New Questions 10

Refer to the exhibit.

What is the effect of the configuration that is shown?

A. It configures SSH globally for all logins.

B. It tells the router or switch to try to establish an SSh connection first and if that fails to use Telnet.

C. It configures the virtual terminal lines with the password 030752180500.

D. It configures a Cisco network device to use the SSH protocol on incoming communications via the virtual terminal ports.

E. It allows seven failed login attempts before the VTY lines are temporarily shutdown.

Answer: D


Secure Shell (SSH) is a protocol which provides a secure remote access connection to network devices. Communication between the client and server is encrypted in both SSH version 1 and SSH version 2. If you want to prevent non-SSH connections, add the

u201ctransport input sshu201d command under the lines to limit the router to SSH connections only. Straight (non-SSH) Telnets are refused.

New Questions 11

Which statement describes the process ID that is used to run OSPF on a router?

A. It is globally significant and is used to represent the AS number.

B. It is locally significant and is used to identify an instance of the OSPF database.

C. It is globally significant and is used to identify OSPF stub areas.

D. It is locally significant and must be the same throughout an area.

Answer: B


The Process ID for OSPF on a router is only locally significant and you can use the same number on each router, or each router can have a different number-it just doesn't matter. The numbers you can use are from 1 to 65,535. Don't get this confused with area numbers, which can be from 0 to 4.2 billion.

New Questions 12

Which three elements must be used when you configure a router interface for VLAN trunking? (Choose three.)

A. one physical interface for each subinterface

B. one IP network or subnetwork for each subinterface

C. a management domain for each subinterface

D. subinterface encapsulation identifiers that match VLAN tags

E. one subinterface per VLAN

F. subinterface numbering that matches VLAN tags

Answer: B,D,E


This scenario is commonly called a router on a stick. A short, well written article on this operation can be found here:

New Questions 13

The network administrator cannot connect to Switch1 over a Telnet session, although the hosts attached to Switch1 can ping the interface Fa0/0 of the router.

Given the information in the graphic and assuming that the router and Switch2 are configured properly, which of the following commands should be issued on Switch1 to correct this problem?

A. Switch1(config)# line con0 Switch1(config-line)# password cisco Switch1(config-line)#login

B. Switch1(config)# interface fa0/1

Switch1(config-if)# ip address

C. Switch1(config)# ip default-gateway

D. Switch1(config)# interface fa0/1 Switch1(config-if)# duplex full

Switch1(config-if)# speed 100

E. Switch1(config)# interface fa0/1 Switch1(config-if)# switchport mode trunk

Answer: C


Since we know hosts can reach the router through the switch, we know that connectivity, duplex. Speed, etc. are good. However, for the switch itself to reach networks outside the local one, the ip default-gateway command must be used.

New Questions 14

A Cisco router is booting and has just completed the POST process. It is now ready to find and load an IOS image. What function does the router perform next?

A. It checks the configuration register.

B. It attempts to boot from a TFTP server.

C. It loads the first image file in flash memory.

D. It inspects the configuration file in NVRAM for boot instructions.

Answer: A


Default (normal) Boot Sequence

Power on Router - Router does POST - Bootstrap starts IOS load - Check configuration register to see what mode the router should boot up in (usually 0x2102 to read startup- config in NVRAM / or 0x2142 to start in "setup-mode") - check the startup-config file in NVRAM for boot-system commands - load IOS from Flash.

New Questions 15

Refer to the exhibit.

A technician is troubleshooting host connectivity issues on the switches. The hosts in VLANs 10 and 15 on Sw11 are unable to communicate with hosts in the same VLANs on Sw12. Hosts in the Admin VLAN are able to communicate. The port-to-VLAN assignments are identical on the two switches. What could be the problem?

A. The Fa0/1 port is not operational on one of the switches.

B. The link connecting the switches has not been configured as a trunk.

C. At least one port needs to be configured in VLAN 1 for VLANs 10 and 15 to be able to communicate.

D. Port FastEthernet 0/1 needs to be configured as an access link on both switches.

E. A router is required for hosts on SW11 in VLANs 10 and 15 to communicate with hosts in the same VLAN on Sw12.

Answer: B


In order for hosts in the same VLAN to communicate with each other over multiple switches, those switches need to be configured as trunks on their connected interfaces so that they can pass traffic from multiple VLANs.

New Questions 16

What are two enhancements that OSPFv3 supports over OSPFv2? (Choose two.)

A. It requires the use of ARP.

B. It can support multiple IPv6 subnets on a single link.

C. It supports up to 2 instances of OSPFv3 over a common link.

D. It routes over links rather than over networks.

Answer: B,D


Here is a list of the differences between OSPFv2 and OSPFv3:

u2711 They use different address families (OSPFv2 is for IPv4-only, OSPFv3 can be used for IPv6-only or both protocols

u2711 OSPFv3 introduces new LSA types

u2711 OSPFv3 has different packet format

u2711 OSPFv3 uses different flooding scope bits (U/S2/S1)

u2711 OSPFv3 adjacencies are formed over link-local IPv6 communications

u2711 OSPFv3 runs per-link rather than per-subnet

u2711 OSPFv3 supports multiple instances on a single link, Interfaces can have multiple IPv6 addresses

u2711 OSPFv3 uses multicast addresses FF02::5 (all OSPF routers), FF02::6 (all OSPF DRs)

u2711 OSPFv3 Neighbor Authentication done with IPsec (AH)

u2711 OSPFv2 Router ID (RID) must be manually configured, still a 32-bit number

Reference: ipv6.html

New Questions 17

What does a Layer 2 switch use to decide where to forward a received frame?

A. source MAC address

B. source IP address

C. source switch port

D. destination IP address

E. destination port address

F. destination MAC address

Answer: F


When a frame is received, the switch looks at the destination hardware address and finds the interface if it is in its MAC address table. If the address is unknown, the frame is broadcast on all interfaces except the one it was received on.

New Questions 18

At which layer of the OSI model is RSTP used to prevent loops?

A. physical

B. data link

C. network

D. transport

Answer: B


RSTP and STP operate on switches and are based on the exchange of Bridge Protocol Data Units (BPDUs) between switches. One of the most important fields in BPDUs is the Bridge Priority in which the MAC address is used to elect the Root Bridge -> RSTP operates at Layer 2 u2013 Data Link layer ->.

New Questions 19

The output of the show frame-relay pvc command shows "PVC STATUS = INACTIVE". What does this mean?

A. The PVC is configured correctly and is operating normally, but no data packets have been detected for more than five minutes.

B. The PVC is configured correctly, is operating normally, and is no longer actively seeking the address of the remote router.

C. The PVC is configured correctly, is operating normally, and is waiting for interesting traffic to trigger a call to the remote router.

D. The PVC is configured correctly on the local switch, but there is a problem on the remote end of the PVC.

E. The PVC is not configured on the local switch.

Answer: D


The PVC STATUS displays the status of the PVC. The DCE device creates and sends the report to the DTE devices. There are 4 statuses:

+ ACTIVE: the PVC is operational and can transmit data

+ INACTIVE: the connection from the local router to the switch is working, but the connection to the remote router is not available

+ DELETED: the PVC is not present and no LMI information is being received from the Frame Relay switch

+ STATIC: the Local Management Interface (LMI) mechanism on the interface is disabled (by using the u201cno keepaliveu201d command). This status is rarely seen so it is ignored in some books.

