Exam Topics Ccna 200 301
437 questions across 0 topics. Use the find bar or section chips to jump to what you need.
What is the IEEE of Bluetooth?
802.15 WPAN
What is WiMAX and it IEEE?
-Worldwide Interoperability for Microwave Access -IEEE 802.16 WWAN
In cellular broadband there are two types of cellular networks, what are they?
Global System for Mobile (GSM) and Code Division Multiple Access (CDMA). GSM is internationally recognized, while CDMA is primarily used in the US.
Typically, it is used by rural homeowners and businesses where cable and DSL are not available. It is usually more expensive and requires a clear line of sight.
Satellite Broadband
What is the 802.11 WLAN?
WiFi/wireless devices are based on IEEE 802.11 set of protocols and wireless local area network (WLAN) Wi-Fi computer communication in various frequencies -Radio frequency is 2.4 GHz
What is the 802.11a?
5 Ghz frequency band IEEE standard for transmitting data over a wireless network.
What are the two allocated radio frequency in 802.11 wireless LANs?
2.4GHz and 5GHz
Which 802.11 standards exclusively use the 5 GHz radio frequency?
802.11a 802.11ac
Which of the wireless networks typically uses lower powered transmitters for short ranges?
WPAN
In wireless, what does AP stand for?
Access Point
What does SSID stand for?
shared service set identifier (SSID)
The wireless router advertises its wireless services by sending ______________containing its shared service set identifier (SSID)
Beacons
What does QoS stand for and what does it do?
Quality of Service is a feature of routers and switches which prioritizes traffic so that more important traffic can pass first.
What does WAP stand for and what is it exactly?
Wireless Access Point more generally just an access point, is a networking hardware devices that allows other Wi-Fi devices to connect to a wired network.
What does Wi-Fi stand for?
Wireless Fidelity technically, this is not the case. Wi-Fi is simply a trademarked term meaning IEEE 802.11x.
What is an Autonomous AP?
-Standalone devices like a home router. Where the entire WLAN configuration resides on the device. -Sometimes called thick APs -do not require a controller to control the AP and it use WLSE for management software -use for a network that requires only a couple of access points.
What does WLC stand for?
Wireless LAN Controller
What does AS stand for?
Autonomous System
What are Controller-based APs?
-These devices require no initial configuration and are often called lightweight APs (LAPs). -Also called thin APs -Centralized management, configuration, encryption, updates and policy settings through a centralized controller
LAPs
Lightweight Access Points
LWAPP
Light Weight Access Point Protocol
What is another name for LAPs?
Controller-based APs
LAG
Link Aggregation Group
What is MIMO?
Multiple Input Multiple Output. Uses multiple antennas to increase available bandwidth for IEEE 802.11n/ac/ax wireless networks. Up to eight transmit and receive antennas can be used to increase throughput.
Which of the following components are integrated in a wireless home router? -Access Point -Switch -Router -Range Extender
Access Point, Switch, Router
What is infrastructure mode in WLAN?
A wireless router or AP connects wireless clients to a wired distribution system.
What is API and what does the acronym stand for as well?
Application Programming Interface (API) An API is software that allows other applications to access its data or services. It is a set of rules describing how one application can interact with another, and the instructions to allow the interaction to occur. Data formats shared between smart devices often use an Application Programming Interface (API
There are four types of web service APIs
Simple Object Access Protocol (SOAP) Representational State Transfer (REST) eXtensible Markup Language-Remote Procedure Call (XML-RPC) JavaScript Object Notation-Remote Procedure Call (JSON-RPC)
Software-Defined Networking (SDN) is what?
The physical separation of the network control plane from the forwarding plane, and where a control plane controls several devices. dynamic, manageable, cost-effective, and adaptable
What is FTP and it port number?
File Transfer Protocol Port 20, 21 Provides reliability when loading an IOS image upon boot up
What is SSH and it port number?
Secure Shell Protocol port 22
What is telnet port number?
23
SMTP (Simple Mail Transfer Protocol) and port number
port 25
DNS (Domain Name System) port number
53
HTTP (Hypertext Transfer Protocol) port number
80
SNMP (Simple Network Management Protocol) port number
161
What portocols are reliable, connection oriented and use TCP?
FTP, SSH, Telnet, SMTP, DNS, HTTP, POP3, NTP, IMAP4, HTTPS
What protocols are unreliable, connectionless and use UDP?
DNS, DHCP, TFTP, SNMP
What is DHCP?
A protocol used to automate the assignment of IP Address. It stands for Dynamic Host Control Protocol and is the successor to BOOTP.
DHCP port number
67
What is HSRP?
HSRP stands for Hot Standby Router Protocol, it was designed for gateway redundancy without addition config on end devices. Routers configured with HSRP present themselves as a single virtual default gateway. -It is Cisco Proprietary -has one active router and one standby router
What does VRRP stand for?
Virtual Router Redundancy Protocol Has one master router and multiple backup routers
What is VRRP virtual MAC address?
0000.5E00.01xx 0000.5E00.01xx, where xx is the value ID for the VRRP group number
What is FHRP?
First-Hop Redundancy Protocol
In show ip route command, what letter represents EIGRP?
D
In show ip route command, what letter represents OSPF?
O
In show ip route command, what letter represents directly connected routes?
C
In show ip route command, what letter represents static route?
S
In show ip route command, what letter/symbol represents default routes?
* on a route such as S * 0.0.0.0/0 [1/0] via Fastethernet 0/1
In show ip route command, what letter represents local/host connected directly connected?
L
What is PAgP?
Port Aggregation Protocol is a Cisco proprietary link aggregator protocol that can bundle up to 8 active ports. -Only uses DESIRABLE and AUTO modes
By default the maximum time that a Cisco switch will retain LLDP info before discarding it when it is enabled on an interface is ______
120 seconds
By default, a cisco switch will send LLDP advertisements every ____ seconds when LLDP is enabled on an interface
30
What is LLDP on a Cisco switch?
Link Layer Discovery Protocol. OSI layer 2 open standard discovery protocol that is used to facilitate interoperability between Cisco devices and non-Cisco devices. Attributes that can be learned from neighboring devices contain Type, Length, Value (TLV) info including port description, system description and management address.
What is VTP?
VLAN Trunking Protocol (VTP) is a Layer 2 messaging protocol that maintains VLAN configuration consistency throughout a common administrative domain by managing VLAN additions, deletions, and name changes across multiple switches. Without VTP, you would have to manually add VLAN information to each switch in the network.
What is CDP?
Cisco Discovery Protocol (CDP) is a Cisco Proprietary feature that allows you to see directly connected Cisco devices. CDP can provide VLAN Trunking Protocol (VTP) information whereas LLDP does not.
What is FlexConnect?
Software basically. (previously known as Hybrid Remote Edge Access Point or H-REAP) is a wireless solution for branch office and remote office deployments. It enables customers to configure and control access points (AP) in a branch or remote office from the corporate office through a wide area network (WAN) link without deploying a controller in each office. The FlexConnect access points can switch client data traffic locally and perform client authentication locally when their connection to the controller is lost. When they are connected to the controller, they can also send traffic back to the controller. In the connected mode, the FlexConnect access point can also perform local authentication.
Number of host on a /24 and it subnet mask
256; 255.255.255.0
Number of host on a /23 and it subnet mask
512; 255.255.254.0
Host on a /22 and it subnet mask
1024; 255.255.252.0
Host on a /21 and it subnet mask
2048; 255.255.248.0
Host on a /19 and it subnet mask
8192; 255.255.224.0
Host on a /18 and it subnet mask
16384; 255.255.192.0
Host on a /25 and it subnet mask
128; 255.255.255.128
Host on a /26 and it subnet mask
64; 255.255.255.192
Host on a /27 and it subnet mask
32; 255.255.255.224
Host on a /28 and it subnet mask
16; 255.255.255.240
Host on a /29 and it subnet mask
8; 255.255.255.248
Host on a /30 and it subnet mask
4; 255.255.255.252
Host on a /31 and it subnet mask
2; 255.255.255.254
Host on a /32 and it subnet mask
1; 255.255.255.255
Host on a /17 and it subnet mask
32768; 255.255.128.0
Host on a /16 and it subnet mask
65536; 255.255.0.0
What is the reserved ranges on RFC 1918?
10.0.0.0-10.255.255.255 172.16.0.0-172.31.255.255 192.168.0.0-192.168.255.255
What is the reserved range for loopback addresses?
127.0.0.0-127.255.255.255
What is the Class A range of addresses?
10.0.0.0 - 10.255.255.255
What is the Class B range of addresses?
172.16.0.0 - 172.31.255.255
What is the Class C range of addresses?
192.168.0.0 - 192.168.255.255
What do unique local IPv6 unicast prefix always begin with?
FD or FC Because the first 7 bits of a unique local unicast address are always 1111110 They can not be aggregatable nor summarized.
What is the address range if a host IP can not obtain a network address via DHCP?
169.254.1.0 to 169.254.254.255
What protocol uses UDP and TCP?
DNS (Domain Name System)
IPv6 multicast address?
FF00::/8
IPv6 Unicast Link-Local address
FF80::/10
Link local addresses are unicast addresses used for communication over a __________ link
single
Link local addresses in IPv6 are used to form what?
Neighbor adjacencies
Global IPv6 unicast addresses, also known as aggregable global address, do they form neighbor adjacency?
NO. They do NOT form neighbor adjacency.
IPv6 multicast address for Link-local
FF02::/16
IPv6 multicast address for Site-local
FF05::/16
IPv6 multicast address for unicast site-local
FC00::/7
IPv6 multicast address for global address
FF0E::/16
Are unicast link local IPv6 addreses routable?
NO. Used for neighbor discovery
What is HDLC?
The High-Level Data-Link Control (HDLC) protocol is a populare ISO-standard, bit-oriented, Data Link layer protocol. It specifies an encapsulation method for data on synchronous serial data links using frame characters and checksums. HDLC is a point-to-point protocol used on leased lines. No authentication can be used with HDLC.
What is the difference between HDLC and PPP?
The major difference between HDLC and PPP , the PPP protocol performs better than HDLC because there is no compulsion of using the Cisco devices in both the ends, which means these are interoperable. PPP also supports multiple protocols and support authentication.
What is PPP?
Point-to-Point Protocol (PPP) is a Data Link layer protocol that can be used over either asynchronous serial (dial-up) or synchronous serial (ISDN) media. It uses Link Control Protocol (LCP) to build and maintain data-link connections. Network Control Protocol (NCP) is used to allow multiple Network layer protocols (routed protocols) to be used on a point-to-point connection. The basic purpose of PPP is to transport layer 3 packets across a Data Link layer point-to-point link, and it's nonproprietary. The PPP protocol stack is specified at the Physical and Data Link layers only.
In 802.11 wireless topology, what is BSS in Infrastructure?
Basic Service Set; Consist of a single AP interconnecting all associated wireless clients. The radius of which it covers in it wireless range is called a Basic Service Area (BSA). Layer 2 MAC address of the AP is used to uniquely ID each BSS which is called a Basic Service Set Identifier (BSSID).
In 802.11 wireless topology, what is ESS in infrastructure?
Extended Service Set ESS is ID by a SSID and each BSS is ID by its BSSID. When you need more coverage, two or more BSS can join through a common distribution system (DS) into an ESS. The whole covered area is called an Extended Service Area (ESA). A client in one BSA can now communicate with other clients in another BSA within the same ESS. Like a roaming cell phone user may move from one BSA to another and it would be seamless
Since WLAN are half-duplex, what do we use to avoid collision?
(CSMA/CA) carrier sense multiple access with collision avoidance.
What is the port number of RADIUS?
1812 for authentication 1813 for accouting 1645/1646 for UDP ports
AD of directly connected routing
0
AD of static route
1
AD of internal EIGRP
90
AD of OSPF
110
AD of RIP
120
AD of External EIGRP
170
What parameter does RIP use to calculate metric?
Hop count
What parameter does EGIRP use to calculate metric?
bandwidth, delay
What parameter does OSPF use to calculate metric?
cost
Characteristic of distance vector?
-sends entire routing table -slow convergence -doesn't know network topology -simpler to configure -examples: RIP, IGRP
Characteristics of Link state?
-sends only link state information -fast convergence -less susceptible to routing loops -always uses multicast for the routing updates -knows the entire network topology -can be harder to configure -examples: OSPF, IS-IS
Characteristics of CDP?
-60 second update frequency -180 second hold timer (the top end timer is 255) -enabled by default -L2 protocol -Cisco proprietary -Can convey VTP information
Characteristics of LLDP?
-30 second update frequency -120 second hold timer -disabled by default -L2 protocol -Open standard protocol
What is the default mode of VTP when on a new switch?
Server mode
What is EIGRP?
Enhanced Interior Gateway Routing Protocol. Is an advanced distance vector routing protocol. EIGRP supports classless routing and VLSM, route summarization, incremental updates, load balancing and many other useful features. It is a Cisco proprietary protocol, so all routers in a network that is running EIGRP must be Cisco routers.
What metric does EIGRP use?
bandwidth and delay
What metric does OSPF use to calculate the best path?
Cost
What metric does RIP use to calculate best path?
Hop count
How do you untag a VLAN?
You set it as a native VLAN
What is RFC 1918?
RFC 1918 is Address Allocation for Private Internets The Internet Assigned Numbers Authority (IANA) has reserved the following three blocks of the IP address space for private Internets: 10.0.0.0/8, 172.16.0.0/12 and 192.168.0.0/16
What is Cisco ACI?
Application Centric Infrastructure
What layer is MPLS considered and what does it stand for?
Layer 2.5; Multiprotocol Label Switching
What is another name for a Hypervisor?
VMM (Virtual Machine Monitor)
What is CRC stand for?
Cyclic Redundancy Check
What is another name/nickname for a dashboard?
A single pane of glass
What are the Northbound APIs?
OSGi REST
What are the Southbound APIs?
NETCONF OnePK OpenFlow OpFlex
What does the CAM table use to populate it?
The source MAC address
Switches make forwarding decisions based on the_______ contained in a frame's header.
Destination MAC Address
What is SaaS?
Software as services enables it consumer to access applications running in the cloud infrastructure but does not enable the consumer to manage the cloud infrastructure or the configs of the provided applications. A good example is a company license an office suite, including email service, that is delivered to the end user through a web browser.
What is IaaS?
Infrastructure as a Service the greatest degree of freedom by enabling its consumer to provision processing, memory, storage and network resources within the cloud infrastructure. Customer does NOT have control over the physical infrastructure in the cloud.
What is PaaS?
Platform as a Service provides it consumer with slightly more freedom than the SaaS model by enabling the consumer to install and possibly config provider supported applications in the cloud infrastructure. An example would be a company obtains a subscription to use a service provider's infrastructure, programming tools, and programming languages to develop and serve cloud based applications.
What is GLBP?
Gateway Load Balancing Protocol Has one active virtual gateway and multiple active virtual forwarders Cisco proprietary similar to HSRP. Allows load-balancing.
What is NAT?
Network Address Translation (NAT) is a protocol that translates public IP addresses to private IP addresses and vice-versa. NAT is often enabled on the Internet-facing firewall, and in home networks is usually running on the router.
In Nat addressing what does the Inside Global Address display?
display an IP address that an inside host as seen by host on the outside network A valid public address that the inside host is given when it exits the NAT router.
In NAT addressing what does the Inside Local Address display?
display the IP address config on a host on the local network
In NAT addressing what does the Outside Local Address display?
display the IP address of a host on the outside network as seen from a host on the inside network
In NAT addressing what does the Outside Global Address display?
display the IP address config on a host on the outside network
What is EtherChannel?
Etherchannel is a Cisco feature that allows you to combine several physical links (up to eight) into one logical connection for increased bandwidth. Data between the links is load-balanced, and Spanning Tree sees the logical link as one link; thus all physical ports are forwarding. Different interface types can't be bundled together such as gigabit can't be bundle with fast Ethernet
What is LACP?
Link Aggregation Control Protocol bundle two or more identical, physical interfaces into a single logical link between switches -Open Standard -Only uses ACTIVE and PASSIVE mode
What is STP?
Spanning Tree Protocol. Allows for multiple redundant paths while breaking loops. Operates at Data Link
How does STP decide which switch will be the root switch?
the switch with the lowest BID Since by default all switches have the BID priority of 32768, the second comparison has to be made - the lowest MAC address.
What steps does STP take to achieve convergence?
-Elect the root bridge, with the switch with the lowest BID -Elect a root port for each nonroot switch, based on the lowet root path cost -Elect a designated port for each segment, based on the lowest root path cost -Root ports and designated ports transition to the forwarding state
What is PVST+?
Per-VLAN Spanning Tree Plus cisco enhancement of STP that provides a separate spanning tree instance for each VLAN configured on the network -slow convergence -default setting on all cisco catalyst switches -uses a lot of CPU
What is Rapid PVST+?
Uses PVST+ and provides config PER VLAN -cisco proprietary -fast convergence -need very high resources to use
STP In case the best root cost ties for two or more paths, the following tiebreakers do what?
the lowest neighbor bridge ID the lowest neighbor port priority the lowest neighbor internal port number
In STP, the switch with the best path to reach the root switch is called?
he designated switch and its port is known as the designated port. In order to avoid loops, the non-designated port on the other end of the link is placed in blocking state.
In OSPF, Hello packets are used to do what?
-Discover OSPF neighbors and establish neighbor adjacencies -Advertise parameters on which two routers must agree to become neighbors -Elect the DR and BDR on multiaccess networks such as Ethernet and Frame Relay
What are the OSPF characteristics?
-Classless routing protocol -only supports equal cost load balancing -Uses COST as it metric -Fast convergence -Uses Dijksta's Algorithm -Open Standard -AD is 110 -multicast address is 224.0.0.5 or 224.0.0.6 -destination MAC address is also a multicast address of 01-00-5E-00-00-05 or 01-00-5E-00-00-06. -Supports MD5 Authentication
How is the OSPF designated router (DR) get chosen?
Highest priority, then highest router ID (highest physical interface by default). The router with the second highest OSPF priority or router ID will become a BDR.
In OSPF how is the router ID determined if not manually configured?
· Highest IP address among loopback interface · Then by highest IP address among physical interfaces
In OSPF when the DR and BDR achieve FULL state with every router on the segment what will display for the other routers when you enter the show ip ospf neighbor command?
FULL/DROTHER Basically, DRother is a router that's neither a DR nor a BDR.
OSPF what must match to be able to form adjacency?
-Timers/hello and dead timers -Network Type/Netmask -Area ID *PROCESS ID DO NOT HAVE TO MATCH
OSPF what must be unique to form adjacency?
-IP Address -Router ID *PROCESS ID DO NOT HAVE TO MATCH
What is default-information originate?
The default gateway of last resort for the whole network if the routers don't know where to send the information. If it is configured on a router: OSPF will advertise that router's gateway of last resort to use. It will also make that router become the OSPF ASBR
A router located between an OSPF routing domain and a non-OSPF routing network is called what?
autonomous system boundary router (ASBR)
What is one of the reasons your routers are unable to form OSPF adjacency?
OSPF areas must match Although you can config for a multiarea OSPF topology, OSPF areas on neighboring interfaces must match in order for two OSPF routers to form an adjacency.
What order is the 802.3 frame?
PREAMBLE-SOF-DESTINATION ADDRESS-SOURCE ADDRESS-TYPE-PAYLOAD-FCS
In OSPF what is BDR?
Backup Designated Router The BDR monitors the DR and takes over as DR if the current DR fails.
In OSPF what is DR?
Designated Router The DR is responsible for updating all other OSPF routers when a change occurs in the multiaccess network.
What must all areas connect to in multiarea OSPF?
The backbone area
What does ABR stand for and what does it do in OSPF?
Area Border Router ABRs send interarea routes between areas.
Single Area OSPF the process ID is___________ significant and does not have to match other OSPF routers to establish adjacency with those neighbors.
locally
All OSPF routers within the same OSPF area must be config with the same _____________ on all routers
area ID
How is OSPF router ID determined?
-Manually configured if not: -highest IP address among loopback interfaces -Then by highest IP address among physical interfaces
QoS levels, what would voice be prioritized on?
Platinum
QoS levels, what would video be prioritized on?
Gold
QoS levels, what would the default setting be?
Silver
QoS levels, what would provide the lowest bandwidth and is used for guest services?
Bronze
What are the debug log messages severity level for emergencies?
0
What are the debug log messages severity level for alerts?
1
What are the debug log messages severity level for critical?
2
What are the debug log messages severity level for errors?
3
What are the debug log messages severity level for warnings?
4
What are the debug log messages severity level for notifications?
5
What are the debug log messages severity level for informational?
6
What are the debug log messages severity level for debugging?
7
What are the Server VTP characteristics?
-creates/modifies/deletes VLANS -synchronizes VTP information -originates VTP adverts -forwards VTP adverts -stores VLAN info in NVRAM
What are the Client VTP characteristics?
-synchronizes VTP info -originates VTP adverts -forwards VTP adverts
What are the Transparent VTP characteristics?
-creates/modifies/deletes VLANs -forwards VTP adverts -stores VLAN info in NVRAM -does not advertise -does not synchronize it configs
What is root guard?
prevents introduced switches from being elected the new root
What is BPDU guard?
This is used in conjunction with Portfast to prevent the Portfast enabled switchport from responding to STP updates that could destroy the current network STP configuration. When the STP update is received, this puts the switchport into error disabled mode until the administrator manually brings the switchport back up.
What is PortFast?
reduces convergence time by placing edge ports into a forwarding state
What is Loop guard?
prevents a switch port from transitioning to the forwarding state when it stops receiving BPDUs
In EIGRP what is Feasible Distance (FD)?
The best metric along a path
In EIGRP what is a successor?
A successor is the route with the best metric to reach a destination. That route is stored in the routing table
In EIGRP, what is feasible successor?
A feasible successor is a backup path to reach that same destination that can be used immediately if the successor route fails. These backup routes are stored in the topology table. Loop-free
EIGRP how is a feasible successor chosen?
the neighbor's advertised distance (AD) for the route must be less than the successor's feasible distance (FD).
In EIGRP, what is the advertised distance (AD)?
The metric that the next-hop router has calculated
EIGRP what algorithm does it use?
DUAL (Diffusing Update Algorithm) selects the best path and the second best path to the destination
EIGRP, how many seconds is a hello packet sent to maintain neighbor adjacency?
5 seconds
EIGRP, how many seconds is a hello packet sent on a multicast to keep neighbor adjacency?
60 seconds
In DHCP what is the ip helper-address command?
enables a DHCP relay agent on a router.
Which OSI layer enables coding and conversion functions for application layer data?
Presentation Layer
In OSI what does the session layer do?
used to create, manage, and terminate sessions between communicating nodes. It handles the service request and service responses that take place between different applications.
In OSI, what does the transport layer do?
responsible for error-free and sequential delivery of data and flow control.
In OSI, what does the network layer do?
defines a logical address that helps select the route to the destination
If your ethernet 0/0 is up, line protocol is down what is the issue?
Data link layer issue but the physical layer of the interface is operational
Virtual MAC address of HSRP version 1?
0000.0C07.ACxx . 0000.0C07.ACxx where xx is the group number
Virtual MAC address of GLBP?
0007.B400.xxyy 0007.B400.xxyy where xx is the GLBP group number and yy is the AVF number
What is SDA?
Software Defined Access uses a controller and application programming interfaces (APIs) to communicate via southbound interfaces (SBIs) with the network infrastructure,
Characteristic of Ansible?
-Agentless -Uses YAML -Uses SSH/NETCONF for remote device communication -Uses a push model -Has a 'playbook' -Written in PYTHON
Characteristic of Puppet?
-Agent based -Written in RUBY -Uses a pull model -Has a 'manifest'-where config elements are stored -Uses HTTP (REST) to communicate -uses TCP 8140
Characteristic of Chef?
-Agent based -Written in RUBY -Uses a Pull model -Has a 'recipe' and 'Cookbook' -Use HTTP (REST) -Not supported by a lot of Cisco devices -uses TCP 10002 config for push jobs
What is Salt written in?
PYTHON
JSON (JavaScript Object Notation) uses what syntax rules
KEY:VALUE Uses { } and [ ] Array is in [ ] Object is in { } Value are after the colon Value text is listed in double quotes Value numeric is listed without quotes
What is REST?
A REST API is an API that works on top of the HTTP protocol. It defines a set of functions developers can use to perform requests and receive responses through HTTP, such as GET and POST.
When is REST considered RESTFUL?
-Client/server: The client handles the front end, and the server handles the back end. Either can be replaced independently of the other. -Stateless: No client data is stored on the server between requests. The session state is stored on the client. -Cacheable: Clients can cache responses to improve performance.
What does an API do?
APIs exist to allow two programs to exchange data. Some APIs are for interprogram communications within a single operating system (OS). Other APIs are available to programs that run on other computers. These APIs must define the networking protocol. Many are based on REST.
What is XML?
Extensible Markup Language
What is YAML?
YAML Ain't Markup Language
In Cisco DNA what is the network infrastructure called?
Fabric
The Fabric in Cisco DNA is divided into two parts and what are they?
Underlay: This is most closely associated with the physical network. The underlay reveals additional devices and specifies how these devices are connected. Endpoints access the network through the Layer 2 devices. Switches, routers, cables Overlay: This is where tunneling protocols like Virtual Extensible LAN (VXLAN) are implemented to transport Layer 3 protocols such as IP Security (IPsec) and Control and Provisioning of Wireless Access Points (CAPWAP). The overlay is where policies are specified. The overlay is not concerned with how the devices are physically or logically connected.
What two roles does the Cisco DNA Center have?
-A controller in a network that uses Cisco SDA - A network management platform for traditional (non-SDA) network devices
How are FlexConnect ALCs applied?
Per AP and per VLAN Also supported on the NATIVE VLAN THEY ARE NOT PER PORT/INTERFACE
We like DHCP.......... NOT DHCP_____________
We like DHCP SNOOPING-uses the concept of trusted and untrusted ports. We do NOT LIKE DHCP SPOOFING-spoofing attack occurs when a rogue DHCP server is connected to the network and provides false IP configuration parameters to legitimate clients.
What is the appropriate coverage overlap in wireless AP?
10-15%
Best practice in 802.11 when expanding an existing 802.11 wireless network?
Config each AP with the same SSID and a unique, non overlapping channel
What is CAPWAP?
Control and Provisioning of Wireless Access Points - a way for control data to be tunneled between Lightweight AP and Centralized controller
If the destination IP address of the packet does not belong to a connected or remote network and the router does not have a default route, the packet is discarded. The router sends an_______________
ICMP Unreachable Message
The type of interface determines the type of Layer 2 encapsulation. If the exit interface is FastEthernet, the packet is encapsulated in an________ frame
Ethernet
The type of interface determines the type of Layer 2 encapsulation. If the exit interface is a serial interface configured for PPP, the IP packet is encapsulated in a__________frame
PPP
What is router on a stick?
-A Router on a stick is where you have a router hanging off a switch on a trunk link and have subinterfaces. Use for routing between VLANS. Has to be directly connected to the router for interVLAN routing and router on a stick to work.
True or False: You need to have the command encapsulation dot1q to configure trunking
TRUE
What is SVI?
Switch virtual interface (SVI): Virtual VLAN interface used for inter-VLAN routing
When do you use static routing?
In a small network that requires only simple routing In a hub-and-spoke network topology When you want to create a quick ad hoc route As a backup when the primary route fails Static routes are commonly used when you are routing from a larger network to a stub network (a network that is accessed by a single link). Static routes can also be useful for specifying a default route or gateway of last resort.
When do you NOT want to use static routing?
In a large network When the network is expected to scale
What command would you use to configure a static route?
ip route {network-address subnet mask}
What is recursive lookup?
The router has to check through the routing table more than once in order to find a route to a destination. It is important to put the exit interface on an ip route command for this reason
Default gateway is only on a connection between a _____ and a ______ connected to each other
router and switch
A__________ route is a route that matches all packets. Commonly called quad zero route, uses 0.0.0.0 0.0.0.0
default
In IPv6, double colon (::) means?
Just as with the quad-zero in IPv4, the double colon (::) means all 0s or any address, and the /0 means any prefix length.
OSPF what is the default hello timer?
10 seconds
OSPF the default dead timer is?
40 seconds/ always 4 x the hello timer
In OSPF what is LSU?
LInk-state Update. LSUs are the packets used for OSPF routing updates. An LSU packet can contain 11 types of LSAs
In OSPF what is LSR?
Link-state request
The metric in OSPF uses cost, what is the cost of an 10 gbps?
1
The metric in OSPF uses cost, what is the cost of an 1 gbps?
10
The metric in OSPF uses cost, what is the cost of an 100 Mbps?
100
The metric in OSPF uses cost, what is the cost of an 10 Mbps?
1000
In OSPF do point to point links elect a DR or BDR?
NO
OSPF, the show ip ospf neighbor command displays what in it output?
Neighbor ID PRI=Priority of the interface State Dead Time Address Interface
OSPF Network types
broadcast multicast nonbroadcast point to point point to multipoint broadcast point to multipoint nonbroadcast
What is the default network type enabled in OSPF point to point network?
HDCL and PPP
True or False: HDLC can work on any router?
FALSE Because it has some proprietary characteristics that won't allow it to work on non-cisco devices
OSPF the default hello and dead timer on a nonbroadcast network is?
30 second hello 120 second dead interval
What are you using to establishing a secure VPN tunnel between two sites that are separated by an untrusted network?
IPSec
What is GRE?
GRE (Generic Routing Encapsulation) is a protocol designed to tunnel any L3 protocol through an IP transport network. Because the focus of GRE is to transport many different protocols, it has very limited security features
If ip arp inspection is been issued on the interface, what does that mean for the interface?
It is an untrusted port. DAI (Dynamic ARP Inspection) has been configured.
An ACL list of commands are processed in order, from _____ to _____
first state to last statement.
Standard IPv4 ACL filter traffic based on what?
Source address only
What command would you use to create an ACL?
access-list; in global config mode to create an entry in standard IPv4 ACL. We always put the subnet mask in wildcar mask form example: access-list 1 permit 172.16.0.0 0.0.255.255
What is the command for NAT overload?
ip nat inside source static {ip address} overload
In QoS traffic type, what is the voice characteristic?
Smooth Benign Drop sensitive Delay sensitive UDP priority
In QoS traffic type, what is the video characteristic?
Bursty Greedy Drop Sensitive Delay Sensitive UDP priority
In QoS traffic type, what is the data characteristic?
Smooth/bursty Benign/greedy drop insensitive delay insensitive TCP retrasmists
Congestion method that drops lower priority packets if network congestion is detected?
WRED
So when an SNMP agent/managed node sends a message to an SNMP manager what is it called?
TRAP
How do you set the NTP server?
NTP server {ip address of the NTP server}
In Dynamic Trunking Protocol (DTP) what mode operates in access mode unless the neighboring interface actively negotiates to operate as a trunk?
Auto
If you have an OSPF route on ethernet 0/0 and then issue the command 10.10.10.0 255.255.255.252 ethernet 0/0 on the same router, what will happen?
If a router has a static route and an OSPF route to the same destination network, the static route will be preferred over the dynamic route because static routes have a lower AD than routing protocols.
What command is used to issue a static route on a router?
ip route {prefix mask [ip-address | interface}
In 802.11 there are three general types: control, management and data. Each of them have a further subdivided types. The FC (Frame Control) field of the 802.11 header is used to ID these type and subtype frames. What type of frame does RTS, CTS, ACK and PS belong to?
Control Frame
What is RTS/CTS in the FC field of the 802.11 field hearder?
Ready to send Clear to send
What encryption is used by both WPA2 and WPA3?
AES
What is also used along with AES encryption in WPA2?
CCMP (Cipher Block Chaining Message Authentication Code Protocol)
What is also used along with AES encryption in WPA3?
GCMP (Galois/Counter Mode Protocol)
What is DAI and what does it help mitigate?
Dynamic ARP Inspection and it helps mitigate ARP poisoning attacks or ARP spoofing attakcs.
What command is used to implement DAI?
ip arp inspection vlan in global config mode
If you issue the following commands: ipv6 enabled no shutdown Interface on the other side of the link is not yet configured and there is no DHCPv6 server, how many IPv6 addresses are config on the interface?
one
What WLC interfaces is the only available interface when the WLC is booting?
service-port interface
What is enabled on a Cisco router when you issue the ntp server command from the global config mode?
static client mode
What are the two true things about IPv6 unique local unicast address?
-First 7 bits of the prefix are always 1111110 -Unique only within an organization
What kind of ports are displayed in the output of a show vlan command?
Access ports
What command is used to display trunk ports?
show interfaces trunk
If you issue the switchport nonegotiate command, what are you disabling?
DTP (Dynamic Trunking Protocol)
Routers select best routes based on what following criteria?
-Longest prefix match: Routers select routes with the longest match to the destination address in the forwarded packet. -Administrative distance: If a router is receiving the same route from multiple routing protocols it will install the route with the lowest Administrative distance in the routing table -Metric: If the router is receiving the same route many times from the same routing protocol it will consult the metric value for its selection; the lowest the best. If routes has the same metric both will be installed in the routing table and the router will load balance packets over them
What does an autonomous AP contain?
Network interfaces for both wireless and wired networks
What is the order the 802.11 MAC frame format?
FC-DUR-ADD1-ADD2-ADD3-SEQ-ADD4-DATA-FCS
In what OSPF network types does DR and BDR NOT ELECTED?
point-to-multipoint point-to-point
Characteristic of OnePK?
cisco proprietary API
Characteristic of OpenFlow?
uses an imperative SDN model detailed instructions are sent to the SDN controller when a new policy is to be configured.
Characteristic of OpFlex?
uses a declarative SDN model instructions that are sent to the controller are not so detailed.
Characteristic of NETCONF?
uses XML and RPCs to config the network devices
What component simplifies the management and deployment of wireless APs in a Cisco Autonomous WLAN solution?
WLSE (Wireless LAN Solution Engine)
You are configuring a DHCP pool on a router named Router A what command correctly configures a domain name for the pool?
RouterA (dhcp-config)#domain-name exmaple.com
What is RED?
Random Early Detection randomly drops packets based on a mark probability denominator when congestion is detected
What is FIFO?
First in First out queuing congestion method; packets are processed in the order they are received without any regard to the IP. All packets destined for a full FIFO queue are dropped until the existing packets make free space
What is WFQ?
Weighted Fair Queing congestion management method not a congestion avoidance method. traffic is ID by WFQ based on source and destination IP address, port number and protocol number.
In EIGRP is it true process IDs must match?
TRUE
When service password-encryption command is issued, what passwords are encrypted on the router?
passwords config by any means along with any passwords configured in the future
What is then normal OSPF neighbor state for a router that is neither DR or BDR?
2-way
What is the neighbor routers state in OSPF when it is being powered on?
DOWN
What WLC interface controls all Layer 3 communications between a WLC and a lightweight AP?
AP-manager interface
An LACP channel group on SwitchA is configured to operate in active mode. Which mode could you configure the corresponding channel group on SwitchB to create a valid EtherChannel config?
ACTIVE/PASSIVE
What can NOT be configured on FlexConnect ACLs?
They can not be configured with a per-rule direction
What are two true things about dynamic interfaces on WLC?
-Dynamic interfaces are typically used for client data -Dynamic interfaces are user-defined
Name a benefit of SD-Access in Cisco DNA
Enables network access in minutes for any user or device to any application without compromising security
Name a benefit of SD-WAN in Cisco DNA
-Delivers better user experiences for applications residing on premise or in the cloud -Achieve greater agility and cost savings through easier deployments and transport independence
Name a benefit of Cisco DNA Assurance
-Allows to ID root causes and provide suggestings for faster troubleshooting -provides easy to use SINGLE dashboard -Has machine learning continually improves network intelligence to predict problems before they occur
Name a benefit of Cisco DNA Security
-360 degree visibility through real-time analytics for deep intelligence -lower complexity with end to end security -encrypts traffic, reduce risk and protect your organization against threats
What is TOR?
Top Of Rack
What is performed by a WLC in a split-MAC deployment?
-Resource Reservation -Authentication
What is split-MAC deployment?
A key component of CAPWAP is the concept of a split MAC, where part of the 802.11 protocol operation is managed by the CAPWAP AP, while the remaining parts are managed by the WLC.
What connects a wireless client to a wired network without requiring a separate wireless controller?
autonomous AP deployment
What management frame contains the SSID of a wireless network?
Beacons
CoS priority value does a Cisco IP phone assign to traffic received from a host on its access port by default?
0
What information will the command 'show cdp neighbors detail' show us?
-Device ID or hostname, of the neighboring device -IP address of the neighboring device -platform, or product number, of the neighboring device -capabilities of the neighboring device -local interface -remote interface -holdtime -software version -native VLAN -VTP domain
What information will the command 'show cdp neighbors' show us?
-device ID of the neighboring device -capabilities of the neighboring device -product number of the neighboring device -holdtime -local interface -remote interface
What Cisco lightweight AP mode provides BSSs?
Local
What does Flexconnect mode enable in a lightweight AP?
Enables a failsafe for the lightweight AP if its connection to the WLC by way of CAPWAP tunnels goes down. Enables a lightweight AP to switch traffic between a given SSID and a VLAN.
What AP deployment that connects to APs to a WLC that is housed within a switch stack?
embedded AP deployment
What command globally disables LLDP?
no lldp run
If you issue the 'show ap config general MyLAP' command on a Cisco AP; what output is it going to least likely contain?
AP's Syslog server settings
True or False: FlexConnect ACLs are supported on the native VLAN
TRUE
In a split-MAC deployment, which device is responsible for prioritizing packets and responding to beacon and probe requests?
lightweight AP
What command should you issue to restore the LLDP hold timer configuration to its default value?
no lldp holdtime
In 802.11, there are numerous management frames to manage the connection between an AP and a wireless client. What are they?
-Beacons -Probe request -Probe responses - Association Request -Association responses -Authentication request -Authentication Reponses -Deauthentication -Reassociation Request -Reassoction reponses -announcement traffic indication message
What standards natively include PortFast, UplinkFast, and BackboneFast?
802.1w (Rapid Spanning Tree Protocol RSTP)
What is TFTP?
(T)FTP is a file transfer protocol. -Port 69 -uses UDP -does not require user authentication
A frame enters a switch fails the Frame Check Sequence. Which two interface counters are incremented?
Input erros CRC
Which 802.11 frame type is association reponse?
Management
In which way does a spine-and-leaf architecture allow for scalability in a network when additional access ports are required?
A leaf switch can be added with connections to every spine switch
When configuring IPv6 on an interface, which two IPv6 multicast groups are joined?
FF02::1 FF02::2
What is the default behavior of a Layer 2 switch when a frame with an unknown destination MAC address is received?
The L2 switch floods packets to all ports except the receiving port in the given VLAN
Which IPv6 address type handles communication between subnets and cannot route on the internet?
Unique Local
Which IPv6 address block sends packets to a group address rather than a single address?
FF00::/8
What is a benefit of using a Cisco Wireless LAN Controller?
It eliminates the need to configure each access point individually
True or False: When implementing Link Aggregation on a Cisco Wireless LAN Controller, only ONE functional physical port is needed to pass client traffic.
TRUE
What conditions must be met before SSH can operate normally on a Cisco IOS switch?
-switch must be running k9 (crypto) IOS image -ip domain-name command must be configured
What conditions must be met before RSA can operate?
-host name -domain name
Which result occurs when PortFast is enabled on an interface that is connected to another switch?
Spanning tree may fail to detect a switching loop in the network that causes broadcast storms.
Device that manages access points
wireless LAN controller
device that provides Wi-Fi devices with a connection to a wired network
access point
used for out of band management of a WLC
service port
used to support the mobility management of the WLC
virtual interface
applied to the WLAN for wireless client communication
dynamic interface
Which unified access point mode continues to serve wireless clients after losing connectivity to the Cisco Wireless LAN Controller?
FlexConnect
Which mode must be used to configure EtherChannel between two switches without using a negotiation protocol?
ON
Which mode allows access points to be managed by Cisco Wireless LAN Controllers?
lightweight
Which two values or settings must be entered when configuring a new WLAN in the Cisco Wireless LAN Controller GUI?
SSID profile name
Which command is used to specify the delay time in seconds for LLDP to initialize on any interface?
lldp reinit
Two switches are connected and using Cisco Dynamic Trunking Protocol. SW1 is set to Dynamic Auto and SW2 is set to Dynamic Desirable. What is the result of this configuration?
The link becomes a trunk port.
When OSPF learns multiple paths to a network, how does it select a route?
It divides a reference bandwidth of 100 Mbps by the actual bandwidth of the exiting interface to calculate the route with the lowest cost.
A user configured OSPF and advertised the Gigabit Ethernet interface in OSPF. By default, which type of OSPF network does this interface belong to?
broadcast
A router running EIGRP has learned the same route from two different paths. Which parameter does the router use to select the best path?
Metric
Which two actions are performed by the Weighted Random Early Detection mechanism?
-It can mitigate congestion by preventing the queue from filling up. - It drops lower-priority packets before it drops higher-priority packets.
Characteristics of DHCP Server
-assigns a default gateway to a client -holds the TCP/IP settings to be distributed to the clients -assigns IP addresses to enabled clients
Characteristics of DNS Server
-resolves web URLs to IP addresses -stores a list of IP addresses mapped to names
What is the effect of this configuration? ip arp inspection vlan 5-10 interface fastethernet 0/1 switchport mode access switchport access vlan 5
The switch discards all ingress ARP traffic with invalid MAC-to-IP address bindings
Which type of wireless encryption is used for WPA2 in preshared key mode?
AES-256
When configuring a WLAN with WPA2 PSK in the Cisco Wireless LAN Controller GUI, which two formats are available to select?
-ASCII -hexadecimal
What are the Cisco Wireless LAN Controller security settings in Layer 2 security mechanisms?
-WPA+WPA2 -802.1X
What are the Cisco Wireless LAN Controller security settings in Layer 3 security mechanisms?
-web policy -passthrough -VPN Pass-Through
What is TACACS+?
TACACS+ is a Cisco Proprietary protocol that enables AAA. Most commonly used for administrator access to network devices like routers and switches. -All three AAA can be used independently -TCP used on port 49 -Supports multiprotocol for Appletalk, NetBIOS, X.25 and NASI -encryption applied to username and password -Does NOT support 802.1x -use in trusted environment
What is RADIUS?
Designed to authenticate and log remote network users, uses AAA. The advantage to using RADIUS or TACACS+ on this central server is that you don't configure changes on each separate network device when a user is added or deleted, or when a user changes a password. You only make one change to the configuration on the server and then devices continue to access the server for authentication. -Authentication and Authorization are bundled together. When client request authentication from server it comes with both. Can not be seperated -Accounting can be used independently -Uses UDP on port 1645/1646, 1812/1813 -Encryption applied to password -Supports 802.1x -client/server model -use in semi trusted environment
Which statement correctly compares traditional networks and controller-based networks?
Only controller-based networks decouple the control plane and the data plane.
What are two benefits of network automation?
-Reduced operation costs -Faster changes with more reliable results
What are two characteristics of a controller-based network?
-It uses northbound and southbound APIs to communicate between architectural layers. -It moves the control plane to a central point.
Which two capabilities of Cisco DNA Center make it more extensible?
-REST APIs that allow for external applications to interact natively with Cisco DNA Center -SDKs that support interaction with third-party network equipment
What makes Cisco DNA Center different from traditional network management applications and their management of networks?
It abstracts policy from the actual device configuration.
Which API is used in controller-based architectures to interact with edge devices?
southbound
Which two SNMP actions are used by an NMS (Network Management Station) to extract information from an SNMP agent?
getNext get
What does both RED and WRED address?
tail drop it does NOT address strict-priority queuing
What best describes why WRED is useful for networks where the majority of traffic uses TCP?
-TCP packets that are dropped must be re-transmitted -TCP sources reduce traffic flow when congestion occurs
What is the MAC address represents an IP multicast address?
01-00-5E-0F-0F-0F
What are two true things regarding physical connections in the Cisco ACI architecture reguarding spine and leaf?
-Each spine node must connect to every leaf node -Each leaf node must connect to every spine mode
What is a Cisco ACI?
Data center technology that uses switches, categorized as spine and leaf nodes, to dynamically implement network application policies in response to application-level needs. Network policies are defined on a APIC (Application Policy Infrastructure Controller) and then implemented by the spine and leaf nodes.
What term is used to describe an Ethernet frame that exceeds 1,518 bytes and has a bad FCS value?
Giant *Remember the default MTU size for Ethernet frames is 1,500 bytes.
What table is used by a switch to discover the relationship between the L2 address of a device and the physical port used to reach the device?
CAM table *The switch makes forwarding decisions based on destination MAC address, it searches the CAM table for and entry that matches. If not found, it then forwards the frame to all its ports except the one it was received from.
What is an ARP table?
Contains L2 and L3 addresses. the method for finding a host's Link Layer (MAC) address when only its IP address is known. The ARP table is used to maintain a correlation between each MAC address and its corresponding IP address. The ARP table can be manually entered by the user. User entries are not aged out.
How do you override the default config of an DAI config on a port/interface?
By issuing ip arp inspection trust command in interface config mode.
What two IPv6 address prefixes are not routable?
-FF02::/16 -FF80::/10
What is a baby giant frame?
An Ethernet frame that is up to 1600 bytes in length.
What is a late collision?
Ethernet collision that occurs after 512 bits of frame have already been transmitted. An Ethernet cable that is too long, half-duplex port that is connected to a full-duplex port can create this as well
What do Runts, Frame Check Sequence errors and alignment errors indicate?
duplex mismatch
What field in an 802.11 MAC frame is used to indicate whether the frame is a management frame?
FC (Frame Control)
What address type is used by IPv6 routing protocols to form neighbor adjacencies?
Link-local address
What are IPv6 anycast routing protocol used for?
to send packets to the closest device that is configured with an anycast address. Ideal for load balancing.
What are IPv6 global unicast address used for?
AKA aggregatable global address, deisgned to minimize the size of internet routing tables.
What best describes what occurs when a packet must be re-sent because of an interruption that occurs before the 64th byte has been transmitted?
A collision occurs
What is the IPv6 prefix for global aggregatable unicast address?
2000::/3
What prefix will an IPv6-enabled computer use to automatically configure an IPv6 address for itself?
FE80::/10
In IPv6, Unicast packets are used for one-to-one communication
TRUE
In IPv6, Link-local addresses are unique only on the local segment and not routable
TRUE
Unicast link-local address are used for neighbor discovery and for environments in which no router is present to provide a routable IPv6 prefix
TRUE
On which interface is the OSPF broadcast network type enabled by default?
-Ethernet -FDDI
On which interface is the OSPF NONBROADCAST network type enabled by default?
-Frame Relay -X.25
On which interface is the OSPF POIN-TO-POINT network type enabled by default?
-HDLC -PPP
What OSPF network type has a default Hello timer of 10 seconds and a default dead timer of 40 seconds?
Point-to-Point Broadcast
What OSPF network has a default Hello timer of 30 seconds and a default dead timer of 120 seconds?
-Nonbroadcast -point-to-multipoint -point-to-multipoint nonbroadcast
What is true regarding a floating static route?
A floating static route is used to provide link redundancy
In OSPF, neighbor routers that are neither the DR nor BDR remain in what state?
2-Way Sate
In OSPF, routers that are DR or BDR will be in what state?
FULL
What Cisco-proprietary FHRP that elects an AVG and up to four primary AVFs?
GLBP
What does not indicate a duplex mismatch on an Ethernet LAN?
Baby Giants
What IPv6 address is a link-local multicast address that is used to send a packet to all routers on a segment?
FF02::2
What type of encryption is used for WEP?
RC4 *Less secure than AES and uses a stream cipher
What encryption is used to provide MICs and encryption in WPA?
TKIP (Temporal Key Integrity Protocol)
True or False: When inputting passwords for enable mode, will the engineer use the password from enable password or enable secret?
Enable secret *Enable secret will override enable password command
WLAN Components: Describe Access Point
device that provides Wi-Fi devices with a connection to a wired network
WLAN Components: Describe Virtual Interface
Used to support mobility management
WLAN Components: Describe Dynamic Interface
Applied to the WLAN for wireless client communication
WLAN Components: Describe Service Port
Used for out of band management of WLC
WLAN Components: Describe Wireless LAN Controller
Devices that manages access points
Which two values or settings must be entered when configuring a new WLAN in the Cisco Wireless LAN Controller GUI? (Choose two.)
SSID Profile Name
Which attribute does a router use to select the best path when two or more different routes to the same destination exist from two different routing protocols?
Administrative Distance
Which two actions influence the EIGRP route selection process? (Choose two.)
-The router calculates the feasible distance of all paths to the destination route. -The router calculates the best backup path to the destination route and assigns it as the feasible successor.
Which two outcomes are predictable behaviors for HSRP? (Choose two.)
-The two routers negotiate one router as the active router and the other as the standby router. -The two routers share a virtual IP address that is used as the default gateway for devices on the LAN.
How does HSRP provide first hop redundancy?
It uses a shared virtual MAC and a virtual IP address to a group of routers that serve as the default gateway for hosts on a LAN.
In OSPF, what is the default OSPF type for ETHERNET interfaces?
Broadcast
In OSPF, what is the default OSPF type for SERIAL interfaces?
Point-to-Point
Which command enables a router to become a DHCP client?
ip address dhcp
What is the primary difference between AAA authentication and authorization?
Authentication identifies and verifies a user who is attempting to access a system, and authorization controls that tasks the user can perform.
Which two encoding methods are supported by REST APIs?
XML JSON
Which two keying mechanisms are available within MACsec?
SAP MKA
What is MACsec?
MACsec provides Layer 2 encryption on the LAN. It also encapsulates and protects the metadata field that carries the Security Group TAG (SGT). Currently, two keying mechanisms are available: Security Association Protocol (SAP) and MAC Security Key Agreement (MKA).
Which two features are supported on the Cisco Adaptive Security Virtual Appliance?
High Availability Site-to-site VPN
Which type of authentication and encryption does SNMPv3 use at the authPriv security level?
MD5 or SHA authentication with DES encryption
Which protocol sends authentication and accounting in different requests?
TACACS+
Which API uses HTTP messages to transfer data to applications residing on different hosts?
REST
Router A receives several routes to the 192.168.1.0/26 network. Each of the routes is received from a different routing protocol. What route is installed on the routing table? -Route with lowest AD -Route with highest AD -Route with longest prefix match -Route with shortest prefix match
Route with lowest AD
True or False Metrics can only be used to compare routes from the same routing protocol. Therefore, when a routing protocol contains multiple routes to the same destination network, a router prefers the route with the lowest metric.
TRUE
In controller-based network, what typically contains end devices and L2 switches?
The data plane
What two routing protocols support equal-cost load balancing?
RIP and OSPF
What routing protocol supports unequal-cost load balancing?
EIGRP
When configuring WLAN by using WLC GUI, what setting are you most likely using the Layer 3 Security drop-down list on the Layer 3 tab?
VPN Pass-Through There are two types of WLANs you can configure by using the WLC GUI: WLAN and Guest LAN. VPN Pass-Through is ONLY available to WLAN.
When configuring GUEST LAN by using WLC GUI, what setting are you most likely using the Layer 3 Security drop-down list on the Layer 3 tab?
Web Authentication Web Passthrough
What VLAN is used by DTP to negotiate a trunk link when 802.1Q encapsulation is configured on the interface?
NATIVE VLAN
Virtual MAC address of HSRP version 2?
0000.0C9F.F00A
An API provides data to an administrator from a centralized controller. What network management technique is being used?
Network Automation
What command will automatically enable SSH on a router?
crypto key generate rsa
What Cisco lightweight AP modes provides BSSs?
local * Default lightweight AP mode
What encryption is used to provide MICs and encryption in WPA2?
AES CCMP
AD of IS-IS?
115
What language format is a REST API encoding format that uses HTML-like tags to define blocks of data?
XML
What is a duplex?
communication system is a point-to-point system of two devices that can communicate with each other in both direction
What is half-duplex?
it cannot send and receive data at the same time. Network hubs run in half-duplex mode in order to prevent collisions. Since hubs are rare in modern LANs, the half-duplex system is not widely used in Ethernet networks anymore.
What is a full duplex?
all nodes can send and receive on their port at the same time. There are no collisions in full-duplex mode, but the host NIC and the switch port must support the full-duplex mode
Looking for a different version?
CBTs get updated every year. Search for the exact version you're taking (e.g. "cyber awareness 2025").
Search all study materials