Question 1
Question
If a network engineer applies the command "mac-address-table notification mac-move" on a Cisco switch port, when is the sys log message generated?
Answer
-
When a new MAC address is removed from the content-addressable memory
-
When more than 64 MAC addresses are added to the content-addressable memory
-
When a new MAC address is added to the content-addressable memory
-
When a MAC address or host moves between different switch ports
Question 2
Question
Which feature is automatically enabled when a voice VLAN is configured but not automatically disabled when a voice VLAN is removed?
Answer
-
Portfast
-
Port-security
-
Spanning tree
-
Storm control
Question 3
Question
Which statement describes one major issue that VTP can cause in an enterprise network when a new switch is introduced in the network in VTP mode server?
Answer
-
It can cause a network-wide VLAN configuration change if the revision number on the new switch is higher.
-
It can cause network access ports to go into err-disable state.
-
It can cause a network-wide VLAN configuration change if the revision number on the new switch is lower.
-
It can cause routing loops.
Question 4
Question
Users of PC1 experience slow connection when a webpage is requested from the server. To increase bandwidth the network engineer configured an EtherChannel on interfaces f1/0 and f0/1 of the server farm switch.
server_switch# sh etherchannel load-balance
EtherChannel load-balancing operational state (src-mac):
Non-IP: Source MAC address
IPv4: Source MAC address
IPv6: Source MAC address
However traffic is still slow. What action can the engineer take to resolve this issue?
Answer
-
Disable EtherChannel load balancing.
-
Upgrade the switch IOS to IP services image.
-
Change the load-balance method to dst-mac.
-
Contact Cisco TAC to report a bug on the switch.
Question 5
Question
A network engineer must implement Ethernet link that are capable of transporting frames and IP traffic for different broadcast domains that are mutually isolated. Consider that this is a multi-vendor environment. Which Cisco IOS switching feature can be used to achieve the task?
Question 6
Question
On which interface can port security be configured?
Question 7
Question
Which statement about the MAC address sticky entries in the switch when the copy run start command is entered is true?
Answer
-
A sticky MAC address ages out of the MAC address table after 600 seconds
-
A sticky MAC address is lost when the switch reboots
-
A sticky MAC address is retained with the switch reboots
-
A sticky MAC address can be a unicast or multicast address
Question 8
Question
Interface f0/1 is configured as a trunk interface that allows all VLANs. This command is configured globally.
switch(config)#monitor session 2 filter vlan 1 - 8, 39, 52
What is the result of the implemented command?
Answer
-
All VLAN traffic is sent to the SPAN destination interface.
-
Traffic from VLAN 4 is not sent to the SPAN destination interface.
-
Traffic from VLANs 1 to 8, 38, and 52 is replicated to the SPAN destination port.
-
Filtering a trunked SPAN port effectively disables SPAN operations for all VLANs.
-
The trunk's native VLAN must be changed to something other than VLAN 1.
Question 9
Question
Your customer has asked you to come in and verify the operation of R1 and R2 which are configured to use HSRP. They have questions about how these two devices will perform in the event of a device failure.
What is the virtual MAC address of HSRP group 1?
Answer
-
000.0c07.ac02
-
4000.000.0010
-
0000.0c07.ac01
-
4000.000.ac01
Question 10
Question
Which feature describes MAC addresses that are dynamically learned or manually configured, stored in the address table, and added to the running configuration?
Answer
-
sticky
-
dynamic
-
secure
-
static
Question 11
Question
When a private VLAN is configured which mode must be configured as a router facing port? Choose 1
Answer
-
host
-
community
-
isolated
-
promiscuous
Question 12
Question
A question about RSPAN configuration in VTPv2.
Answer
-
vlan 510 remote span
-
vlan 4029 remote span
-
vlan 4029 span
-
vlan 510 span
Question 13
Question
Which private VLAN access port belongs to the primary and can communicate with all interfaces, including the community and isolated host ports?
Answer
-
isolated port
-
community port
-
promiscuous port
-
trunk port
Question 14
Question
What should the configuration be for spanning-tree port-priority based on the diagram?
Answer
-
sw(config)#spanning-tree port-priority 129
-
sw(config)#spanning-tree port-priority 127
-
sw(config-if)#spanning-tree port-priority 129
-
sw(config-if)#spanning-tree port-priority 127
Question 15
Question
What happens if an interface within a channel group is configured as SPAN destination?
Answer
-
It will operate as normal
-
The portchannel will forward traffic to the source SPAN
-
It will not be operational
-
The link will be in err-disable state
Question 16
Question
Which statement about switch S1 is true?
Answer
-
Physical port Fa0/13, Fa0/14, and Fa0/15 successfully formed a Layer 2 port-channel interface using an open standard protocol.
-
Logical port Fa0/13, Fa0/14, and Fa0/15 successfully formed a Layer 2 physical port-channel interface using a Cisco proprietary protocol.
-
Physical port Fa0/13, Fa0/14, and Fa0/15 successfully formed a Layer 3 port-channel interface using a Cisco proprietary protocol.
-
Logical port Fa0/13, Fa0/14, and Fa0/15 successfully formed a Layer 3 physical port-channel interface using an open standard protocol.
Question 17
Question
Which command globally enables AAA on a device?
Answer
-
aaa new-model
-
aaa authorization
-
aaa authentication
-
aaa accounting
Question 18
Question
A network engineer is setting up a new switched network. The network is expected to grow and add many new VLANs in the future. Which spanning tree protocol should be used to reduce switch resources and managerial burdens that are associated with multiple spanning-tree instances?
Answer
-
RPVST+
-
PVST
-
PVST+
-
RSTP
-
MST
Question 19
Question
When troubleshooting a network problem, a network analyzer is connected to port f0/1 of a LAN switch. Which command can prevent BPDU transmission on this port?
Answer
-
spanning-tree bpduguard default
-
spanning-tree portfast bpdufilter default
-
spanning-tree portfast bpduguard enable
-
no spanning-tree link-type shared
Question 20
Question
What information is contained in a CDP advertisement?
Answer
-
Native VLAN ID, memory errors, hardware platform
-
Port-duplex, hardware platform, memory errors
-
Native VLAN IDs, port-duplex, memory errors
-
Native VLAN IDs, port-duplex, hardware platform
Question 21
Question
Which two commands ensure that DSW1 becomes the root bridge for VLAN 10 and 20? Choose Two
Answer
-
spanning-tree mst vlan 10, 20 root primary
-
spanning-tree mst vlan 10, 20 priority root
-
spanning-tree mst 1 priority 0
-
spanning-tree mst 1 priority 1
-
spanning-tree mst 1 root primary
-
spanning-tree mst 1 priority 4096
Question 22
Question
A network engineer must adjust STP interface attributes to influence root port selection. Which two elements are used to accomplish this?
Answer
-
port-priority
-
cost
-
root guard
-
forward-timers
-
link type
Question 23
Question
Which portion of AAA looks at what a user has access to?
Answer
-
Auditing
-
Authentication
-
Authorization
-
Accounting
Question 24
Question
Switch A, B and C are trunked together and have been properly configured for VTP. Switch C receives VLAN information from the VTP server Switch A but B does not receive any information. What is most likely the cause of this behavior?
Answer
-
The VTP revision number of the Switch B is higher that that of Switch A.
-
The trunk between Switch A and Switch B is mis-configured.
-
Switch B is configured in transparent mode.
-
Switch B is configured with an access port to Switch A, which Switch C is configured with a trunk port to Switch B.
Question 25
Question
What VTP mode is needed to configure an extended VLAN when a switch is configured to use VTP versions 1 or 2?
Question 26
Question
Which gateway role is responsible for answering ARP requests for the virtual IP address in GLBP?
Answer
-
active virtual gateway
-
designated router
-
active virtual forwarder
-
active virtual router
Question 27
Question
You have been asked to install and configure a new switch in a customer network. Use the console access to the existing and new switches to configure and verify correct device configuration.
Refer to the configuration. For which configured VLAN are untagged frames sent over trunks between SW1 and SW2?
Answer
-
VLAN 200
-
VLAN 40
-
VLAN 999
-
VLAN 1
-
VLAN 99
Question 28
Question
A network engineer changed the port speed and duplex settings of an existing EtherChannel bundle that uses the PAgP protocol. Which statement describes what happens to all ports in the bundle?
Answer
-
PAgP changes the port speed and duplex for all ports in the bundle.
-
PAgP drops the ports that do not match the configuration.
-
PAgP does not change the port speed and duplex for all ports in the bundle until the switch is rebooted.
-
PAgP changes the port speed but not the duplex for all ports in the bundle.
Question 29
Question
A network engineer deployed a switch that operates the LAN base feature set and decides to use the SDM VLAN template. The SDM template is causing the CPU of the switch to spike during peak working hours. What is the root cause of the issue?
Answer
-
The VLAN receives additional frames from neighboring switches.
-
The switch needs to be rebooted before the SDM template takes effect
-
The VLAN template disables routing in hardware
-
The SDM VLAN template causes the MAC address-table to overflow
Question 30
Question
On which layer does IP source guard provide filtering to prevent a malicious host from impersonating the IP address of a legitimate host?
Answer
-
Layer 3
-
Layer 7
-
Layer 1
-
Layer 2
Question 31
Question
When two MST instances (MST 1 and MST 2) are created on a switch, what is the total number of spanning-tree instances running on the switch?
Question 32
Question
Based on the debug output, which three statements about HSRP are true?
Answer
-
The IP address 172.16.11.115 is the virtual HSRP address
-
The router with IP address 172.16.11.111 had preempt configured
-
The priority of the router with the IP address 172.16.11.112 is preferred over the router with IP address 172.16.11.111
-
The final active router in the router with the IP address 172.16.11.111
-
The router with IP address 172.16.11.112 is using default HSRP priority
Question 33
Question
Which action allows a network engineer to limit a default VLAN from being propagated across all trunks?
Answer
-
Upgrade to VTP version 3 for advanced feature set support
-
Enable VTP pruning on the VTP server
-
Manually prune default VLAN with swithport trunk allow vlans remove
-
Use trunk pruning VLAN 1
Question 34
Question
Which statement is true about RSTP topology changes?
Answer
-
Only edge ports moving to the blocking state generate a TC BDPU
-
If either an edge port or a non-edge port move to a block state, then a TC BDPU is generated
-
Only non-edge ports moving to the forwarding state generate a TC BDPU
-
Any loss of connectivity generates a TC BDPU
Question 35
Question
Which option is a possible cause for an err-disable interface?
Answer
-
routing loop
-
STP loop guard
-
Security violation
-
Cable unplugged
Question 36
Question
What is Cisco recommendation for RSPAN best practices?
Answer
-
RSPAN should have seperate VLANs
-
Use different portchannels
-
Use range VLAN extended 1-1005
-
Use different vlan for multiple/different switches
Question 37
Question
Which configuration command ties the router host standby priority to the availability of its interfaces?
Answer
-
standby priority
-
standby group
-
standby track
-
backup interface
Question 38
Question
What is needed for Virtual Switching System (VSS) ?
Question 39
Question
Hotspot – HSRP
Ferris Plastics, Inc. is a medium sized company, with an enterprise network (access, distribution and core switches) that provides LAN connectivity from user PCs to corporate servers. The distribution switches are configured to use HSRPto provide a high availability solution.
– DSW1 -primary device for VLAN 101 VLAN 102 andVLAN 105
– DSW2 – primary device for VLAN 103 and VLAN 104
– A failure of GigabitEthemet1/0/1 on primary device should cause the primary device to release its status as the primary device, unless GigabitEthernet1/0/1 on backup device has also failed.
Troubleshooting has identified several issues. Currently all interfaces are up. Using the running configurations and show commands, you have been asked to investigate and respond to the following question.
What is the priority value of the VLAN 105 HSRP group on DSW2? Use sh standby br on console 2
Question 40
Question
What is the default HSRP priority?
Question 41
Question
Which statement about the use of SDM templates in a Cisco switch is true?
Answer
-
SDM templates are used to configure ACLs that protect networks and specific hosts from unnecessary or unwanted traffic.
-
SDM templates are used to configure system resources in the switch to optimize support for specific features, depending on how the switch is used in the network.
-
SDM templates are used to create Layer 3 interfaces (switch virtual interfaces) to permit hosts in one VLAN to communicate with hosts in another VLAN.
-
SDM templates are used to configure a set of ACLs that allows the users to manage the flow of traffic handled by the route processor.
-
SDM templates are configured by accessing the switch using the web interface.
Question 42
Question
Which feature must be enabled to eliminate the broadcasting of all unknown traffic to switches that are not participating in the specific VLAN?
Answer
-
VTP pruning
-
port-security
-
storm control
-
bpdguard
Question 43
Question
Which option lists that modes that are available for configuring UDLD on a Cisco switch?
Answer
-
Normal and active
-
Normal and aggressive
-
Normal and passive
-
Normal and standby
-
Active and aggressive
Question 44
Question
How will the traffic reach the core switch from AZ switch to DS core switch?
Answer
-
ASW1 to DWS2 to core
-
ASW1 to DSW2 to DSW1 to core
-
ASW1 to DWS2 to DWS1 to core
-
ASW1 to DSW1 to DSW2 to core
Question 45
Question
Which configuration ensures that the CDP packet update frequency sent from DSW1 to ALS1 is half of the default value?
Answer
-
DSW1(config-if)#cdp holdtime 30
-
DSW1(config-if)#cdp time 30
-
DSW1(config-if)#cdp holdtime 60
-
DSW1(config-if)#cdp timer 30
-
DSW1(config-if)#cdp timer 90
Question 46
Question
An engineer has run the show EtherChannel summary command and the output is displayed. Which statement about the status of the EtherChannel is true?
Answer
-
The EtherChannel is operational and is configured for PAgP
-
The EtherChannel is operational and is using no EtherChannel protocol
-
The EtherChannel is down because of a mismatched EtherChannel protocol
-
The EtherChannel is down and configured for LACP
Question 47
Question
Which command would a network engineer apply to err-disable a switchport when a packet-storm is detected?
Answer
-
router(config-if)#storm-control action shutdown
-
router(config-if)#storm-control action enable
-
router(config-if)#storm-control action error
-
router(config-if)#storm-control action trap
Question 48
Question
Which VRRP router is responsible for forwarding packets that are sent to the IP address of the virtual router?
Answer
-
virtual router active
-
virtual router master
-
virtual router standby
-
virtual router backup
Question 49
Question
If GiE1/0/1 on DSW2 is shutdown what will be the resulting priority value of the VLAN 105 HSRP group on router DSW2?
Question 50
Question
What does the command "vlan dot1q tag native" accomplish when configured under global configuration?
Answer
-
It allows control traffic to pass using the non-default VLAN.
-
All frames within the native VLAN are tagged, except when the native VLAN is set to 1.
-
Control traffic is tagged
-
It removes the 4-byte dot1q tag from every frame that traverses the trunk interfaces
Question 51
Question
What type of SDM templates can you use on a switch? Choose 4
Answer
-
Switching
-
Routing
-
VLAN
-
Security
-
Access
-
Default
Question 52
Question
Interfaces are assigned to a VLAN and then the VLAN is deleted. Which state are these interfaces in after the VLAN is deleted?
Answer
-
They remain up but they are reassigned to the native VLAN
-
They remain up but they are reassigned to the default VLAN
-
They go down but they are reassigned to the default VLAN
-
The go down until they are reassigned to a VLAN
Question 53
Question
If HSRP group number is 45 what would the MAC address be?
Answer
-
0000-070C-AC2D
-
00-00-0C-07-AC-2D
-
0000-C004-ACD2
-
0000-0C07-AC45
Question 54
Question
When a Layer 2 EtherChannel is configured which statement about placement of the IP address is true?
Answer
-
The IP address is placed on the lowest numbered member port
-
The IP address is assigned via DHCP only
-
The IP address is placed on the port-channel logical interface
-
The IP address is placed on the highest numbered member port
Question 55
Question
Which SDM templates is the most appropriate for a Layer 2 switch that provides connectivity to a large number of clients?
Answer
-
Default
-
VLAN
-
Routing
-
Access
Question 56
Question
Which SDM template disables routing and supports maximum number of unicast MAC addresses?
Answer
-
VLAN
-
Routing
-
Access
-
Default