Selasa, 30 November 2010

Lab 5.1.2 Powering Up an Integrated Services Router

Lab 5.1.2 Powering Up an Integrated Services Router
Objectives
·         Set up a new Cisco 1841 Integrated Services Router ( ISR ).
·         Connect a computer to the router console interface.
·         Configure Hyper Terminal so that the computer can communicate with the router
Background / Preparation
This lab focuses on the initial setup of the Cisco 1841 ISR. If a Cisco 1841 ISR is not available, you can use another router  model. The information in this lab applies to other routers. A Cisco ISR combines routing and switching functions, security, voice, and LAN and WAN connectivity into a single device, which makes it appropriate for small-sized to medium-sized businesses and for ISP-managed customers.
Some steps in this lab are normally only performed once during initial setup. These steps are indicated as optional.
The following resources are required :
·         Cisco 1841 ISR other comparable router.
·         Power Cable
·         Windows PC with terminal emulation program
·         RJ45-to-DB9 connector console cable.
Step 1 : position router and connect ground wire (Optional)
Note : this Step is optional and is required only if the router is being set up for the first time. Read through it to become familiar with the process.
a.       Position the router chassis to allow unrestricted air  flow for chassis cooling. Keep at least 1inch  ( 2.5 4 c m ) of clear space beside the cooling inlet and exhaust vents. CAUTION: Do not place any items that weigh more than 10 pounds ( 4.5  kilograms )  on top of the chassis, and do not stack routers on top of each other.
b . Connect the chassis to a reliable earth ground using a ring terminal and size 14AWG (2 mm ) wire using these step :
NOTE: Your instructor should inform you where a reliable earth ground is
1)   Strip one end of the ground wire to expose approximately 3/4 inch ( 20mm ) of conductor.
2)   Crimp the 14AWG (2 mm ) green ground wire to a UL Listed / CS A certified ring terminal using a crimping tool that is recommended by the ring terminal manufacturer. The ring terminal provided on the back panel of the Cisco 1841 ISR router is suitable for a Number 6 grounding screw.
3)   Attach the ring terminal to the chassis as shown in the figure below. Use a Number 2 Phillips screw driver and the screw that is supplied with the ring terminal and tighten the screw
4)   Connect the other end of the ground wire to a suitable earth ground that the instructor indicates.
Step 2 : Install the Compact Flash memory card ( Optional)
NOTE: This step is optional and is required only if the router is being set up for the first time. To avoid wear on the memory card and ejector mechanism, do not actually perform this step. Read through it to become familiar with the process. Attach a grounding strap to your wrist to avoid electro shock damage to the card. Seat the external Compact Flash memory card properly into the slot. This step depends on the type of router. Not all routers have flash cards.
b . If  the router has a Compact Flash memory card, check that the ejector mechanism is fully seated. The
ejector button is next to the Compact Flash memory card. Connect the power cable to the ISR and to the power outlet.

Step 4: Power up the ISR
a . Move the power switch on the back of the ISR to the ON position. During this step, the LEDs on the chassis turn on and off, not necessarily at the same time. The LED  activity depends on what is installed in  the ISR .
b .  Observe the startup messages as they appear in the terminal emulation  program window. While these messages are appearing, do not press any keys  on the keyboard. Pressing a key interrupts the router start up process. Some examples of start up messages displayed are the amount of main memory installed and the image type of the Cisco IOS software that the computer is using. Can you find these example start up  messages in the following figure?

Step 5 : Reflection
a .  Is  there anything about this procedure that is risky?
b .  Why do the router cover, all modules, and cover plates need to be installed?
c .  How many routers can you safely stack on top of each other ?
1)      0
2)      1
3)      2
4)      3

Senin, 29 November 2010

Lab 5.2.3 Configuring an ISR with SDM Express


Lab 5.2.3 Configuring an ISR with SDM Express
Objectives
• Configure basic router global settings – router name, users, and login passwords – using Cisco SDM Express.
• Configure LAN and Internet connections on a Cisco ISR using Cisco SDM Express. Background / Preparation Cisco Router and Security Device Manager (SDM) is a Java-based web application and a device-management tool for Cisco IOS Software-based routers. The Cisco SDM simplifies router and security configuration through the use of smart wizards, which allows you to deploy, configure, and monitor a Cisco router without requiring knowledge of the command-line interface (CLI). The Cisco SDM is supported on a wide range of Cisco routers and Cisco IOS Software releases. Many newer Cisco routers come with SDM preinstalled. If you are using an 1841 router, SDM (and SDM Express) is pre-installed. This lab assumes the use of a Cisco 1841 router. You can use another router model as long as it is capable of supporting SDM. If you are using a supported router that does not have SDM installed, you can download the latest version free of charge from the following location: http://www.cisco.com/pcgi-bin/tablebuild.pl/sdm From the URL shown above, view or download the document “Downloading and Installing Cisco Router and Security Device Manager.” This document provides instructions for installing SDM on your router. It lists specific model numbers and IOS versions that can support SDM, and the amount of memory required. Cisco SDM Express is a component of SDM. SDM Express automatically runs a GUI wizard that allows you to perform an initial basic configuration of a Cisco router using a browser and the web interface of the router. SDM Express will only be activated when the router is in its factory-default state. In this lab, you will use Cisco SDM Express to configure LAN and Internet connections on a Cisco ISR. The following resources are required:
• Cisco 1841 ISR router with SDM version 2.4 installed (critical – see Note 2 in Step 1)
• Cisco 1841 ISR router configured with factory default settings and with a serial port add-in module (critical – see Notes 1 and 3 in Step 1)
• (Optional) Other Cisco router model with SDM installed
• Windows XP computer with Internet Explorer 5.5 or higher and SUN Java Runtime Environment (JRE) version 1.4.2_05 or later (or Java Virtual Machine (JVM) 5.0.0.3810). (See Note 3 in Step 1)
• Straight-through or crossover category 5 Ethernet cable
• Access to PC network TCP/IP configuration

Step 1: Configure the PC to connect to the router and then launch Cisco SDM
a. Power up the router.
b. Power up the PC.
c. Disable any popup blocker programs. Popup blockers prevent SDM Express windows from
displaying.
d. Connect the PC NIC to the FastEthernet 0/0 port on the Cisco 1841 ISR router with the Ethernet cable.
NOTE: An SDM router other than the 1841 may require connection to different port in order to access SDM.
e. Configure the IP address of the PC to be 10.10.10.2 with a subnet mask of 255.255.255.248.
f. SDM does not load automatically on the router. You must open the web browser to reach the SDM.
Open the web browser on the PC and connect to the following URL: http://10.10.10.1 NOTE 1 – If browser connection to router fails: If you cannot connect and see the login screen, check your cabling and connections and make sure the IP configuration of the PC is correct. The router may have been previously configured to an address of 192.168.1.1 on the Fa0/0 interface. Try setting the IP address of the PC to 192.168.1.2 with a subnet mask of 255.255.255.0 and connect to http://192.168.1.1 using the browser. If you have difficulty with this procedure, contact your instructor for assistance. If the startup-config is erased in an SDM router, SDM will no longer come up by default when the router is restarted. It will be necessary to build a basic router configuration using IOS commands.
Refer to the procedure at the end of this lab or contact your instructor. g. In the Connect to dialog box, enter cisco for the username and cisco for the password. Click OK. The main SDM web application will start and you will be prompted to use HTTPS. Click Cancel. In the Security Warning window, click Yes to trust the Cisco application. h. In the Welcome to the Cisco SDM Express Wizard window, read the message and then click Next.
i. Verify that you are using the latest version of SDM. The initial SDM screen that displays immediately after the login shows the current version number. It is also displayed on the main SDM screen shown below, along with IOS version. NOTE 3 – If SDM Express Wizard fails to start: If you connect to the router and SDM Express starts but the SDM Express Setup Wizard shown above does not start automatically, the router may be partially configured and needs to be reset to its factory defaults. If the SDM Express main screen is displayed, choose the Reset to Factory Defaults option, repeat Steps 1a through 1e, and log in again. If the full SDM application starts (not SMD Express), choose the Reset to Factory Defaults option from the File menu on the main SDM screen, repeat Steps 1a through 1e, and log in again. If you have difficulty with this procedure, contact your instructor for assistance. Also note that the Windows XP computer you are using must have Internet Explorer 5.5 or higher and SUN Java Runtime Environment (JRE) version 1.4.2_05 or later (or Java Virtual Machine (JVM) 5.0.0.3810). If it does not, SDM will not start. You will need to download and install JRE on the PC before continuing with the lab.
NOTE 2: If the current version is not 2.4 or higher, notify your instructor before continuing with this lab. You will need to download the latest zip file from the URL listed above and save it to the PC. From the Tools menu of the SDM GUI, use the Update SDM option to specify the location of the zip file and start the update.
Step 2: Perform initial basic configuration
a. In the Basic Configuration window, enter the following information. When you complete the basic configuration, click Next to continue. b. From the Router Provisioning window, click the radio button next to SDM Express and then click
Next.
• In the Host Name field, enter CustomerRouter.
• In the Domain Name field, enter the domain name customer.com.
• Enter the username admin and the password cisco123 for SDM Express users and Telnet users. This password gives access to SDM locally, through the console connection, or remotely using Telnet.
• Enter the enable secret password of cisco123. This entry creates an encrypted password that prevents casual users from entering privileged mode and modifying the configuration of the router using the CLI.
Step 3: Configure the LAN IP address
In the LAN Interface Configuration window, choose FastEthernet0/0 from the Interface list. For interface FastEthernet 0/0, enter the IP address of 192.168.1.1 and subnet mask of 255.255.255.0. You can also enter the subnet mask information in a different format: entering a count of the number of binary digits or bits in the subnet mask, such as 255.255.255.0 or 24 subnet bits.
Step 4: De-select DHCP server
At this point, do not enable the DHCP server. This procedure is covered in a later section of this course. In the DHCP server configuration window, ensure that the Enable DHCP server on the LAN interface check box is cleared before proceeding. Click Next to continue. Step 5: Configure the WAN interface
a. In the WAN Configuration window, choose Serial0/0/0 interface from the list and click the Add Connection button. The Add Connection window appears.
NOTE: With the 1841 router, the serial interface is designated by 3 digits – C/S/P, where
C=Controller#, S=Slot# and P=Port#. The 1841 has two modular slots. The designation Serial0/0/0 indicates that the serial interface module is on controller 0, in slot 0, and that the interface to be used is the first one (0). The second interface is Serial0/0/1. The serial module is normally installed in slot 0 but may be may be installed in slot 1. If this is the case, the designation for the first serial interface on the module would be Serial0/1/0 and the second would be Serial0/1/1.
b. From the Add Serial0/0/0 Connection dialog box, choose PPP from the Encapsulation list. From the Address Type list, choose Static IP Address. Enter 209.165.200.225 for the IP address and 255.255.255.224 for the Subnet mask. Click OK to continue. Notice that this subnet mask translates to a /27, or 27 bits for the mask.
c. Notice that the IP address that you just set for the serial WAN interface now appears in the Interface List. Click Next to continue.
d. Enter the IP address 209.165.200.226 as the Next Hop IP Address for the Default Route. Click Next to continue.
e. Ensure that the check box next to Enable NAT is cleared. This procedure is covered in a later section of this course. Click Next to continue.
Step 6: Enable the firewall and security settings
a. Depending on the router IOS version, the next step may be Firewall Configuration. In the Firewall Configuration window, click the radio button that enables the firewall and then click Next. The Security Configuration window appears.
b. Leave all the default security options checked in the Security Configuration window and then click Next.
Step 7: Review and complete the configuration
a. If you are not satisfied with the Cisco SDM Express Summary, click Back to fix any changes and then click Finish to commit the changes to the router. b. Click OK after reading the Reconnection Instructions. Save these instructions to a file for future reference, if desired.
NOTE: Before the next time you connect, you will need to change the IP address of the PC to be compatible with the new address that you configured to FastEthernet 0/0. The Reconnection
instructions are shown below.
c. When the delivery of the configuration to the router is complete. Click OK to close Cisco SDM Express.
Step 8: Reflection
a. What feature makes configuring the router easy?
b. Summarize the steps that are configured by the Cisco SDM Express SDM router basic IOS configuration to bring up SDM If the startup-config is erased in an SDM router, SDM will no longer come up by default when the router is restarted. It will be necessary to build a basic config as follows. Further details regarding the setup and use of SDM are can be found in the SDM Quick Start Guide: http://www.cisco.com/en/US/products/sw/secursw/ps5318/products_quick_start09186a0080511c89.html#wp44788
1) Set the router Fa0/0 IP address
(This is the interface that a PC will connect to using a browser to bring up SDM. The PC IP address should be set to 10.10.10.2 255.255.255.248)
NOTE: An SDM router other than the 1841 may require connection to different port in order to access SDM.
Router(config)# interface Fa0/0
Router(config-if)# ip address 10.10.10.1 255.255.255.248
Router(config-if)# no shutdown

2) Enable the HTTP/HTTPS server of the router, using the following Cisco
IOS commands:
Router(config)#ip http server
Router(config)#ip http secure-server
Router(config)#ip http authentication local

3) Create a user account with privilege level 15 (enable privileges).
Router(config)# username privilege 15 password 0

Replace and with the username and password that
you want to configure. 4) Configure SSH and Telnet for local login and privilege level 15:
Router(config)# line vty 0 4
Router(config-line)# privilege level 15
Router(config-line)# login local
Router(config-line)# transport input telnet
Router(config-line)# transport input telnet ssh
Router(config-line)# exit
Diposkan oleh Aditya Mafa'id di 19.32 0 komentar
Kirimkan Ini lewat Email BlogThis! Berbagi ke Twitter Berbagi ke Facebook Berbagi ke Google Buzz
Lab 5.1.2 Powering Up an Integrated Services Router

Lab 5.1.2 Powering Up an Integrated Services Router
Objectives
· Set up a new Cisco 1841 Integrated Services Router ( ISR ).
· Connect a computer to the router console interface.
· Configure Hyper Terminal so that the computer can communicate with the router
Background / Preparation
This lab focuses on the initial setup of the Cisco 1841 ISR. If a Cisco 1841 ISR is not available, you can use another router model. The information in this lab applies to other routers. A Cisco ISR combines routing and switching functions, security, voice, and LAN and WAN connectivity into a single device, which makes it appropriate for small-sized to medium-sized businesses and for ISP-managed customers.
Some steps in this lab are normally only performed once during initial setup. These steps are indicated as optional.
The following resources are required :
· Cisco 1841 ISR other comparable router.
· Power Cable
· Windows PC with terminal emulation program
· RJ45-to-DB9 connector console cable.
Step 1 : position router and connect ground wire (Optional)
Note : this Step is optional and is required only if the router is being set up for the first time. Read through it to become familiar with the process.
a. Position the router chassis to allow unrestricted air flow for chassis cooling. Keep at least 1inch ( 2.5 4 c m ) of clear space beside the cooling inlet and exhaust vents. CAUTION: Do not place any items that weigh more than 10 pounds ( 4.5 kilograms ) on top of the chassis, and do not stack routers on top of each other.
b . Connect the chassis to a reliable earth ground using a ring terminal and size 14AWG (2 mm ) wire using these step :
NOTE: Your instructor should inform you where a reliable earth ground is
1) Strip one end of the ground wire to expose approximately 3/4 inch ( 20mm ) of conductor.
2) Crimp the 14AWG (2 mm ) green ground wire to a UL Listed / CS A certified ring terminal using a crimping tool that is recommended by the ring terminal manufacturer. The ring terminal provided on the back panel of the Cisco 1841 ISR router is suitable for a Number 6 grounding screw.
3) Attach the ring terminal to the chassis as shown in the figure below. Use a Number 2 Phillips screw driver and the screw that is supplied with the ring terminal and tighten the screw
4) Connect the other end of the ground wire to a suitable earth ground that the instructor indicates.
Step 2 : Install the Compact Flash memory card ( Optional)
NOTE: This step is optional and is required only if the router is being set up for the first time. To avoid wear on the memory card and ejector mechanism, do not actually perform this step. Read through it to become familiar with the process. Attach a grounding strap to your wrist to avoid electro shock damage to the card. Seat the external Compact Flash memory card properly into the slot. This step depends on the type of router. Not all routers have flash cards.
b . If the router has a Compact Flash memory card, check that the ejector mechanism is fully seated. The
ejector button is next to the Compact Flash memory card. Connect the power cable to the ISR and to the power outlet.

Step 4: Power up the ISR
a . Move the power switch on the back of the ISR to the ON position. During this step, the LEDs on the chassis turn on and off, not necessarily at the same time. The LED activity depends on what is installed in the ISR .
b . Observe the startup messages as they appear in the terminal emulation program window. While these messages are appearing, do not press any keys on the keyboard. Pressing a key interrupts the router start up process. Some examples of start up messages displayed are the amount of main memory installed and the image type of the Cisco IOS software that the computer is using. Can you find these example start up messages in the following figure?

Step 5 : Reflection
a . Is there anything about this procedure that is risky?
b . Why do the router cover, all modules, and cover plates need to be installed?
c . How many routers can you safely stack on top of each other ?
1) 0
2) 1
3) 2
4) 3


Kamis, 25 November 2010

CCNA Discovery 3 Module 3 Exam Answers Version 4.0

CCNA Discovery 3 Module 3 Exam Answers Version 4.0
1.
1
Refer to the exhibit. What two statements can be concluded from the information that is shown in the exhibit? (Choose two.)
• All ports that are listed in the exhibit are access ports.
• ARP requests from Host1 will be forwarded to Host2.
• Attaching Host1 to port 3 will automatically allow communication between both hosts.
• The default gateway for each host must be changed to 192.168.3.250/28 to allow communication between both hosts.
• A router connected to the switch is needed to forward traffic between the hosts.

2.
2
A router is configured to connect to a trunked uplink as shown in the exhibit. A packet is received on the FastEthernet 0/1 physical interface from VLAN 10. The packet destination address is 192.168.1.120. What will the router do with this packet?
• The router will forward the packet out interface FastEthernet 0/1.1 tagged for VLAN 10.
• The router will forward the packet out interface FastEthernet 0/1.2 tagged for VLAN 60.
• The router will forward the packet out interface FastEthernet 0/1.3 tagged for VLAN 60.
• The router will forward the packet out interface FastEthernet 0/1.3 tagged for VLAN 120.
• The router will not process the packet since the source and destination are on the same subnet.
• The router will drop the packet since no network that includes the source address is attached to the router.

3. The information contained in a BPDU is used for which two purposes? (Choose two.)
• to prevent loops by sharing bridging tables between connected switches
• to set the duplex mode of a redundant link
• to determine the shortest path to the root bridge
• to determine which ports will forward frames as part of the spanning tree

• to activate looped paths throughout the network

4. A router has two serial interfaces and two Fast Ethernet interfaces. This router must be connected to a WAN link and to a switch that supports four VLANs. How can this be accomplished in the most efficient and cost-effective manner to support inter-VLAN routing between the four VLANs?
• Connect a smaller router to the serial interface to handle the inter-VLAN traffic.
• Add two additional Fast Ethernet interfaces to the router to allow one VLAN per interface.
• Connect a trunked uplink from the switch to one Fast Ethernet interface on the router and create logical subinterfaces for each VLAN.
• Use serial-to-Fast Ethernet transceivers to connect two of the VLANs to the serial ports on the router. Support the other two VLANs directly to the available FastEthernet ports.

5. When are MAC addresses removed from the CAM table?
• at regular 30 second intervals
• when a broadcast packet is received
• when the IP Address of a host is changed
• after they have been idle for a certain period of time

6.
3
Refer to the exhibit. Switch1 is not participating in the VTP management process with the other switches. Which two are possible reasons for this? (Choose two.)
• Switch2 is in transparent mode.
• Switch1 is in client mode.
• Switch1 is using VTP version 1 and Switch2 is using VTP version 2.
• Switch2 is in server mode.
• Switch1 is in a different management domain.
• Switch1 has no VLANs.

7. Which three must be used when a router interface is configured for VLAN trunking? (Choose three.)
• one subinterface per VLAN
• one physical interface for each subinterface
• one IP network or subnetwork for each subinterface
• one trunked link per VLAN
• a management domain for each subinterface
• a compatible trunking protocol encapsulation for each subinterface

8.
4
Refer to the exhibit. The switches are connected with trunks within the same VTP management domain. Each switch is labeled with its VTP mode. A new VLAN is added to Switch3. This VLAN does not show up on the other switches. What is the reason for this?
• VLANs cannot be created on transparent mode switches.
• Server mode switches neither listen to nor forward VTP messages from transparent mode switches.
• VLANs created on transparent mode switches are not included in VTP advertisements.
• There are no ports assigned to the new VLAN on the other switches.
• Transparent mode switches do not forward VTP advertisements.

9. Which two criteria are used by STP to select a root bridge? (Choose two.)
• memory size
• bridge priority
• switching speed
• number of ports
• base MAC address
• switch location

10. Which three steps should be taken before moving a Catalyst switch to a new VTP management domain? (Choose three.)
• Reboot the switch.
• Reset the VTP counters to allow the switch to synchronize with the other switches in the domain.

• Download the VTP database from the VTP server in the new domain.
• Configure the VTP server in the domain to recognize the BID of the new switch.
• Select the correct VTP mode and version.
• Configure the switch with the name of the new management domain.


11. Which two items will prevent broadcasts from being sent throughout the network? (Choose two.)
• bridges
• routers
• switches
• VLANs
• hubs

12. Which two characteristics describe a port in the STP blocking state? (Choose two.)
• provides port security
• displays a steady green light
• learns MAC addresses as BPDUs are processed
• discards data frames received from the attached segment
• receives BPDUs and directs them to the system module


13. What is the first step in the process of convergence in a spanning tree topology?
• election of the root bridge
• determination of the designated port for each segment
• blocking of the non-designated ports
• selection of the designated trunk port
• activation of the root port for each segment

14. In which STP state does a switch port transmit user data and learn MAC addresses?
• blocking
• learning
• disabling
• listening
• forwarding

15. What is the purpose of VTP?
• maintaining consistency in VLAN configuration across the network
• routing frames from one VLAN to another
• routing the frames along the best path between switches
• tagging user data frames with VLAN membership information
• distributing BPDUs to maintain loop-free switched paths

16. Which statement best describes adaptive cut-through switching?
• The switch initially forwards all traffic using cut-through switching and then changes to store-and-forward switching if errors exceed a threshold value.
• The switch initially forwards all traffic using cut-through switching and then changes to fast-forward switching if errors exceed a threshold value.

• The switch initially forwards all traffic using cut-through switching and then temporarily disables the port if errors exceed a threshold value.
• The switch initially forwards all traffic using store-and-forward switching and then changes to cut-through switching if errors exceed a threshold value.

17. Using STP, how long does it take for a switch port to go from the blocking state to the forwarding state?
• 2 seconds
• 15 seconds
• 20 seconds
• 50 seconds

18.
5
Refer to the exhibit. The switches are interconnected by trunked links and are configured for VTP as shown. A new VLAN is added to Switch1. Which three actions will occur? (Choose three.)
• Switch1 will not add the VLAN to its database and will pass the update to Switch 2.
• Switch2 will add the VLAN to its database and pass the update to Switch3.
• Switch3 will pass the VTP update to Switch4.

• Switch3 will add the VLAN to its database.
• Switch4 will add the VLAN to its database.
• Switch4 will not receive the update.

19 Which Catalyst feature causes a switch port to enter the spanning-tree forwarding state immediately?
• backbonefast
• uplinkfast
• portfast
• rapid spanning tree

20.
6
Refer to the exhibit. Which set of commands would be used on the router to provide communication between the two hosts connected to the switch?
• Router(config)# interface vlan 2
Router(config-if)# ip address 192.168.2.1 255.255.255.0
Router(config-if)# no shutdown
Router(config)# interface vlan 3
Router(config-if)# ip address 192.168.3.1 255.255.255.0
Router(config-if)# no shutdown
• Router(config)# interface fastethernet 0/0
Router(config-if)# no shutdown
Router(config-if)# interface fastethernet 0/0.2
Router(config-subif)# encapsulation dot1q 2
Router(config-subif)# ip address 192.168.2.1 255.255.255.0
Router(config-if)# interface fastethernet 0/0.3
Router(config-subif)# encapsulation dot1q 3
Router(config-subif)# ip address 192.168.3.1 255.255.255.0
• Router(config)# interface vlan 2
Router(config-if)# switchport mode trunk dot1q
Router(config)# interface vlan 3
Router(config-if)# switchport mode trunk dot1q
• Router(config)# interface fastethernet 0/0
Router(config-if)# mode trunk dot1q 2 3
Router(config-if)# ip address 192.168.2.1 255.255.255.0

CCNA Discovery 3 Module 2 Exam Answers Version 4.0

CCNA Discovery 3 Module 2 Exam Answers Version 4.0
1. What type of connection point is a point of presence (POP)?
• between a client and a host
• between two local networks
• between a computer and a switch
• between an ISP and an Enterprise network

2. A network administrator needs to configure Telnet access to a router. Which group of commandsenable Telnet access to the router?
• Router(config)# enable password class
Router(config)# line con 0
Router(config-line)# login
Router(config-line)# password cisco
• Router(config)# ip host 192.168.1.1 NewYork
Router(config)# enable password cisco
• Router(config)# line aux 0
Router(config-line)# login
Router(config-line)# password cisco
• Router(config)# enable password class
Router(config)# line vty 0 4
Router(config-line)# login
Router(config-line)# password cisco


3. Which two types of information should be included in a business continuity plan? (Choose two.)
• maintenance time periods
• intrusion monitoring records
• offsite data storage procedures
• alternate IT processing locations*
• problem resolution escalation steps


4. Which two router parameters can be set from interface configuration mode? (Choose two.)
• IP address
• Telnet password
• hostname
• console password
• subnet mask
• enable secret password

5. Which two devices protect a corporate network against malicious attacks at the enterprise edge ?(Choose two.)
• demarc
• IP security (IPSec)
• Data Service Unit (DSU)
• intrusion prevention system (IPS)
• intrusion detection system (IDS)


6. Which three steps must be performed to remove all VLAN information from a switch but retain therest of the configuration? (Choose three.)
• Remove all VLAN associations from the interfaces.
• Remove the 802.1q encapsulation from the interfac
• Issue the command copy start run.
• Issue the command delete flash:vlan.dat.
• Issue the command erase start.
• Reload the switch.


7. What is the demarcation?
• physical point where the ISP responsibilty ends and the customer responsibilty begins
• physical location where all server farm connections meet before being distributed into the Core
• point of entry for outside attacks and is often vulnerable
• point of entry for all Access Layer connections from the Distribution Layer devices

8. Which device is responsible for moving packets between multiple network segments?
• router
• switch
• CSU/DSU
• IDS device

10. What information can an administrator learn using the show version command?
• Cisco IOS filename
• configured routing protocol
• status of each interface
• IP addresses of all interfaces

11. Which two situations require a network administrator to use out-of-band management to change arouter configuration? (Choose two.)
• Network links to the router are down.
• No Telnet password has been configured on the router.
• The administrator can only connect to the router using SSH.
• The network interfaces of the router are not configured with IP addresses.
• Company security policy requires that only HTTPS be used to connect to routers.

12. It is crucial that network administrators be able to examine and configure network devices fromtheir homes. Which two approaches allow this connectivity without increasing vulnerability to externalattacks? (Choose two.)
• Configure a special link at the POP to allow external entry from the home computer.
• Set up VPN access between the home computer and the network.
• Install a cable modem in the home to link to the network.
• Configure ACLs on the edge routers that allow only authorized users to access management portson network devices.
• Configure a server in the DMZ with a special username and password to allow external access.

13. A network administrator must define specific business processes to implement if a catastrophicdisaster prevents a company from performing daily business routines. Which portion of the networkdocumentation is the administrator defining?
• business security plan
• business continuity plan
• network solvency plan
• service level agreement
• network maintenance plan

14. A DoS attack crippled the daily operations of a large company for 8 hours. Which two optionscould be implemented by the network administrator to possibly prevent such an attack in the future?(Choose two.)
• install security devices with IDS and IPS at the enterprise edge
• reset all user passwords every 30 days
• filter packets based on IP address, traffic pattern, and protocol
• deny external workers VPN access to internal resources
• ensure critical devices are physically secure and placed behind the demarc

15. A network manager wants to have processes in place to ensure that network upgrades do not affectbusiness operations. What will the network manager create for this purpose?
• business security plan
• business continuity plan
• service level agreement
• network maintenance plan

16. An investment company has multiple servers that hold mission critical datThey are worried that ifsomething happens to these servers, they will lose this valuable information. Which type of plan isneeded for this company to help minimize loss in the event of a server crash?
• business security
• business continuity
• network maintenance
• service level agreement

17. When searching for information about authentication methods and usernames of companypersonnel, where can a network administrator look?
• Business Continuity Plan
• Business Security Plan
• Network Maintenance Plan
• Service Level Agreement

18. Refer to the exhibit. Which statement is true about port Fa5/1?
• When a violation is detected, the port will log the information to a syslog server.
• When a violation is detected, the port will go into err-disable mod
• There have been 11 security violations since the last reloa
• The port is currently in the shutdown state.

CCNA Discovery 3 Module 1 Exam Answers Version 4.0

CCNA Discovery 3 Module 1 Exam Answers Version 4.0
1. What can be found at the enterprise edge?
• Internet, VPN, and WAN modules
• Internet, PSTN, and WAN services
• server farms and network management
• campus infrastructure, including access layer devices

2. In which functional area of the Cisco Enterprise Architecture should IDS and IPS be located to detect
• and prevent services from accessing hosts?
• Enterprise Campus
• Edge Distribution
• Enterprise Edge
• Service Provider Edge

3. A business consultant must use Internet websites to research a report on the e-business strategies of several firms and then electronically deliver the report to a group of clients in cities throughout the world. Which two teleworker tools can the consultant use to accomplish this project? (Choose two.)
• VoIP
• VPN
• HTTP
• Telnet
• email

4. Which two measures help ensure that a hardware problem does not cause an outage in an enterprise LAN that supports mission critical services? (Choose two.)
• providing failover capability
• installing redundant power supplies

• purchasing more bandwidth from the ISP
• implementing broadcast containment with VLANs
• installing routers that can handle a greater amount of throughput

5. Which task would typically only require services located at the access layer of the hierarchical design model?
• connecting to the corporate web server to update sales figures
• using a VPN from home to send data to the main office servers
• printing a meeting agenda on a local departmental network printer
• placing a VoIP call to a business associate in another country
• responding to an e-mail from a co-worker in another department

6. How does a VPN work to support remote user productivity?
• It uses SSL to encrypt remote user logins to the corporate intranet.
• It uses secure Telnet for remote user connections to internal network devices.
• It creates a virtual circuit that allows real-time communications between any two Internet endpoints.
• It uses encapsulation to create a secure tunnel for transmission of data across non-secure networks.****

7. A remote user needs to access a networking device on the internal network of the company. The transactions between the remote user and the device must be secure. Which protocol enables this to happen securely?
• HTTP
• SSH
• Telnet
• FTP

8. What does VoIP provide to telecommuters?
• high-quality, live-video presentations
• real-time voice communications over the Internet
• ability to share desktop applications simultaneously
• secure, encrypted data transmissions through the Internet

9. Which functional component of the Cisco Enterprise Architecture is responsible for hosting internal servers?
• enterprise campus
• enterprise edge
• service provider edge
• building distribution

10. What is the purpose of the Cisco Enterprise Architecture?
• remove the three-layer hierarchical model and use a flat network approach
• divide the network into functional components while still maintaining the concept of Core, Distribution, and Access Layers
• provide services and functionality to the core layer by grouping various components into a single
• component located in the access layer
• reduce overall network traffic by grouping server farms, the management server, corporate intranet, and e-commerce routers in the same layer

11. Which two solutions would an enterprise IT department use to facilitate secure intranet access for remote workers? (Choose two.)
• VPN
• NAT
• user authentication
• client firewall software
• packet sniffing

12. Which statement describes the difference between an enterprise WAN and an enterprise extranet?
• An enterprise WAN is designed to interconnect local LANs, while an enterprise extranet is designed to interconnect remote branch offices.
• An enterprise WAN is designed to interconnect branch offices, while an enterprise extranet is designed to give access to external business partners.
• An enterprise WAN is designed to provide remote access for its teleworkers, while an enterprise extranet is designed to provide Internet connectivity for the enterprise.
• An enterprise WAN is designed to provide Internet connectivity for the enterprise, while an enterprise extranet is designed to provide remote access to the enterprise network for teleworkers.

13. Why would a network administrator want to limit the size of failure domains when designing a network?
• reduces the effect of Ethernet collisions
• reduces the impact of a key device or service failure
• reduces the impact of Internet congestion on critical traffic
• reduces the impact of blocking broadcast packets at the edge of the local network

14. What is the main purpose of the Access Layer in a hierarchically designed network?
• performs routing and packet manipulation
• supplies redundancy and failover protection
• provides a high-speed, low-latency backbone
• serves as a network connection point for end-user devices

15. Which three functions are performed at the Distribution Layer of the hierarchical network model? (Choose three.)
• forwards traffic that is destined for other networks
• isolates network problems to prevent them from affecting the Core Layer

• allows end users to access the local network
• provides a connection point for separate local networks
• transports large amounts of data between different geographic sites
• forwards traffic to other hosts on the same logical network

16. What is a benefit of having an extranet?
• It provides web-like access to company information for employees only.
• It limits access to corporate information to secure VPN or remote access connections only.
• It allows customers and partners to access company information by connecting to a public web server.
• It allows suppliers and contractors to access confidential internal information using controlled external connections.

17. What are two important characteristics or functions of devices at the Enterprise Edge? (Choose two.)
• providing Internet, telephone, and WAN services to the enterprise network
• providing a connection point for end-user devices to the enterprise network
• providing high-speed backbone connectivity with redundant connections
• providing intrusion detection and intrusion prevention to protect the network against malicious activity
• providing packet inspection to determine if incoming packets should be allowed on the enterprise network


18. Why is TCP the preferred Layer 4 protocol for transmitting data files?
• TCP is more reliable than UDP because it requires lost packets to be retransmitted.
• TCP requires less processing by the source and destination hosts than UDP.
• UDP introduces delays that degrade the quality of the data applications.
• TCP ensures fast delivery because it does not require sequencing or acknowlegements.

19. The ABC Corporation implements the network for its new headquarters using the Cisco Enterprise Architecture. The network administrator wants to filter the traffic from and to the outside world. Where should the administrator deploy a firewall device?
• server farm
• enterprise edge
• enterprise campus
• service provider edge

20. Which two statements are reasons why UDP is used for voice and video traffic instead of TCP?(Choose two.)
• TCP requires all data packets to be delivered for the data to be usable.
• The acknowledgment process of TCP introduces delays that break the streams of data.
• UDP does not have mechanisms for retransmitting lost packets.

• UDP tolerates delays and compensates for them.
• TCP is a connectionless protocol that provides end-to-end reliability.
• UDP is a connection-oriented protocol that provides end-to-end reliability.

Kamis, 18 November 2010

CCNA Discovery 2 Module 8 Exam Answers Version 4.0

CCNA Discovery 2 Module 8 Exam Answers Version 4.0
1. Which AAA service reduces IT operating costs by providing detailed reporting and monitoring of network user behavior, and also by keeping a record of every access connection and device configuration change across the network?
• authentication
• accreditation
• accounting
• authorization

2. Which three items are normally included when a log message is generated by a syslog client and forwarded to a syslog server? (Choose three.)
• date and time of message
• ID of sending device

• length of message
• message ID
• checksum field
• community ID

3. What is the advantage of using WPA to secure a wireless network?
• It uses a 128-bit pre-shared hexadecimal key to prevent unauthorized wireless access.
• It uses an advanced encryption key that is never transmitted between host and access point.
• It is supported on older wireless hardware, thus providing maximum compatibility with enterprise equipment.
• It requires the MAC address of a network device that is requesting wireless access to be on a list of approved MAC addresses.

4. A company wants to configure a firewall to monitor all channels of communication and allow only traffic that is part of a known connection. Which firewall configuration should be deployed?
• packet filtering
• proxy
• stateful packet inspection
• stateless packet inspection

5. A server log includes this entry: User student accessed host server ABC using Telnet yesterday for 10 minutes. What type of log entry is this?
• authentication
• authorization
• accounting
• accessing

6. What two measures help to verify that server backups have been reliably completed? (Choose two.)
• reviewing backup logs
• performing trial backups

• performing full backups only
• replacing tape backup with hard disk-based backup
• using an autoloader when backups require more than one tape

7. Which means of communication does an SNMP network agent use to provide a network management station with important but unsolicited information?
• query
• broadcast
• ICMP ping
• trap
• poll

8. Which three protocols are used for in-band management? (Choose three.)
• FTP
• HTTP
• SNMP
• Telnet
• TFTP

• DHCP

9. A hacker has gained access to sensitive network files. In analyzing the attack, it is found that the hacker gained access over a wireless segment of the network. It is further discovered that the only security measure in place on the wireless network is MAC Address Filtering. How is it likely that the hacker gained access to the network?
• The hacker used a software tool to crack the shared hexadecimal wireless key.
• The hacker obtained the MAC address of a permitted host, and cloned it on his wireless laptop NIC.
• The attacker mounted a denial of service attack to overwhelm the firewall before penetrating the wireless LAN.
• The hacker gained wireless access to the MAC address database and added his own MAC address to the list of permitted addresses.

10. A network administrator is assigning network permissions to new groups of users and employing the principle of least privilege. Which two actions should the administrator take? (Choose two.)
• Provide users with only the access to resources required to do their jobs.
• Provide the minimum level of permissions required for users to do their jobs.
• Remove all permissions from the users and grant permissions as they are requested.
• Allow users to decide how much permission they need to accomplish their job tasks.
• Provide full access to the users and gradually remove privileges over time.

11. Which three protocols describe methods that can be used to secure user data for transmission across the internet? (Choose three.)
• SMTP
• IPSEC
• SSL
• HTTPS

• FTP
• TFTP

12. Which benefit does SSH offer over Telnet when remotely managing a router?
• encryption
• TCP usage
• authorization
• connection using six VTY lines

13. Which of the following does SNMP use to hold information collected about the network?
• network management station
• network management database
• management information base
• database information agent

14. What are two potential problems with using tape media to back up server data? (Choose two.)
• Tape is not a cost-effective means of backing up data.
• Data tapes are difficult to store offsite.
• Data tapes are prone to failure and must be replaced often.
• Tape drives require regular cleaning to maintain reliability.
• Backup logs are not available with tape backup solutions.

15. What is the term for the public network between the boundary router and the firewall?
• "clean" LAN
• intranet
• DMZ
• extranet

16. Which two characteristics of network traffic are being monitored if a network technician configures the company firewall to operate as a packet filter? (Choose two.)
• applications
• physical addresses
• packet size
• ports
• protocols


17. When is the use of out-of-band network management necessary?
• when a server needs to be monitored across the network
• when the management interface of a device is not reachable across the network
• when enhanced monitoring features are required to gain an overall view of the entire network
• when it is desirable to use the information that is provided by SNMP

18. What network layer security protocol can secure any application layer protocol used for communication?
• HTTPS
• IMAP
• FTPS
• IPSEC
• TLS

19. Before a technician upgrades a server, it is necessary to back up all data. Which type of backup is necessary to ensure that all data is backed up?
• daily
• differential
• full
• incremental
• partial

20. What AAA component assigns varying levels of rights to users of network resources?
• auditing
• accounting
• authorization
• access control
• authentication
• acknowledgement

CCNA Discovery 2 Module 7 Exam Answers Version 4.0

CCNA Discovery 2 Module 7 Exam Answers Version 4.0
1. Which two statements are true about the OSI and TCP/IP models? (Choose two.)
• The two bottom layers of the TCP/IP model make up the bottom layer of the OSI model.
• The TCP/IP model is a theoretical model and the OSI model is based on actual protocols.
• The OSI network layer is comparable to the Internet layer of the TCP/IP model.
• The TCP/IP model specifies protocols for the physical network interconnection.
• The TCP/IP model is based on four layers and the OSI model is based on seven layers.

2. To meet customer expectations, an ISP must guarantee a level of service that is based on what two factors? (Choose two.)
• accessibility
• adaptability
• availability
• reliability

• scalability

3. User1 is sending an e-mail to User2@cisco.com. What are two characteristics of the process of sending this data? (Choose two.)
• It utilizes TCP port 110.
• A TCP connection is established directly between the User1 and User2 client computers in order to send the e-mail message.
• It utilizes a store and forward process.
• The same application layer protocol is used to send the e-mail and retrieve it from the destination server.
• SMTP is used to send the e-mail message to the mail servers.

4. Refer to the exhibit. Host1 is in the process of setting up a TCP session with Host2. Host1 has sent a SYN message to begin session establishment. What happens next?
• Host1 sends an ACK message to Host2.
• Host1 sends a SYN message to Host2.
• Host1 sends a SYN-ACK message to Host2.
• Host2 sends an ACK message to Host1.
• Host2 sends a SYN message to Host1.
• Host2 sends a SYN-ACK message to Host1.

5. What are three characteristics of network reliability? (Choose three.)
• Redundant hardware provides enhanced reliability.
• Reliability is measured as a percent.
• Reliability is the responsibility of the ISP customers.
• Fault tolerance is a measure of reliability.
• The longer the MTBF, the greater the reliability.


6. Which two statements describe the FTP protocol? (Choose two.)
• It uses well-known port 23.
• The protocol interpreter is responsible for the data transfer function.
• In passive data connections, the FTP client initiates the transfer of data.

• It requires two connections between client and server.
• FTP servers open a well-known port on the client machine.

7. What is the function of the TCP three-way handshake?
• It enables the synchronization of port numbers between source and destination hosts.
• It immediately triggers the retransmission of lost data.
• It synchronizes both ends of a connection by allowing both sides to agree upon initial sequence numbers.
• It identifies the destination application on the receiving host.

8. What are three characteristics of HTTPS? (Choose three.)
• It uses a different client request-server response process than HTTP uses.
• It specifies additional rules for passing data between the application and data link layers.
• It supports authentication.
• It allows more simultaneous connections than HTTP allows.
• It encrypts packets with SSL.
• It requires additional server processing time.


9. Which DNS zone resolves an IP address to a qualified domain name?
• dynamic lookup
• forward lookup
• resolution lookup
• reverse lookup

10.
2
What type of update allows client computers to register and update their resource records with a DNS server whenever changes occur?
• dynamic
• zone transfer
• local recursive query
• root domain query
• top-level domain query

11. Refer to the exhibit. Which two statements are true about this file? (Choose two.)
• If the gateway address changes, the file will be updated dynamically.
• The command ping fileserv will use IP address 172.16.5.10.
• If the ping www.cisco.com command is issued, the file will be checked for the Cisco web server IP address before DNS is queried.
• The file must be created by the user if it is to be used by a workstation.
• Name to IP address mappings are added to the file after they are received from DNS.

12. Which two tasks are the responsibility of the local DNS server? (Choose two.)
• maintaining a large number of cached DNS entries
• maintaining the ISP server
• mapping name-to-IP addresses for internal hosts
• forwarding name resolution requests to a caching-only server

• forwarding all name resolution requests to root servers on the Internet

13. What are three unique characteristics of UDP? (Choose three.)
• connection oriented
• full-duplex operation
• low overhead
• no flow control
• no error-recovery function

• reliable transmission

14. A manufacturing company is looking into subscribing to services from a new ISP. The company requires hosted world wide web, file transfer, and e-mail services. Which three protocols represent the key application services that are required by the company? (Choose three.)
• FTP
• HTTP

• ICMP
• PPP
• Telnet
• SMTP

15. Which two options correctly match protocol and well-known port number? (Choose two.)
• DNS - 25
• FTP - 110
• HTTP - 80
• POP3 - 25
• SMTP - 25

16. Within TCP, what combination makes up a socket pair?
• source port with destination port
• source IP address with destination port
• source IP address and destination IP address
• source IP address and port with a destination IP address and port

17. Which protocol is used to send e-mail, either from a client to a server or from a server to another server?
• SNMP
• FTP
• SMTP
• HTTPS

18. Refer to the exhibit. The PC is requesting HTTP data from the server. What is a valid representation of source and destination sockets for this request?
• Source - 192.168.1.17:80 ; Destination - 192.168.2.39:80
• Source - 192.168.1.17:80 ; Destination - 192.168.2.39:1045
• Source - 192.168.1.17:1045 ; Destination - 192.168.2.39:80
• Source - 192.168.1.17:1045 ; Destination - 192.168.2.39:1061

19. What type of DNS server is typically maintained by an ISP?
• caching-only
• root
• second-level
• top-level

20. A client is communicating with a server on a different segment of the network. How does the server determine what service is being requested by the client?
• The server will apply the default service configured in directory services.
• The server will use ARP to discover the appropriate service from the local router.
• The server will send a request to the client asking for the appropriate service.
• The server will determine the appropriate service from the destination port field.

21.
3
When a host is communicating with multiple applications on the same server at the same time, which of the following will have the same value for each session? (Choose two.)
• IP address
• MAC address

• session number
• sequence number

CCNA Discovery 2 Module 6 Exam Answers Version 4.0

CCNA Discovery 2 Module 6 Exam Answers Version 4.0
1. Which command is used to view the RIP routing protocol settings and configuration?
• show version
• show ip route
• show interface
• show ip protocols

2.
1
Refer to the exhibit. What is the maximum number of RIP routers that could separate HostA and HostB and still leave the hosts with connectivity to each other?
• 14
• 15
• 16
• 17

3. In which situation would a company register for its own autonomous system number (ASN)?
• when the company's ISP adds connection points to the Internet
• when additional routers are added to the corporate internetwork
• when more than one interior routing protocol is used
• when the company uses two or more ISPs

4. Consider this routing table entry
• R 172.16.1.0/24 [120/1] via 200.1.1.1 00:00:27 Serial0/1
• What type of route is this?
• a static route
• a default route
• a RIP route
• an OSPF route
• an EIGRP route
• a directly-connected route

5. What is the difference between interior and exterior routing protocols?
• Exterior routing protocols are only used by large ISPs. Interior routing protocols are used by small ISPs.
• Interior routing protocols are used to route on the Internet. Exterior routing protocols are used inside organizations.
• Exterior routing protocols are used to administer a single autonomous system. Interior routing protocols are used to administer several domains.
• Interior routing protocols are used to communicate within a single autonomous system. Exterior routing protocols are used to communicate between multiple autonomous systems.

6. What information is included in RIPv2 routing updates that is not included in RIPv1 updates?
• metric
• subnet mask
• area identification
• hop count
• autonomous system number

7. Which routing protocol is used to exchange data between two different ISPs?
• BGP
• EIGRP
• OSPF
• RIP v2

8.
2
Refer to the exhibit. Which configuration command or commands contributed to the output that is shown?
• routerA(config-router)# no version 2
• routerA(config)# interface fa0/0
• routerA(config-if)# ip address 172.19.0.0 255.255.0.0
• routerA(config-router)# network 192.168.3.0
• routerA(config)# no ip default-gateway

9.
3
Refer to the exhibit. If all routers are running RIP and network 10.0.0.0 goes down, when will R3 learn that the network is no longer available?
• in 30 seconds
• in 60 seconds
• in 90 seconds
• Immediately

10. What statement is true regarding an AS number?
• AS numbers are controlled and registered for Internet use.
• Interior routing protocols require registered AS numbers.
• ISPs require all customers to have registered AS numbers.
• All routers at an ISP must be assigned the same AS number.

11. What is the purpose of the network command used when configuring RIP?
• to specify whether RIPv1 or RIPv2 will be used as the routing protocol
• to allow the router to monitor RIP updates that occur on other routers
• to identify which networks on the router will send and receive RIP updates
• to configure the IP address on an interface that will use RIP
• to identify all of the remote networks that should be reachable from the router

12. Which command would a network administrator use to determine if the routers in an enterprise have learned about a newly added network?
• router# show ip address
• router# show ip route
• router# show ip networks
• router# show ip interface brief
• router# debug ip protocol
• router# debug rip update

13. What is the purpose of a routing protocol?
• It is used to build and maintain ARP tables.
• It provides a method for segmenting and reassembling data packets.
• It allows an administrator to devise an addressing scheme for the network.
• It allows a router to share information about known networks with other routers.
• It provides a procedure for encoding and decoding data into bits for packet forwarding.

14. What device enables an ISP to connect with other ISPs to transfer data?
• border gateway router
• DSLAM
• web server
• interior router

15. Which command will display RIP routing updates as they are sent and received?
• show ip route
• show ip rip
• debug ip rip
• show ip protocols
• show ip rip database

16. Which part of an IP packet does the router use to make routing decisions?
• source IP address
• source MAC address
• destination IP address
• destination MAC address

17. What two types of businesses would benefit from registering as their own autonomous systems? (Choose two.)
• a home business with one ISP connection
• a global business with connections to multiple local ISPs
• a medium-sized nationwide business with Internet connectivity through different ISPs

• a large enterprise with two connections to the same ISP
• a small ISP with a single Internet connection through a larger ISP

18. Which command will display RIP activity as it occurs on a router?
• debug ip rip
• show ip route
• show ip interface
• show ip protocols
• debug ip rip config
• show ip rip database

19. Why is fast convergence desirable in networks that use dynamic routing protocols?
• Routers will not allow packets to be forwarded until the network has converged.
• Hosts are unable to access their gateway until the network has converged.
• Routers may make incorrect forwarding decisions until the network has converged.
• Routers will not allow configuration changes to be made until the network has converged.

20. Which two statements describe static routes? (Choose two.)
• They are created in interface configuration mode.
• They require manual reconfiguration to accommodate network changes.
• They automatically become the default gateway of the router.
• They are identified in the routing table with the prefix S
• They are automatically updated whenever an interface is reconfigured or shutdown.

21. Which two statements or sets of statements describe differences between link-state and distance vector routing protocols? (Choose two.)
• Link-state routing protocols routinely use more bandwidth for updates than do distance vector routing protocols.
• Distance vector routing protocols update all routers at one time. Link-state routing protocols update one router at a time.
• Link-state routers only know about directly connected routers. Distance vector routers know about every router in the network.
• Link-state routing protocols update when a change is made. A network using distance vector routing protocols only updates at a specific interval.

• Distance vector routing protocols have limited information about the entire network. Link state routing protocols know about all routers in the network.
• In case of similar topologies, networks using link-state routing protocols typically converge more rapidly than do networks using distance vector routing protocols.

22. Which protocol is an exterior routing protocol?
• BGP
• EIGRP
• OSPF
• RIP

23. Hosts on two separate subnets cannot communicate. The network administrator suspects a missing route in one of the routing tables. Which three commands can be used to help troubleshoot Layer 3 connectivity issues? (Choose three.)
• Ping
• show arp
• Traceroute
• show ip route

• show interface
• show cdp neighbor detail

24. What term refers to a group of networks that uses the same internal routing policies and is controlled by a single administrative authority?
• Internet
• intranet
• virtual private network
• autonomous system