* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Download ICND2 Cisco Test Questions
Survey
Document related concepts
Transcript
For questions, comments, and feedback please contact: [email protected] CCBOOTCAMP’s® Comprehensive ICND2 Study Guide With Sample Questions Interconnecting Cisco Networking Devices Part 2 (ICND2) Cisco Exam 640-816 A Unique Study Guide format that compresses important need-to-knowinformation into short easy-to-read segments followed with pertinent practice questions. Each Module is then followed with relevant Sample Exam Questions. The Answer Key is included but located at the end of the study guide to facilitate a No Peek study habit. CCBOOTCAMP® 375 N. Stephanie Street Building 21, Suite 2111 Henderson, NV 89014 PH# 702-968-5100 www.ccbootcamp.com “Cisco” the “Cisco Logo,” “CCNA,” “CCNP,” “CCDP,” “CCDA,” “CCIE,” “Cisco Certified Network Associate,” “Cisco Certified Network Professional,” “Cisco Certified Design Associate,” and “Cisco Certified Design Professional,” are registered trademarks of Cisco Systems, Inc. The contents contained herein, are not associated with nor endorsed by Cisco Systems, Inc. © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] i For questions, comments, and feedback please contact: [email protected] CCBOOTCAMP®’s Comprehensive ICND2 Study Guide With Sample Questions First Edition Brad Ellis CCIE#5796 Ed Owens Luke Foster Shaun White Copyright © 2007 CCBOOTCAMP® Published by: CCBOOTCAMP® 375 N. Stephanie St. Bldg. 21, Suite 2111 Henderson, NV 89014 All rights reserved. No part of this book may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying, recording, or by any information storage and retrieval system, without written permission from the publisher, except for the inclusion of brief quotations in a review. Printed in the United States of America on December 7, 2007 Warning and Disclaimer This book is designed to provide information for ICND1, ICND2, and CCNA candidates looking for hands-on pre-study material. Every effort has been made to make this study guide as complete as possible and as accurate as possible, but no warranty is implied. ® The information is provided on an “as is” basis. The authors and CCBOOTCAMP shall have neither liability nor responsibility to any person or entity with respect to any loss or damages arising from the information contained in this book or from the use of the discs or programs that may accompany it. Feedback Information At CCBOOTCAMP®, our goal is to create an easy-to-use reference study guide of the highest quality and value. User’s feedback is always appreciated and welcome. Please contact us through email at [email protected] with comments and questions. © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] ii For questions, comments, and feedback please contact: [email protected] Contents Module 1 – Small Network Implementation..................................................................................... 1 Introducing the Review Lab......................................................................................................... 1 Showing the Switch Initial Startup Status ............................................................................... 1 Entering the EXEC Modes ...................................................................................................... 2 Command History ................................................................................................................... 2 Configuring Password Security............................................................................................... 3 Configuring Cisco Router Interfaces....................................................................................... 3 Cisco IOS CLI Functions......................................................................................................... 4 Configuration Modes of Cisco IOS Software .......................................................................... 5 Help Facilities of the Cisco IOS CLI........................................................................................ 7 Command Review................................................................................................................... 8 Sample Exam Questions........................................................................................................... 10 Module 2 – Medium-Sized Switched Network Construction ......................................................... 12 Implementing VLANs and Trunks ............................................................................................. 12 Understanding Trunking with 802.1Q ................................................................................... 12 802.1Q Trunking Configuration............................................................................................. 12 VLAN Membership Modes .................................................................................................... 12 Understanding VLAN Trunking Protocol............................................................................... 13 VTP Configuration................................................................................................................. 13 VLAN Creation ...................................................................................................................... 14 Spanning-Tree Configuration................................................................................................ 15 Adds, Moves, and Changes for VLANs ................................................................................ 15 VTP Modes ........................................................................................................................... 15 VTP Configuration................................................................................................................. 16 Improving Performance with Spanning Tree............................................................................. 17 Switch Behavior with Broadcast Frames .............................................................................. 17 © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] iii For questions, comments, and feedback please contact: [email protected] Broadcast Storms ................................................................................................................. 17 Recognizing Issues of a Redundant Switched Topology ..................................................... 17 Resolving Issues with STP ................................................................................................... 18 Spanning-Tree Operation ..................................................................................................... 18 Rapid Spanning Tree Protocol.............................................................................................. 20 RSPT Port States.................................................................................................................. 20 RSPT Port Roles................................................................................................................... 21 Routing Between VLANs........................................................................................................... 21 Configuring Inter-VLAN Routing ........................................................................................... 21 Securing the Expanded Network............................................................................................... 21 Describing Port Security ....................................................................................................... 21 Troubleshooting Switched Networks......................................................................................... 22 Configuration Issues ............................................................................................................. 22 Trunk Mode Mismatches....................................................................................................... 22 Recently Installed Switch Causes Network Problems .......................................................... 23 Sample Exam Questions........................................................................................................... 24 Module 3 – Medium-Sized Routed Network Construction ............................................................ 31 Reviewing Routing Operations.................................................................................................. 31 Reviewing Dynamic Routing ................................................................................................. 31 Example: Administrative Distance ........................................................................................ 32 Understanding Distance Vector Routing Protocols .............................................................. 32 Example: Counting to Infinity ................................................................................................ 33 Example: Split Horizon.......................................................................................................... 33 Example: Route Poisoning.................................................................................................... 33 Understanding Link-State Routing Protocols........................................................................ 34 Link-State Routing Protocol Algorithms ................................................................................ 35 Implementing VLSM .................................................................................................................. 35 Reviewing Subnets ............................................................................................................... 35 © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] iv For questions, comments, and feedback please contact: [email protected] Example: Summarizing Within an Octet ............................................................................... 36 Example: Summarizing Routes in a Discontiguous Network................................................ 37 Sample Exam Questions........................................................................................................... 38 Module 4 – Single-Area OSPF Implementation ............................................................................ 42 Implementing OSPF .................................................................................................................. 42 Overview ............................................................................................................................... 42 Introducing OSPF ................................................................................................................. 42 SPF Algorithm....................................................................................................................... 42 Configuring and Verifying OSPF........................................................................................... 43 Using OSPF debug Commands ........................................................................................... 44 Verifying Plaintext Password Authentication ........................................................................ 46 Sample Exam Questions........................................................................................................... 47 Module 5 – EIGRP Implementation ............................................................................................... 49 Implementing EGRIP................................................................................................................. 49 Introducing EIGRP ................................................................................................................ 49 Configuring and Verifying EIGRP ......................................................................................... 49 Example: EIGRP Configuration ............................................................................................ 49 EIGRP Authentication ........................................................................................................... 51 Troubleshooting EIGRP ............................................................................................................ 51 Troubleshooting EIGRP Neighbor Issues............................................................................. 51 Sample Exam Questions........................................................................................................... 52 Module 6 – Access Control Lists ................................................................................................... 54 Introducing ACL Operations...................................................................................................... 54 Example: Outbound ACL ...................................................................................................... 54 Example: Inbound ACL ......................................................................................................... 54 ACL Identification.................................................................................................................. 54 Types of ACLs ...................................................................................................................... 55 Configuring and Troubleshooting ACLs .................................................................................... 56 © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] v For questions, comments, and feedback please contact: [email protected] Configuring Numbered Standard IPv4 ACLs ........................................................................ 56 Example: Extended ACL with the Established Parameter.................................................... 57 Example: Numbered Extended IP ACL – Deny FTP from Subnets ..................................... 58 Troubleshooting ACLs .......................................................................................................... 59 Sample Exam Questions........................................................................................................... 60 Module 7 – Address Space Management ..................................................................................... 62 Scaling the Network with NAT and PAT.................................................................................... 62 Introducing NAT and PAT ..................................................................................................... 62 Example: Static NAT address Mapping ................................................................................ 63 Example: Translating Inside Source Addresses ................................................................... 63 Example: Overloading an inside Global Address ................................................................. 64 Resolving Translation Table Issues...................................................................................... 65 Transitioning to IPv6.................................................................................................................. 66 Reasons for Using IPv6 ........................................................................................................ 66 Understanding IPv6 Addresses ............................................................................................ 67 Global Addresses.................................................................................................................. 68 Use of EUI-64 Format in IPv6 Addresses............................................................................. 68 Routing Considerations with IPv6......................................................................................... 69 Strategies for Implementing IPv6.......................................................................................... 70 Sample Exam Questions........................................................................................................... 72 Module 8 – LAN extension into a WAN ......................................................................................... 74 Introducing VPN Solutions ........................................................................................................ 74 VPNs and Their Benefits....................................................................................................... 74 Types of VPNs ...................................................................................................................... 74 Introducing IPsec .................................................................................................................. 75 IPsec Protocol Framework.................................................................................................... 76 Establishing a Point-to-Point WAN Connection with PPP......................................................... 76 Overview of PPP................................................................................................................... 76 © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] vi For questions, comments, and feedback please contact: [email protected] Configuring and Verifying PPP ............................................................................................. 78 Example: Verifying PPP Encapsulation Configurations........................................................ 79 Establishing A WAN Connection with Frame Relay.................................................................. 79 Understanding Frame Relay ................................................................................................. 79 Example: Frame Relay Terminology –DLCI ......................................................................... 81 Example: Frame Relay Address Mapping ............................................................................ 82 Sample Exam Question ............................................................................................................ 84 ICND2 Answer Key ............................................................................................................... 88 Appendix A – List of Cisco Acronyms................................................................................... 97 Appendix B – Cisco Key Terms .......................................................................................... 125 Appendix C - Additional Cisco Key Terms - Listed Alphabetically...................................... 152 Appendix D – ASCII Table .................................................................................................. 181 Appendix E – Subnetting Basics and Tricks ....................................................................... 184 Appendix F – Public and Private IP Addressing ................................................................. 189 Appendix G – OSI and TCP/IP Model ................................................................................ 190 Appendix H – Cisco CLI Hot Keys ...................................................................................... 194 Appendix I – Technology and Transmission Speeds ......................................................... 195 Appendix J – How Many Bytes are There .......................................................................... 196 Appendix K – IANA Common Socket/Port Assignments .................................................... 197 © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] vii For questions, comments, and feedback please contact: [email protected] -Page intentionally left blank- © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] viii For questions, comments, and feedback please contact: [email protected] Module 1 – Small Network Implementation Introducing the Review Lab Showing the Switch Initial Startup Status The show interfaces command displays status and statistics information on the network interfaces of the switch. The table shows some fields in the display that are useful for checking on fundamental switch details. Output FastEthernetO/2 is up address is 0008.a445.ce82... Half-duplex, 10 Mb/s CRC Description Indicates the status of the interface hardware. In this example, it is functioning correctly. The hardware status is followed by the status of the line protocol, which in this example is also operational and active. Shows the MAC address that identifies the interface hardware. Shows the type mode of connection. Other possibilities include full duplex, 100 Mb/s. Shows that there were 0 CRC errors. CRC errors can indicate duplex mismatch or a malfunctioning Ethernet adapter in an attached device. 1. When you use the show interface command to display the status and statistics for the interfaces configured on a Catalyst switch, which output field indicates the MAC address that identifies the interface hardware? A. MTU 1500 bytes B. Hardware is … 10BaseT C. Address is 0050.BD73.E2C1 D. 802.1d STP State: Forwarding Switch status commands are as follows: show version: Displays the configuration of the system hardware and the software version information. show running-config: Displays the current active (running) configuration file of the switch. This command requires privileged EXEC mode access. The IP address, subnet mask, and default-gateway settings will be displayed here. show interfaces: Displays statistics and status information of all the interfaces on the switch. Both the switch trunks and the switch line ports are considered interfaces. The resulting output varies, depending on the network for which an interface has been configured. Usually this command is entered with the options (vpe and slot/number, where type allows values such as Ethernet and Fast Ethernet, and slot/number indicates slot 0 and the port number on the selected interface (for example, eO/I). © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] 1 For questions, comments, and feedback please contact: [email protected] 2. Which show command requires that you have privileged EXEC mode access? A. show ip B. show version C. show running D. show interfaces Entering the EXEC Modes When the correct enable password is entered, the switch or device prompt changes to hostname#, indicating that the user is now at the privileged EXEC level. Entering the ? command at the privileged EXEC level will reveal many more command options than those available at the user EXEC level. To return to the user EXEC level, enter the disable command at the hostname# prompt. 3. Which Cisco IOS is used to return to the user EXEC mode from the privileged EXEC mode? A. exit> B. quit C. disable> D. userexec Command History Command Description Ctrl-P or up arrow Recalls last (previous) commands. Ctrl-N or Down Arrow Recalls more recent commands. Show history Shows command buffer contents. History size line Sets the buffer size permanently. Terminal history size lines Sets session command buffer size. © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] 2 For questions, comments, and feedback please contact: [email protected] 4. Which command returns to more recent commands in the history buffer after recalling commands? A. Ctrl-N B. Ctrl-P C. show history D. show terminal Configuring Password Security The enable password global command restricts access to the privileged EXEC mode. You can assign an encrypted form of the enable password, called the enable secret password, by entering the enable secret command with the desired password at the global configuration mode prompt. If the enable secret password is configured, it is used instead of the enable password, not in addition to it. 5. If both the enable secret and the enable password commands are configured on your router, how do you get to the # prompt? A. Enter the enable secret command. B. Enter the enable password command. C. Enter either the enable secret or the enable password command. D. Enter both the enable secret and the enable password commands. Configuring Cisco Router Interfaces You can enable many features on a per-interface basis. Interface configuration mode commands modify the operation of Ethernet, serial, and many other interface types. When you enter the interface command, you must define the interface type number. The number assigned to each interface based on the physical location of the interface hardware in the router and is used to identify each interface. This identification is critical when there are multiple interfaces of the same type in a single router. Examples of an interface type and number are as follows: Router (config) #interface serial 0 Router (config) #interface fa 0/0 6. Which Cisco IOS command configures serial port in slot 0, port 1 on a modular router? A. serial 0/1 interface B. interface serial 0 1 C. interface serial 0/1 D. serial 0 1 interface Use the clock rate speed (with 64kbps expressed as 64000) command to set the clock speed of a router. © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] 3 For questions, comments, and feedback please contact: [email protected] 7. Which Cisco IOS command should you use to set the clock speed to 64 kbps on a serial interface on a Cisco router? A. clock rate 64 B. clock speed 64 C. clock rate 64000 D. clock speed 64000 Cisco IOS CLI Functions While Cisco IOS Software is a core technology that extends across many products, its operation details vary depending on the internetworking devices that are involved. To enter commands into the CLI, type or paste the entries within one of the several console configuration modes. In terminal configuration mode, an incremental compiler is invoked. Each configuration command entered is parsed as soon as you press the Enter key. 8. How do you instruct a Cisco device to parse and execute an entered command? A. Press the Send key B. Press the Enter key C. Add a space at end of the command D. Wait 5 seconds after you enter the command User Exec: Allows access to only a limited number of basic monitoring commands. 9. Which statement best describes what the user EXEC mode commands allow you to configure on a Cisco router? A. You cannot configure anything; the user mode commands are used to display information. B. The user EXEC mode allows you to perform global configuration tasks that affect the entire router. C. The user EXEC mode commands allow you to enter a secret password so that you can configure the router. D. The user EXEC mode commands allow you to configure interfaces, subinterfaces, lines, and routers. Privileged EXEC: allows access to all device commands, such as those used for configuration and Management, and can be password protected to allow only authorized users to access the device. © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] 4 For questions, comments, and feedback please contact: [email protected] 10. Which access level allows a person to access all router commands and can be password protected to allow only authorized individuals to access the router? A. user EXEC level B. setup EXEC level C. enable EXEC level D. privileged EXEC level Configuration Modes of Cisco IOS Software User EXEC mode: Hostname> Privileged EXEC Mode: Hostname# Global Configuration Mode: Hostname(config)# 11. Which CLI prompt indicates that you are working in privileged EXEC mode? A. hostname# B. hostname> C. hostname-exec> D. hostname-config From the privileged EXEC mode, you can enter global configuration mode using the configure terminal command. From global configuration mode, you can access specific configuration modes, which include, but are not limited to, the following: Interface: Supports commands that configure operations on a per-interface basis Subinterface: Supports commands that configure multiple virtual interfaces on a single physical interface Controller: Supports commands that configure controllers Line: Supports commands that configure the operation of a terminal line. Router: Supports commands that configure an IP routing protocol 12. Which configuration mode will you use to configure a particular port on a switch? A. user mode B. global configuration mode C. interface configuration mode D. controller configuration mode © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] 5 For questions, comments, and feedback please contact: [email protected] Configuration Mode Prompt Interface RouterX (config-if) # Subinterface RouterX (config-subif) # Controller RouterX (config-controller) # Line RouterX (config-line) # Router RouterX (config-router) # 13. Match each router prompt to its configuration mode. ______ 1. Line ______ 2. Router ______ 3. Interface ______ 4. Controller ______ 5. Subinterface A. Router(config-if)# B. Router(config-line)# C. Router(config-subif)# D. Router(config-router)# E. Router(config-controller)# Commands that point to or indicate a process or interface that will be configured are called major commands. When entered, major commands cause the CLI to enter a specific configuration mode. Major commands have no effect unless a subcommand that supplies the configuration entry is immediately entered. For example, the major command interface serial 0 has no effect unless it is followed by a subcommand that tells what is to be done to that interface. Notice that entering a major command switches from one configuration mode to another. 14. If you enter a major command on a Cisco router, what happens? A. The router returns you to user EXEC mode. B. The router returns a list of possible commands. C. The router invokes a global configuration command. D. The router switches you from one configuration mode to another. © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] 6 For questions, comments, and feedback please contact: [email protected] Help Facilities of the Cisco IOS CLI At any time during an EXEC session, you can enter a question mark (?) to get help. 15. Which command would you enter in the privileged EXEC mode to list the command options? A. ? B. init C. help D. login Word help: Enter the ? command to get word help for list of commands that begin with a particular character sequence. Enter the character sequence followed immediately by the question mark. Do not include a space before the question mark. The router displays a list of commands that begin with the characters you entered 16. What CLI command should you enter to display a list of commands that begin with the letter “c” on a Catalyst switch? A. c? B. c? C. help c D. help c* Command syntax help: Enter the ? command to get command syntax help for completing a command. Enter a question mark in place of a key word or argument. Include a space before the question mark. The network device then displays a list available command option. “<cr>” represents a carriage return. 17. What CLI command should you enter to display the command syntax help so that you can see how to complete a command that begins with “config”? A. config? B. config ? C. help config D. help config* Help Facilities Description Context-Sensitive Help Provides a list of commands and the arguments associated with a specific command Console Error Messages Identifies problems with any switch commands that are incorrectly entered so that they can be altered or corrected © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] 7 For questions, comments, and feedback please contact: [email protected] Command History Buffer Allows recall of long or complex commands or entries for reentry, review, or correction 18. Match each type of help available with the Cisco IOS CLI to its description ______ 1. context-sensitive help ______ 2. console error messages ______ 3. command history buffer A. Provides a list of commands and the arguments associated with a specific command. B. Allows recall of long or complex commands or entries for reentry, review, or correction. C. Identifies problems with router commands incorrectly entered so that you can alter or correct them. Command Review Command Description Ip address address mask Sets the IP address and mask of the device Ip default-gateway address Sets the default gateway of the switch 19. Which Cisco IOS command correctly configures an IP address and subnet mask on a switch? A. ip address B. ip address 196.125.243.10 C. 192.125.243.10 ip address D. ip address 196.125.243.10 255.255.255.0 20. Which Cisco IOS commands correctly configure the IP address and subnet mask for Ethernet interface 1 in slot 1? A. interface Ethernet 1 1 ip address 192.168.1.1 mask 255.255.255.0 B. interface Ethernet 1/1 ip address 192.168.1.1/24 C. interface Ethernet 1 1 ip address 192.168.1.1 255.255.255.0 D. interface Ethernet 1/1 ip address 192.168.1.1 255.255.255.0 © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] 8 For questions, comments, and feedback please contact: [email protected] Command Description Show cdp neighbors Displays the Cisco Discovery Protocol updates received on each local interface of the device. Show interfaces Displays information on all of the device interfaces. Show port-security Displays the administrative and operational status of all secure ports on a switch. Operationally displays specific interface security settings or all secure MAC addresses. [interface interface-id] [address] Show running-configuration Displays the active configuration Show startup-configuration Displays the configuration settings of the router NVRAM 21. What information does the show running-config command provide on a Cisco router? A. current (running) configuration in RAM B. system hardware and names of configuration files C. amount of NVRAM used to store the configuration D. version of Cisco IOS software running on the router Command Description Banner motd Configures the Message-of-the-Day banner. 22. Which Cisco IOS command creates a message to be displayed upon router login? A. hostname hostname B. banner motd message C. hostname interface description D. description interface description © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] 9 For questions, comments, and feedback please contact: [email protected] Sample Exam Questions 1-1 Refer to the exhibit. The network administrator made the entries that are shown and then saved the configuration. From a console connection, what password or password sequence is required for the administrator to access privileged mode on Router1? A. B. C. D. E. F. cisco sanfran sanjose either cisco or sanfran either cisco or sanjose sanjose and sanfran 1-2 © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] 10 For questions, comments, and feedback please contact: [email protected] 1-3 1-4 1-5 1-6 © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] 11 For questions, comments, and feedback please contact: [email protected] Module 2 – Medium-Sized Switched Network Construction Implementing VLANs and Trunks Understanding Trunking with 802.1Q A trunk is a point-to-point link between one or more Ethernet switch interfaces and another network device such as a router or a switch. Ethernet trunks carry the traffic of multiple VLANs over a single link and allow you to extend the VLAN across an entire network. 1. Which feature is required for multiple VLANs to span multiple switches? A. a trunk to connect the switches B. a router to connect the switches C. a bridge to connect the switches D. a VLAN configured between the switches Ethernet trunk interfaces support different trunking modes. You can configure an interface as trunking or nontrunking, or have it negotiate trunking with the neighboring interfaces. 802.1Q Trunking Configuration The 802.1Q protocol carries traffic of multiple VLANS over a single link on a multi-vendor network. 2. What are two reasons for using 802.1Q? (Choose two.) A. to allow switches to share a trunk link with non-trunking clients B. to allow clients to see the 802.1Q header C. to provide inter-VLAN communications over a bridge D. to load-balance traffic between parallel links using the Spanning Tree Protocol E. to provide trunking between Cisco switches and other vendor switches VLAN Membership Modes Dynamic VLAN: Cisco Catalyst switches support dynamic VLANs using a VLAN Management Policy Server VMPS; you can also designate an external server as the VMPS. The VMPS contains a database that maps MAC addresses to VLAN assignments. © 2007CCBOOTCAMP®. Report unauthorized copies to: [email protected] 12