Download The Internet and Its Uses

Survey
yes no Was this document useful for you?
   Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

page
1
page
2
page
3
page
4
page
5
page
6
page
7
page
8
page
9
page
10
page
11
page
12
page
13
page
14
page
15
page
16
page
17
page
18
page
19
page
20
page
21
page
22
page
23
page
24
page
25
page
26
page
27
page
28
page
29
page
30
page
31
page
32
page
33
page
34
page
35
page
36
page
37
page
38
page
39
page
40
page
41
page
42
page
43
page
44
page
45
page
46
page
47
page
48
page
49
page
50
page
51
page
52
page
53
page
54
page
55
page
56
page
57
page
58
page
59
page
60
page
61
page
62
page
63
page
64
page
65
page
66
page
67
page
68
page
69
page
70
page
71
page
72
page
73
page
74
page
75
page
76
page
77
page
78
page
79
page
80
page
81
page
82
page
83
page
84
page
85
page
86
page
87
page
88
page
89
page
90
page
91
page
92
page
93
page
94
page
95
page
96
page
97
page
98
page
99
page
100
page
101
page
102
page
103
page
104
page
105
page
106
page
107
Document related concepts

Wake-on-LAN wikipedia , lookup

Airborne Networking wikipedia , lookup

Zero-configuration networking wikipedia , lookup

IEEE 802.1aq wikipedia , lookup

Cracking of wireless networks wikipedia , lookup

Network tap wikipedia , lookup

Power over Ethernet wikipedia , lookup

Telephone exchange wikipedia , lookup

Cisco Systems wikipedia , lookup

Spanning Tree Protocol wikipedia , lookup

Virtual LAN wikipedia , lookup

Transcript 
LAN Switching and Wireless
VLANs
Chapter 3
Modified by Pete Brierley
ITE I Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
1
Objectives

Explain the role of VLANs in a converged network.

Explain the role of trunking VLANs in a converged
network.

Configure VLANs on switches in a converged
network topology.

Troubleshoot common software or hardware
misconfigurations associated with VLANs on switches
in a converged network topology.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
2
Explain the Role of VLANs in a
Converged Network
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
3
Explain the Role of VLANs in a
Converged Network
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
4
Explain the Role of VLANs in a
Converged Network
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
5
Explain the Role of VLANs in a
Converged Network
How to manage broadcast domains with VLANs
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
6
Explain the Role of VLANs in a
Converged Network
 A switch virtual interface (SVI) is a VLAN of switch
ports represented by one interface to a routing or
bridging system.
 There is one-to-one mapping between a VLAN and
SVI, thus only a single SVI can be mapped to a VLAN.
 In default setting, an SVI is created for the default
VLAN (VLAN1) to permit remote switch administration.
 An SVI cannot be activated unless associated with a
physical port.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
7
Explain the Role of VLANs in a
Converged Network
•SVIs are generally configured for a VLAN for the following
reasons:
•Allow traffic to be routed between VLANs by providing a
default gateway for the VLAN.
•Provide fallback bridging (if required for non-routable
protocols).
•Provide Layer 3 IP connectivity to the switch.
•Support bridging configurations and routing protocol.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
8
The Role of Trunking VLANs in a Converged
Network
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
9
Explain the Role of Trunking VLANs in a
Converged Network
 How a trunk works
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
10
Explain the Role of Trunking VLANs in a
Converged Network
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
11
Switchport mode dynamic auto
 This command makes the interface willing to convert
the link to a trunk link if the neighboring interface is set
to trunk or desirable mode. Otherwise, the link will
become a non-trunking link.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
12
Configure VLANs on the Switches in a
Converged Network Topology
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
13
Configure VLANs on the Switches in a
Converged Network Topology
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
14
Configure VLANs on the Switches in a
Converged Network Topology
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
15
Configure VLANs on the Switches in a
Converged Network Topology
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
16
Troubleshoot Common Software or Hardware
Misconfigurations Associated with VLANs
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
17
Troubleshoot Common Software or Hardware
Misconfigurations Associated with VLANs
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
18
Troubleshoot Common Software or Hardware
Misconfigurations Associated with VLANs
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
19
The
VLAN
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
20
VLAN
VLAN:
• is a logical grouping
• grouped by:
• function
• department
• application
VLAN configuration is done by software.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
21
Typically in LAN configuration, users are grouped
based on their location in relation to the HUB they
are connected to.
¾ M acin tos h SE
HUB
¾ M acin tos h SE
Sales
¾ M acin tos h SE
¾ M acin tos h SE
¾ M acin tos h SE
HUB
Design
¾ M acin tos h SE
¾ M acin tos h SE
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
22
VLAN implementations offered a port-mapping that
establishes a broadcast domain between default
group of devices.
¾ M acin tos h SE
Switch
¾ M acin tos h SE
¾ M acin tos h SE
2nd floor
¾ M acin tos h SE
1st floor
Switch
¾ M acin tos h SE
¾ M acin tos h SE
Admin
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
Students
Instructors
23
Traditionally, the role of a router is to provide
• firewall
• broadcast management
• route processing & distribution
Routers are used to properly communicate between
different VLANs. Use the routers as your backbone to
transmit information at high bandwidth among your
VLAN switches.
Routers in VLAN topologies provide
• broadcast filtering
• security
• traffic flow management
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
24
Properties of VLANs:
• VLANs work at layer 2 & 3 of OSI model
• Communications between VLANs is by layer 3
routing
• VLANs provide a method of controlling network
broadcast
• Network administrator assigns users to VLAN
• VLANs can increase network security by defining
which network nodes can communicate with each
other
A VLAN is a broadcast domain that one or more
switches create
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
25
VLAN implementations offered a port-mapping that
establishes a broadcast domain between default
group of devices.
¾ M acin tos h SE
Switch
¾ M acin tos h SE
¾ M acin tos h SE
2nd floor
¾ M acin tos h SE
1st floor
Switch
¾ M acin tos h SE
¾ M acin tos h SE
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
Broadcast
domain
Broadcast
domain
Admin
Students
Broadcast
domain
Instructors
26
VLAN Operation
Ports that are assigned to the same VLAN share broadcasts.
Ports that do not belong to that VLAN do not share these broadcast.
There are two (2) methods in which to create VLANs:
1. Static VLANs –
This method is also referred to a port-based membership. As a
device is connected to the network, it automatically assumes
the VLAN of that port
2. Dynamic VLANs –
Dynamic VLANs are created through the use of software
packages such as CiscoWorks 2000. With a VLAN
Management Policy Server (VMPS), you can assign switch
ports to VLANs dynamically based on the source MAC address
of the device that is connected to the port.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
27
Static VLAN
The default VLAN for every port in the switch is
VLAN1, or the management VLAN.
The management VLAN cannot be deleted; however,
additional VLANs can be created and ports can be
reassigned to these alternate VLANs.
A router is used to switch between different VLANs.
Hence, each VLAN should have a unique Layer 3
network or subnet address assigned.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
28
Advantages of VLANs:
• reduce administration costs related to solving problems associated
with moves, additions & changes
• 20%-40% of the workforce physically moves each year
• one can move the node to a new location without changing its’
IP / subnet address by plugging the node into port for that VLAN
• controls broadcast activity
• provide workgroup & network security
• save money by keeping their HUBs and connecting them to
switches i.e. don’t’ have to ‘throw away’ the HUBs.
The goal of the end-to-end VLANs, is to maintain the 80/20 traffic flow
rule – 80% of the traffic on the local VLAN, and 20% on a remote VLAN.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
29
Broadcast:
Switches (not talking about VLANs here) create ‘smaller collision’
domains, but they do not create smaller broadcast domains. Hence
use routers which don’t propagate broadcasts.
Though by setting up the different VLANs on a switch, one can control
the broadcast messaging from one VLAN to another.
Security:
• restrict the number of users in a VLAN group
• prevent another user from joining without first receiving approval
from the VLAN network administrator
• configure all unused ports to a default low-service VLAN
• adding access list in the router
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
30
Using Hubs with VLANs
Each hub segment that is connected to a
switch port can be assigned to only one
VLAN.
All stations that share a hub segment
become members of the same VLAN
group.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
31
VLAN Types
Port-based VLANs (static):
• nodes connected to ports in the same VLAN have same VLAN
ID.
• users are assigned by port
MAC address-based VLANs (dynamic):
• VLAN Management Policy Server (VMPS)
• are ports on a switch that can automatically determine their VLAN
assignments
Protocol-based VLANs (dynamic):
• are ports on a switch that can automatically determine their VLAN
assignments
• functions are based on:
• logical addressing
• protocol type
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
32
VLAN Frame Identification
With multiswitch VLANs, the frame headers are
encapsulated or modified to reflect a VLAN ID before
the frame is sent onto the link between the switches.
Multiple trunking methodologies include:
• IEEE 802.1q
• ISL (Inter-Switch Link Protocol)
• 802.10
• LANE (LAN Emulation)
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
33
The most common approach for logically
grouping users into distinct VLAN:
• Frame Filtering
• filtering table is developed. Can be based
on
• MAC
• protocol
• each frame is examined
• depending on the ‘filter table’ sends the
frame out the designated port
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
34
Frame Identification
A unique VLAN ID is assigned to each VLAN in
the switch the tagged frame travels the
backbone among switches
When the frame exits the switch on nonbackbone, the identifier is removed
This technique is chosen by IEEE (IEEE
802.1q)gaining as the standard trunking
mechanism function at layer 2
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
35
Packet with VLANID, added by the switch
¾ M acin tos h SE
Switch
VLAN2
¾ M acin tos h SE
¾ M acin tos h SE
2nd floor
Backbone
¾ M acin tos h SE
1st floor
Switch
¾ M acin tos h SE
¾ M acin tos h SE
VLAN2
VLAN1
VLAN2
VLAN3
VLANID is removed by the switch
before sending to the target host.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
36
Inter-Switch Link Protocol
ISL is a Cisco proprietary encapsulation protocol that
interconnects multiple switches.
FDDI 802.10
Is a Cisco proprietary method of transporting VLAN
information inside the standard IEEE 802.10 frame for
Fiber Distributed Data Interface (FDDI).
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
37
LAN Emulation (LANE)
LANE is a standard defined by the ATM Forum that
gives two stations attached via ATM the same
capabilities they normally have if they are LANs such
as Ethernet or Token Ring.
The function of the LANE protocol is to emulate a LAN
on top of ATM network.
That is, the LANE protocols make an ATM network look
and behave like an Ethernet or Token Ring LAN.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
38
FACTS
VLAN makes up a switched network that is logically segmented
by functions, project teams or applications, without regard to the
physical location of users.
Each switch port can be assigned to a VLAN.
Ports assigned to the same VLAN share broadcasts.
So VLANs are used to create broadcast domains.
VLAN implementation methods used to assign a switch port to a
VLAN:
• port-centric
• static
• dynamic
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
39
¾ M acin tos h SE
Switch
¾ M acin tos h SE
¾ M acin tos h SE
2nd floor
¾ M acin tos h SE
1st floor
Switch
¾ M acin tos h SE
¾ M acin tos h SE
Admin
Students
Instructors
Only the devices on the same VLAN contend with collisions. Hence
broadcast traffic within one VLAN is not transmitted outside the VLAN.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
40
NOTE:
For configuring static VLANs on Cisco 29xx
switches:
• max number of VLANs is switch dependent & is
limited by the number of ports on the switch.
• VLAN1 is one of the factory-default VLANs
• VLAN1 is the default Ethernet VLAN
• Cisco Discovery Protocol (CDP) & VLAN
Trunking Protocol (VTP) advertisements are sent
on VLAN1.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
41
NOTEs:
Some encapsulation protocol, such as 802.1q
or ISL, must be configured on all switch
trunks that participate in the VLAN.
• commands for configuring VLANs vary by
model number.
• the catalyst 29xx IP address is in the
VLAN1 broadcast domain.
• switch must be in VTP server mode to
create, add, or delete VLANs.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
42
¾ M acin tos h SE
¾ M acin tos h SE
¾ M acin tos h SE
¾ M acin tos h SE
¾ M acin tos h SE
¾ M acin tos h SE
¾ M acin tos h SE
¾ M acin tos h SE
For non-VLAN configuration, switches makes ‘smaller
collision’ domain. However, they do not make ‘smaller
broadcast’ domains. A broadcast messages is sent to all
the devices connected to the switch.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
43
¾ M acin tos h SE
Switch A
¾ M acin tos h SE
NonVLAN
¾ M acin tos h SE
¾ M acin tos h SE
Router
¾ M acin tos h SE
Switch B
¾ M acin tos h SE
¾ M acin tos h SE
Use routers to reduce the broadcast of messages. A
broadcast on Switch A is broadcast to all of its users, but is
not broadcasted to Switch B (because the router won’t send
it onto Switch B!)
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
44
PSTN
Local Office
Toll Office
Tandem
Class 5
Class 4
Class 3
Local Office
Tandem Office
Toll Office
Toll Office
Trunk
Line
Local Loop
Demarc
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
PSTN (Public Switched Telephone Network)
Cisco Public
45
Troubleshooting
Switch#show vlan
Switch#show vlan brief
Switch#show spanning-tree
Switch#Show interface
PSTN (Public Switched Telephone Network)
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
46
Summary
 VLANS
Allows an administrator to logically group devices
that act as their own network
Are used to segment broadcast domains
Some benefits of VLANs include
Cost reduction, security, higher performance,
better management
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
47
Summary
 Types of Traffic on a VLAN include
Data
Voice
Network protocol
Network management
 Communication between different VLANs requires the
use of
Routers
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
48
Summary
 Trunks
A common conduit used by multiple VLANS for
intra-VLAN communication
 EEE 802.1Q
The standard trunking protocol
Uses frame tagging to identify the VLAN to which a
frame belongs
Does not tag native VLAN traffic
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
49
VLAN Questions
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
50
What happens to the member ports of a VLAN when the
VLAN is deleted?
1. They become inactive.
2. They default back to the management VLAN.
3. They automatically become a part of VLAN1.
4. They must be assigned to another VLAN before the
original VLAN can be deleted.
5. They remain a part of that VLAN until the switch is
rebooted. They then become members of the
management VLAN.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
51
What happens to the member ports of a VLAN when the
VLAN is deleted?
1. They become inactive.
2. They default back to the management VLAN.
3. They automatically become a part of VLAN1.
4. They must be assigned to another VLAN before the
original VLAN can be deleted.
5. They remain a part of that VLAN until the switch is
rebooted. They then become members of the
management VLAN.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
52
Which of the following devices is needed for a packet to be
passed from one VLAN to another?
1. Bridge
2. Router
3. Switch
4. Hub
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
53
Which of the following devices is needed for a packet to be
passed from one VLAN to another?
1. Bridge
2. Router
3. Switch
4. Hub
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
54
Which of the following describe networks in which the use
of static VLANs is appropriate? (Choose three.)
1. Workstations, departments, and network resources
are seldom moved.
2. VLAN port membership frequently changes.
3. Robust VLAN management software is available to
the network administrator.
4. The overhead required to manage VLAN MAC
address and custom filtering tables is not desirable.
5. VLANs are often added, deleted, and modified.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
55
Which of the following describe networks in which the use
of static VLANs is appropriate? (Choose three.)
1. Workstations, departments, and network
resources are seldom moved.
2. VLAN port membership frequently changes.
3. Robust VLAN management software is available
to the network administrator.
4. The overhead required to manage VLAN MAC
address and custom filtering tables is not
desirable.
5. VLANs are often added, deleted, and modified.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
56
A network administrator has configured a switch with three
VLANs: VLAN1, VLAN2, and VLAN3. Port 10 is to be
assigned to VLAN3. Which of the following commands are
needed to assign port 10 to VLAN3? (Choose three.)
1. Switch_1(config)# switchport interface fastethernet
0/10
2. Switch_1(config-if)# switchport mode access
3. Switch_1(config-if)# switchport access
4. Switch_1(config-if)# switchport access vlan 3
5. Switch_1(config)# interface fastethernet 0/10
ITE 1 Chapter 6
6. Switch_1# vlan database
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
57
A network administrator has configured a switch with three
VLANs: VLAN1, VLAN2, and VLAN3. Port 10 is to be
assigned to VLAN3. Which of the following commands are
needed to assign port 10 to VLAN3? (Choose three.)
1. Switch_1(config)# switchport interface fastethernet
0/10
2. Switch_1(config-if)# switchport mode access
3. Switch_1(config-if)# switchport access
4. Switch_1(config-if)# switchport access vlan 3
5. Switch_1(config)# interface fastethernet 0/10
ITE 1 Chapter 6
6. Switch_1# vlan database
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
58
What does the phrase microsegmentation with scalability
mean?
1. The ability to increase network size without creating
collisions domains
2. The ability to put a huge number of hosts on one
switch
3. The ability to broadcast to more nodes at once
4. All of the above
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
59
What does the phrase microsegmentation with scalability
mean?
1. The ability to increase network size without
creating collisions domains
2. The ability to put a huge number of hosts on one
switch
3. The ability to broadcast to more nodes at once
4. All of the above
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
60
What happens to the member ports of a VLAN when the
VLAN is deleted?
1. They become inactive.
2. They default back to the management VLAN.
3. They automatically become a part of VLAN1.
4. They must be assigned to another VLAN before the
original VLAN can be deleted.
5. They remain a part of that VLAN until the switch is
rebooted. They then become members of the
management VLAN.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
61
What happens to the member ports of a VLAN when the
VLAN is deleted?
1. They become inactive.
2. They default back to the management VLAN.
3. They automatically become a part of VLAN1.
4. They must be assigned to another VLAN before the
original VLAN can be deleted.
5. They remain a part of that VLAN until the switch is
rebooted. They then become members of the
management VLAN.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
62
Which of the following devices is needed for a packet to be
passed from one VLAN to another?
1. Bridge
2. Router
3. Switch
4. Hub
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
63
Which of the following devices is needed for a packet to be
passed from one VLAN to another?
1. Bridge
2. Router
3. Switch
4. Hub
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
64
Which of the following describe networks in which the use
of static VLANs is appropriate? (Choose three.)
1. Workstations, departments, and network resources
are seldom moved.
2. VLAN port membership frequently changes.
3. Robust VLAN management software is available to
the network administrator.
4. The overhead required to manage VLAN MAC
address and custom filtering tables is not desirable.
5. VLANs are often added, deleted, and modified.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
65
Which of the following describe networks in which the use
of static VLANs is appropriate? (Choose three.)
1. Workstations, departments, and network
resources are seldom moved.
2. VLAN port membership frequently changes.
3. Robust VLAN management software is available
to the network administrator.
4. The overhead required to manage VLAN MAC
address and custom filtering tables is not
desirable.
5. VLANs are often added, deleted, and modified.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
66
A network administrator has configured a switch with three
VLANs: VLAN1, VLAN2, and VLAN3. Port 10 is to be
assigned to VLAN3. Which of the following commands are
needed to assign port 10 to VLAN3? (Choose three.)
1. Switch_1(config)# switchport interface fastethernet
0/10
2. Switch_1(config-if)# switchport mode access
3. Switch_1(config-if)# switchport access
4. Switch_1(config-if)# switchport access vlan 3
5. Switch_1(config)# interface fastethernet 0/10
ITE 1 Chapter 6
6. Switch_1# vlan database
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
67
A network administrator has configured a switch with three
VLANs: VLAN1, VLAN2, and VLAN3. Port 10 is to be
assigned to VLAN3. Which of the following commands are
needed to assign port 10 to VLAN3? (Choose three.)
1. Switch_1(config)# switchport interface fastethernet
0/10
2. Switch_1(config-if)# switchport mode access
3. Switch_1(config-if)# switchport access
4. Switch_1(config-if)# switchport access vlan 3
5. Switch_1(config)# interface fastethernet 0/10
ITE 1 Chapter 6
6. Switch_1# vlan database
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
68
What does the phrase microsegmentation with scalability
mean?
1. The ability to increase network size without creating
collisions domains
2. The ability to put a huge number of hosts on one
switch
3. The ability to broadcast to more nodes at once
4. All of the above
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
69
What does the phrase microsegmentation with scalability
mean?
1. The ability to increase network size without
creating collisions domains
2. The ability to put a huge number of hosts on one
switch
3. The ability to broadcast to more nodes at once
4. All of the above
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
70
What needs to be done when deleting an entire VLAN?
(Choose three.)
1. Enter database configuration mode.
2. Reboot the switch in order for the changes to take
effect.
3. Use the negative form of the command that was
used to create the VLAN.
4. Reassign the switch ports from the deleted VLAN to
other VLANs if they are to be used.
5. Use the erase vlan command in global configuration
mode.
6. Delete the vlan.dat file from flash.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
71
What needs to be done when deleting an entire VLAN?
(Choose three.)
1. Enter database configuration mode.
2. Reboot the switch in order for the changes to take
effect.
3. Use the negative form of the command that was
used to create the VLAN.
4. Reassign the switch ports from the deleted VLAN
to other VLANs if they are to be used.
5. Use the erase vlan command in global configuration
mode.
6. Delete the vlan.dat file from flash.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
72
Which approach to assigning VLAN membership
maximizes forwarding performance?
1. membership by MAC address
2. membership by logical address
3. membership by protocol
4. membership by port
5. membership by operating system
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
73
Which approach to assigning VLAN membership
maximizes forwarding performance?
1. membership by MAC address
2. membership by logical address
3. membership by protocol
4. membership by port
5. membership by operating system
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
74
How does a bridge handle the frames that it receives?
(Choose three.)
1. If the source is unknown, the source port is shutdown.
2. If the source port of a frame is unknown, a bridge will
issue an ARP request.
3. If the destination is on another segment, the bridge
forwards the frame only to the correct interface.
4. A bridge forwards frames for unknown destinations to
the default gateway.
5. If the destination port is unknown, a bridge will flood
the frame to all ports in the broadcast domain, except
for the source port.
6. If the destination of the frame is on the same segment
as the source, a bridge will not forward the frame.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
75
How does a bridge handle the frames that it receives?
(Choose three.)
1. If the source is unknown, the source port is shutdown.
2. If the source port of a frame is unknown, a bridge will
issue an ARP request.
3. If the destination is on another segment, the
bridge forwards the frame only to the correct
interface.
4. A bridge forwards frames for unknown destinations to
the default gateway.
5. If the destination port is unknown, a bridge will
flood the frame to all ports in the broadcast
domain, except for the source port.
6. If the destination of the frame is on the same
segment as the source, a bridge will not forward
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
76
A network administrator is attempting to configure routing
between VLANs over a trunked link. A trunk link cannot be
established between a switch and a router. Which of the
following are possible sources of this problem? (Choose
two.)
1. The router IOS does not support trunking.
2. The port is connected and is not receiving alignment
and FCS errors.
3. The switch duplex and speed are not set properly.
4. The router and switch are running different versions
of STP.
5. The switch IP address is incorrectly configured.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
77
A network administrator is attempting to configure routing
between VLANs over a trunked link. A trunk link cannot be
established between a switch and a router. Which of the
following are possible sources of this problem? (Choose
two.)
1. The router IOS does not support trunking.
2. The port is connected and is not receiving alignment
and FCS errors.
3. The switch duplex and speed are not set
properly.
4. The router and switch are running different versions
of STP.
5. The switch IP address is incorrectly configured.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
78
Which of the following statements are true regarding a root
bridge in a spanning tree topology? (Choose two.)
1. The root bridge timers control BPDU traffic on the
network.
2. Only the show commands on the switch can display
root bridge information.
3. It is the central point of a spanning tree topology.
4. Storm control is enabled by default.
5. VLANs cannot be trunked between switches until the
root bridge has been elected.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
79
Which of the following statements are true regarding a root
bridge in a spanning tree topology? (Choose two.)
1. The root bridge timers control BPDU traffic on
the network.
2. Only the show commands on the switch can display
root bridge information.
3. It is the central point of a spanning tree topology.
4. Storm control is enabled by default.
5. VLANs cannot be trunked between switches until the
root bridge has been elected.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
80
Which factors influence the number of VLANs that may be
required on a switch? (Choose three.)
1. the physical addressing scheme
2. traffic patterns in the network
3. types of applications in use
4. the adaptability of the network
5. workgroup functions and commonality
6. the tagging option used for VLAN identification
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
81
Which factors influence the number of VLANs that may be
required on a switch? (Choose three.)
1. the physical addressing scheme
2. traffic patterns in the network
3. types of applications in use
4. the adaptability of the network
5. workgroup functions and commonality
6. the tagging option used for VLAN identification
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
82
What is true of the method by which VLAN membership is
identified in Ethernet frames? (Choose two.)
1. The frame header is in its original format when it
reaches the endpoint device.
2. The VLAN membership of frames does not need to
be identified unless ISL is in use.
3. The Ethernet frame is encapsulated or modified with
the VLAN ID information.
4. The VLAN ID is removed by the endpoint device
upon delivery of the frame.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
83
What is true of the method by which VLAN membership is
identified in Ethernet frames? (Choose two.)
1. The frame header is in its original format when it
reaches the endpoint device.
2. The VLAN membership of frames does not need to
be identified unless ISL is in use.
3. The Ethernet frame is encapsulated or modified
with the VLAN ID information.
4. The VLAN ID is removed by the endpoint device
upon delivery of the frame.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
84
Which of the following commands are used to verify VLAN
configuration? (Choose two.)
1. Switch# show vlan id id_number
2. Switch# show vlan
3. Switch# show config vlan id_number
4. Switch# show vlan config id_number
5. Switch# show interface vlan id_number
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
85
Which of the following commands are used to verify VLAN
configuration? (Choose two.)
1. Switch# show vlan id id_number
2. Switch# show vlan
3. Switch# show config vlan id_number
4. Switch# show vlan config id_number
5. Switch# show interface vlan id_number
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
86
VLAN 10 needs to be removed from a switch. Which
command must the administrator enter in order to
accomplish this task?
1. Switch(config-if)# no switchport access vlan 10
2. Switch(config-if)# erase switchport access vlan 10
3. Switch(vlan)# no vlan 10
4. Switch(vlan)# no vlan database 10
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
87
VLAN 10 needs to be removed from a switch. Which
command must the administrator enter in order to
accomplish this task?
1. Switch(config-if)# no switchport access vlan 10
2. Switch(config-if)# erase switchport access vlan 10
3. Switch(vlan)# no vlan 10
4. Switch(vlan)# no vlan database 10
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
88
What needs to be done when deleting an entire VLAN?
(Choose three.)
1. Enter database configuration mode.
2. Reboot the switch in order for the changes to take
effect.
3. Use the negative form of the command that was
used to create the VLAN.
4. Reassign the switch ports from the deleted VLAN to
other VLANs if they are to be used.
5. Use the erase vlan command in global configuration
mode.
6. Delete the vlan.dat file from flash.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
89
What needs to be done when deleting an entire VLAN?
(Choose three.)
1. Enter database configuration mode.
2. Reboot the switch in order for the changes to take
effect.
3. Use the negative form of the command that was
used to create the VLAN.
4. Reassign the switch ports from the deleted VLAN
to other VLANs if they are to be used.
5. Use the erase vlan command in global configuration
mode.
6. Delete the vlan.dat file from flash.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
90
Which approach to assigning VLAN membership
maximizes forwarding performance?
1. membership by MAC address
2. membership by logical address
3. membership by protocol
4. membership by port
5. membership by operating system
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
91
Which approach to assigning VLAN membership
maximizes forwarding performance?
1. membership by MAC address
2. membership by logical address
3. membership by protocol
4. membership by port
5. membership by operating system
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
92
How does a bridge handle the frames that it receives?
(Choose three.)
1. If the source is unknown, the source port is shutdown.
2. If the source port of a frame is unknown, a bridge will
issue an ARP request.
3. If the destination is on another segment, the bridge
forwards the frame only to the correct interface.
4. A bridge forwards frames for unknown destinations to
the default gateway.
5. If the destination port is unknown, a bridge will flood
the frame to all ports in the broadcast domain, except
for the source port.
6. If the destination of the frame is on the same segment
as the source, a bridge will not forward the frame.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
93
How does a bridge handle the frames that it receives?
(Choose three.)
1. If the source is unknown, the source port is shutdown.
2. If the source port of a frame is unknown, a bridge will
issue an ARP request.
3. If the destination is on another segment, the
bridge forwards the frame only to the correct
interface.
4. A bridge forwards frames for unknown destinations to
the default gateway.
5. If the destination port is unknown, a bridge will
flood the frame to all ports in the broadcast
domain, except for the source port.
6. If the destination of the frame is on the same
segment as the source, a bridge will not forward
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
94
A network administrator is attempting to configure routing
between VLANs over a trunked link. A trunk link cannot be
established between a switch and a router. Which of the
following are possible sources of this problem? (Choose
two.)
1. The router IOS does not support trunking.
2. The port is connected and is not receiving alignment
and FCS errors.
3. The switch duplex and speed are not set properly.
4. The router and switch are running different versions
of STP.
5. The switch IP address is incorrectly configured.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
95
A network administrator is attempting to configure routing
between VLANs over a trunked link. A trunk link cannot be
established between a switch and a router. Which of the
following are possible sources of this problem? (Choose
two.)
1. The router IOS does not support trunking.
2. The port is connected and is not receiving alignment
and FCS errors.
3. The switch duplex and speed are not set
properly.
4. The router and switch are running different versions
of STP.
5. The switch IP address is incorrectly configured.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
96
Which of the following statements are true regarding a root
bridge in a spanning tree topology? (Choose two.)
1. The root bridge timers control BPDU traffic on the
network.
2. Only the show commands on the switch can display
root bridge information.
3. It is the central point of a spanning tree topology.
4. Storm control is enabled by default.
5. VLANs cannot be trunked between switches until the
root bridge has been elected.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
97
Which of the following statements are true regarding a root
bridge in a spanning tree topology? (Choose two.)
1. The root bridge timers control BPDU traffic on
the network.
2. Only the show commands on the switch can display
root bridge information.
3. It is the central point of a spanning tree topology.
4. Storm control is enabled by default.
5. VLANs cannot be trunked between switches until the
root bridge has been elected.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
98
Which factors influence the number of VLANs that may be
required on a switch? (Choose three.)
1. the physical addressing scheme
2. traffic patterns in the network
3. types of applications in use
4. the adaptability of the network
5. workgroup functions and commonality
6. the tagging option used for VLAN identification
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
99
Which factors influence the number of VLANs that may be
required on a switch? (Choose three.)
1. the physical addressing scheme
2. traffic patterns in the network
3. types of applications in use
4. the adaptability of the network
5. workgroup functions and commonality
6. the tagging option used for VLAN identification
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
100
What is true of the method by which VLAN membership is
identified in Ethernet frames? (Choose two.)
1. The frame header is in its original format when it
reaches the endpoint device.
2. The VLAN membership of frames does not need to
be identified unless ISL is in use.
3. The Ethernet frame is encapsulated or modified with
the VLAN ID information.
4. The VLAN ID is removed by the endpoint device
upon delivery of the frame.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
101
What is true of the method by which VLAN membership is
identified in Ethernet frames? (Choose two.)
1. The frame header is in its original format when it
reaches the endpoint device.
2. The VLAN membership of frames does not need to
be identified unless ISL is in use.
3. The Ethernet frame is encapsulated or modified
with the VLAN ID information.
4. The VLAN ID is removed by the endpoint device
upon delivery of the frame.
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
102
Which of the following commands are used to verify VLAN
configuration? (Choose two.)
1. Switch# show vlan id id_number
2. Switch# show vlan
3. Switch# show config vlan id_number
4. Switch# show vlan config id_number
5. Switch# show interface vlan id_number
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
103
Which of the following commands are used to verify VLAN
configuration? (Choose two.)
1. Switch# show vlan id id_number
2. Switch# show vlan
3. Switch# show config vlan id_number
4. Switch# show vlan config id_number
5. Switch# show interface vlan id_number
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
104
VLAN 10 needs to be removed from a switch. Which
command must the administrator enter in order to
accomplish this task?
1. Switch(config-if)# no switchport access vlan 10
2. Switch(config-if)# erase switchport access vlan 10
3. Switch(vlan)# no vlan 10
4. Switch(vlan)# no vlan database 10
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
105
VLAN 10 needs to be removed from a switch. Which
command must the administrator enter in order to
accomplish this task?
1. Switch(config-if)# no switchport access vlan 10
2. Switch(config-if)# erase switchport access vlan 10
3. Switch(vlan)# no vlan 10
4. Switch(vlan)# no vlan database 10
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
106
Module 3 VLANS
END
ITE 1 Chapter 6
© 2006 Cisco Systems, Inc. All rights reserved.
Cisco Public
107
Related documents
Router/Switch Security
Router/Switch Security
Review Questions of Switching Networks
Review Questions of Switching Networks
If your staff need to upgrade or re
If your staff need to upgrade or re
PPT-2 - Convergence Technology Center
PPT-2 - Convergence Technology Center
JOB DESCRIPTION NETWORK ADMINISTRATOR
JOB DESCRIPTION NETWORK ADMINISTRATOR
Research Scientist – Prague, Czech Republic Cisco Systems
Research Scientist – Prague, Czech Republic Cisco Systems
Cisco PWR-C45-1000AC= power supply unit (PWR
Cisco PWR-C45-1000AC= power supply unit (PWR
Basic Configuration of WAP4410N
Basic Configuration of WAP4410N
Career Highlights - University of the Pacific
Career Highlights - University of the Pacific
Course Overview
Course Overview
Slide 1
Slide 1
Securing Network
Securing Network