addresses are available in the NAT pool?
The request to the server for the seventh user fails.
Under which two circumstances would a router usually be configured as a DHCPv4 client?
The router is intended to be used as a SOHO gateway. This is an ISP requirement.
A network administrator configures a router with the command sequence: R1(config)# boot system tftp://c1900-universalk9-mz.SPA.152-4.M3.binR1 (config)# boot system rom What is the effect of the command sequence?
The router will load IOS from the TFTP server. If the image fails to load, it will load the IOS image from ROM.
A network administrator has issued the logging trap 4 global configuration mode command. What is the result of this command?
The syslog client will send to the syslog server any event message that has a severity level of 4 and lower.
What is a disadvantage of NAT?
There is no end-to-end addressing.
What is a characteristic of unique local addresses?
They allow sites to be combined without creating any address conflicts.
Which statement describes IPv6 ULAs?
They are not routable across the Internet
Consider the following output for an ACL that has been applied to a router via the access-class in command. What can a network administrator determine from the output that is shown? R1# <output omitted>Standard IP access list 210 permit 192.168.10.0, wildcard bits 0.0.0.255 (2 matches)20 deny any (1 match)
Two devices were able to use SSH or Telnet to gain access to the router.
Which three software packages are available for Cisco IOS Release 15.0?
Unified Communications DATA Security
What is the quickest way to remove a single ACE from a named ACL?
Use the no keyword and the sequence number of the ACE to be removed.
Which two conditions should the network administrator verify before attempting to upgrade a Cisco IOS image using a TFTP server? (Choose two.)
Verify connectivity between the router and TFTP server using the ping command. Verify that there is enough flash memory for the new Cisco IOS image using the show flash command.
A technician is required to configure an edge router to use a different TCP port number for each session with a server on the Internet. What type of Network Address Translation (NAT) should be implemented?
a many-to-one address mapping between local and global addresses
Which DHCPv4 message will a client send to accept an IPv4 address that is offered by a DHCP server?
broadcast DHCPREQUEST
Which address does a DHCPv4 server target when sending a DHCPOFFER message to a client that makes an address request?
client hardware address
What is the primary purpose of NAT?
conserve IPv4 addresses
What is used as the default event logging destination for Cisco routers and switches?
console line
Which syslog message type is accessible only to an administrator and only via the Cisco CLI?
debugging
Which is a DHCPv4 address allocation method that assigns IPv4 addresses for a limited lease period?
dynamic allocation
Which type of ACL statements are commonly reordered by the Cisco IOS as the first ACEs?
host
Which command is used to configure a one-time acceptance of the EULA for all Cisco IOS software packages and features?
license accept end user agreement
What is an advantage of deploying IPv4 NAT technology for internal hosts in an organization?
provides flexibility in designing the IPv4 addressing scheme
A network engineer is upgrading the Cisco IOS image on a 2900 series ISR. What command could the engineer use to verify the total amount of flash memory as well as how much flash memory is currently available?
show flash0:
Which command would a network engineer use to find the unique device identifier of a Cisco router?
show license udi
An administrator wants to configure hosts to automatically assign IPv6 addresses to themselves by the use of Router Advertisement messages, but also to obtain the DNS server address from a DHCPv6 server. Which address assignment method should be configured?
stateless DHCPv6
The command ntp server 10.1.1.1 is issued on a router. What impact does this command have?
synchronizes the system clock with the time source with IP address 10.1.1.1
Which protocol or service allows network administrators to receive system messages that are provided by network devices?
syslog
What is used in the EUI-64 process to create an IPv6 interface ID on an IPv6 enabled interface?
the MAC address of the IPv6 enabled interface
A company uses the SLAAC method to configure IPv6 addresses for the employee workstations. Which address will a client use as its default gateway?
the link-local address of the router interface that is attached to the network
What is defined by the ip nat pool command when configuring dynamic NAT?
the pool of global address
Why would a network administrator issue the show cdp neigbors command on a router?
to display device ID and other information about directly connected Cisco devices
Which type of router connection can be secured by the access-class command?
vty
In which configuration would an outbound ACL placement be preferred over an inbound ACL placement?
when the ACL is applied to an outbound interface to filter packets coming from multiple inbound interfaces before the packets exit the interface
When would a network administrator use the clear access-list counters command?
when troubleshooting an ACL and needing to know how many packets matched
