|
题目编号是根据6月12号的题库 n5 d3 z- W; p! }# E
QUESTION 127" h: l# r2 p0 Z1 O2 t- |
Onwhich interface can port security be configured?
0 n6 u& d5 ^% A) b* a( z- gA. static trunk ports
1 B9 D. |8 v# d" x' s8 b; FB. destination port for SPAN
8 ]2 T- S+ B- m* tC. EtherChannel port group
& J! y+ S( {/ q5 h6 h2 q# cD. dynamic access point; r+ Z8 k- a, J9 h0 |2 ]9 m+ J) Z
CorrectAnswer: A7 p1 H* E$ S# G8 @ S- B
Section:part3
9 @/ p g5 T7 F$ ]. L) A1 Q, NExplanation trunk ports确实可以实现port-security,但是port-channel下不能,及时打问号有这个命令,但是敲不出来。从文档来看A和C都不能用,所以我的认为答案选D Port SecurityGuidelines and Restrictions Follow theseguidelines when configuring port security: A secure portcannot be a trunk port. A secure portcannot be a destination port for Switch Port Analyzer (SPAN). A secure portcannot belong to an EtherChannel port-channel interface. A secure port andstatic MAC address configuration are mutually exclusive. QUESTION 1945 ` F* i7 y( _8 ]; f; ]
A physical switch port is part of an EtherChannelgroup.What happens while the same port is configured as a SPAN destination?% k% `# @. z V3 \9 \% F9 x
A. The port forwards traffic in the EtherChannel groupand acts as a SPAN source simultaneously
* Q9 j, f2 K4 U4 x* P& AB. The operation is not allowed as an EtherChannelmember cannot be a SPAN source port
% ~ n2 G0 `' J8 p8 s$ _' H! ZC. The port is put in the errdisabled state and canonly be reenabled manually* V( R/ q+ o: `2 H. p8 @, \
D. The port is removed from the EtherChannel0 M; h' n) j( [7 q
Correct Answer: B0 l4 J" u% g8 y1 s6 q" o1 W8 Q% {
Section:part4
7 X% }- c/ [+ X! j, o2 e5 H% zExplanation
- H& s( _* a$ ]$ k( g r5 NExplanation/Reference: A destination port can be a physical port that is assigned to anEtherChannel group, even if the EtherChannel group has been specified as a SPANsource. The port is removed from the group while it is configured as a SPANdestination port QUESTION 198
M" R5 r& i7 jWhat happens if you apply this command “vlan dot1q tag native” ? ' H+ M' D* c9 Y/ Z* ?8 g7 s
A. packet will be dropped
- E0 k- ?, A4 zB. packet go to defautl vlan 0 r' S. T- Y; ]/ g# h# i* S1 m
C. packet go to native vlan
% {- t. I) D+ i' w- S# nD. http://bbs.hh010.com/& G& M6 N$ d" {6 _4 R
Correct Answer: C 我认为答案是A
, k4 ?: {( ^, @6 U O0 a* uSection: part4 Explanation/Reference: Usage Guidelines Typically, youconfigure 802.1Q trunks with a native VLAN ID, which strips tagging from allpackets on that VLAN. To maintain thetagging on the native VLAN and drop untagged traffic, usethe vlan dot1q tag native command. The switch will tagthe traffic received on the native VLAN and admit only 802.1Q-tagged frames,dropping any untagged traffic, including untagged traffic in the native VLAN. Control trafficcontinues to be accepted as untagged on the native VLAN on a trunked port, evenwhen the vlan dot1q tag native command is enabled. QUESTION 2156 Z: f. h* t0 `
Which statements about RSPAN are true? (Choose two.)7 Q) T: v/ Y; y& L/ j' P- v
A. It supports MAC adress learning.) |. o: \6 q8 ~& G
B. RSPAN VLANS can carry RSPAN traffic only.
( f. T% K+ Z! B4 ?- XC. only one RSPAN VLAN can be configured per device.* v$ z+ e) _. M6 ?4 V- U( g
D. RSPAN VLANs are exempt from VTP pruning.
$ _$ _. V" G5 e( mE. MAC address learning is not supported.# l6 G# H5 C- j" J; z
F. RSPAN uses are GRE tunnel to transmit captured traffic.% Q8 z- m, P2 Z: w. X$ J& T) p' H B
Correct Answer: BC 我认为答案是BE
, R, g' Q* o% l1 P4 ]Section: part5 Explanation/Reference: RSPAN VLAN The RSPAN VLANcarries SPAN traffic between RSPAN source and destination sessions. It hasthese special characteristics:
# K( y1 ?, W$ { - All traffic in the RSPAN VLAN is always flooded." C1 C" }; { i# p/ }* F
- No MAC address learning occurs on the RSPAN VLAN.
" o' v8 j& A2 \2 D8 J - RSPAN VLAN traffic only flows on trunk ports.
$ d# g1 Z. {$ {/ G6 r - RSPAN VLANs must be configured in VLAN configuration mode by using the remote-span VLAN configuration mode command." B# ^. l6 [9 q; Z$ c+ a! F+ V; _
- STP can run on RSPAN VLAN trunks but not on SPAN destination ports.- n1 ]0 h* j1 u8 ~5 j
For VLANs 1 to 1005that are visible to VLAN Trunking Protocol (VTP), the VLAN ID and itsassociated RSPAN characteristic are propagated by VTP. If you assign an RSPANVLAN ID in the extended VLAN range (1006 to 4094), you must manually configureall intermediate switches. It is normal tohave multiple RSPAN VLANs in a network at the same time with each RSPAN VLANdefining a network-wide RSPAN session. That is, multiple RSPAN source sessionsanywhere in the network can contribute packets to the RSPAN session. It is alsopossible to have multiple RSPAN destination sessions throughout the network,monitoring the same RSPAN VLAN and presenting traffic to the user. The RSPANVLAN ID separates the sessions. QUESTION 216
) E3 `, v/ ?9 T$ G6 \, Q* bWhen a private VLAN is configured, which mode must be configured as a routerfacing port?: j9 ?8 T& _" |7 f* g. Z
A. isolated1 O' z8 x( O5 l6 f! s
B. promiscuous$ h. S7 q2 h$ d3 K9 T" e I/ M
C. community
8 R2 ~& U9 k+ z8 F0 s0 v# P3 d/ HD. .host; N, j. X1 q- l! ]- S4 e! ]3 S' D- X, J
Correct Answer: C 我认为答案是B
6 R$ V* C2 q+ D* l6 ^1 TSection: part5 QUESTION 240
K) X4 |# x7 o2 z- k. S. l# v% J. [9 aEtherChannel guard misconfig is configured on a switch, which technologysupports that% y$ Q2 j5 n9 {2 K
A. LACP# W9 s; V6 i$ N9 f% t- m8 t1 Z
B. PagP8 }) x+ Z5 S' \& e0 O; }9 r2 R
C. STP
4 ?4 x9 |; k' C/ [" U; f( I$ aD. Port Security
0 R. I0 ^, d& ~ MCorrect Answer: C 我认为答案是A.LACP* [5 \0 v( t4 v, _8 [' P
Section: part5 LACP可以避免由于错误配置而造成二层交换环路;开始LACP后,在两端没有成功沟通的情况下,EtherChannel是不会建立的。不过这样的沟通机制引入了更 大数据报头和更长初始化延时。配置‘On’可以消除延时,但是如果配置失误的话可能造成严重后果。 QUESTION 251 VMPS question – a dynamicaccess port is member of which VLAN by default? A. VLAN 1 is thedefault VLAN C. none until theport VLAN is determined Correct Answer: A Section: part6 Explanation Explanation/Reference: 如果在文件列表中找到MAC地址,交换机就将端口分配给列表中该MAC所对应的VLAN。所有列表中没有的话,交换机就会将该端口分配给默认VLAN(假设已经定义了默认VLAN)。如果在列表中没有MAC地址,而且也没有默认VLAN,端口将不会被激活。 本实例将述的就是基于MAC地址的动态VLAN。 其中(假设已经定义了默认VLAN)说明默认是没有定义“默认VLAN”所以我认为答案应该是C. none until the port VLAN is determined QUESTION 2552 d5 ^1 e) {, R6 [, ]
question in regards to an EtherChannel misconfiguration.$ Q9 d+ h0 x0 B
A. LACP2 f+ A( L" k; l8 u" F. W
B. PortFast
: f$ o( \" X* q0 YC. PAGP
& |5 P9 R1 u: F9 SD. STP% l" b! G5 t6 ]. O% J
Correct Answer: D 我认为答案是A. LACP
/ O6 ^; b5 d; C! a6 L. v: O4 I( ~- O+ H
QUESTION 267# L, z. Y# W( E
If all devices on an EtherChannel are sending traffic to a single MAC address,which two methods of load
& y- n; p; T! _. ^& }- a& a4 U* T( Qbalancing on the EtherChannel are preferred? (Choose two.)2 k. u% b. K/ O- C
A. destination-MAC B.src-dst-MAC5 g" ^3 e8 v+ J- T
C. destination-IP
" o( Q6 N" \4 N6 N G0 L4 `: m- ?% G- m `D. source-MAC
* ~. }" O( e# K( V5 @- C: mE. source-IP |4 i# ~5 u C: N: r
Correct Answer: BD 我认为答案是D. source-MAC和E. source-IP. p Y; q% O, j
Section: part6 QUESTION 274
6 t" U) U& O9 n+ _Diagram is: with 1 core, 2 DSW connected with EtherChannel, 2 ALSW, 2 PCs perALSW. Per diagram U- M) S: S- {7 M
current root for VLAN 10 is DSW2.6 h% B) n1 U- a% B. J O% o
Question is how to make DSW1 the primary root for VLAN 10. (Choose two.) A. DSW2: change bridge priority to 61440 (highest).' [ i- e7 _( q# Q# h
B. DSW1: change bridge priority to 4096 (lowest).
+ ]0 N( A! l# C# N0 N' W( H3 n# ]C. DSW1: change port priority but in global configuration mode.: ~% |5 I9 Z5 r8 v, z
D. DSW1: change bridge priority but value is 0.
# z2 I ]/ q, m% h% ME. DSW1: change bridge priority but command is priority root.
# h' J+ Y; n/ v+ }Correct Answer: BE 我认为答案是B和D$ q% t. t. a6 o# i; t
Section: part6 QUESTION 290% |8 Q+ x7 c3 {% e8 |. |
What is the default mode for LACP EtherChannel when configured?9 H7 r' `7 b8 C6 m; |6 S# O
A. On
" M) |. P) I% r8 l L1 s4 c0 z* FB. Active8 w& A/ L- s2 k$ o. g
C. Passive
2 M1 R1 S; L0 a+ b5 U5 ]/ xD. Desirable
- }" S5 f& b- K) jE. Off
$ u) K% v; F, |% M" o9 LCorrect Answer: C 我认为答案是A. On
: P o1 W* E; k$ |2 R0 X9 JSection: part6 QUESTION 300! S' L6 q0 e; r" }2 e% @2 X
Which two operational attributes can be checked forEtherChannel ports, i$ R# G- S c2 U& Y
that are in err-disabled state?
9 b: l8 H; D0 X. } ^2 v( ], hA. Port mode: Z& l. b7 z$ J+ I( p
B. Port cost7 y( o/ |& [1 E# w& G/ h
C. Duplex+ i& \$ p% Y) s" F; B" {5 [& \4 ]
D. DTP# \5 H" @. W, |' O6 d; `# E
E. VLAN
$ Q2 M5 Q- a) U S- X( f- ~Correct Answer: AE 我认为答案是A和C
. }: B* M$ k7 @! K+ _: X4 W: |Section: part6 SW1(config)#spanning-treeetherchannel guard misconfig EtherChannel Guardis a way of finding out if one end of the EtherChannel is not configuredproperly. This could be that there are some parameters not matching up such asduplex and speed. Or it could be that one side is a trunk and the other isn’t. When there is amisconfiguration found, the switch will place the interfaces in error-disabledstate and an error will be displayed. QUESTION 303
" c0 ~) O, V8 X0 LWhatis the value of the TPID/tag protocol identifier of QinQ?( l5 ]5 b$ @( {: A% `5 M
A. 0x8a88
, N! q. @6 ^' k5 x5 R* K! SB. 0x8100! I5 W; ? G+ W0 o% e
C. 0x8b45
$ u6 S! W4 n8 c* Z, O& {" @$ ED. 0x8200
% V, S) r" ]& o0 Z" XCorrectAnswer: A' ?& \ d; E3 }3 C3 y( T6 j% C0 ]
Section:part7( P2 b3 j$ n, J1 L1 i4 g0 p
Explanation
& y7 X! ^* y1 h: |2 j. o5 S6 EExplanation/Reference:+ b+ u. z4 b# s
Ans: A 在802.1Q中规定TPID(Tag Protocol Identifier)的EType的值为0x8100。在QinQ封装中,各个设备厂商的内层TPID的EType的值为0x8100,但是对于外层TPID的EType,各个厂商所使用的值不相同。 VLAN的标签也可以是上层嵌套的,这种VLAN方式一般在运营商的网络中采用。这种VLAN可以把多个客户的VLAN在划分在一个大的VLAN中以区别不同的业务。VLAN tag 从外到内逐步解析。此时外层的 VLAN TPID可以标记为9100、9200或者9300。根据802.1ad,由运营商的外层 VLAN TPID 被定义为88a8。 QUESTION 306& {! t2 Q' P- H+ _$ H
Which two configurations cause the frames to be tagged? (Choose two.)/ Q" X% l6 P) j
A. interface gi 0/1.116 encapsulation dot1q' B- }& A& q3 M
B. trunk allowed vlan 116( v) Y. D' E- m1 L, _7 |( C
C. interface with access and voice VLAN configured to 116
1 B: J& l; \* oD. NA
( w0 U% {( S5 R. [; _3 {Correct Answer: AB 我认为答案应该是A和D ,ISL! U" c8 k: B4 V" a* _9 ~; T9 c
Section: part7 QUESTION 3085 `0 ~- S# R8 I) B6 S& i v
EtherChannel load balancing with an exhibit.) q1 U2 G# o% d7 l
SERVER SERVER; X* ]( `# f1 h/ Y
| |
# k9 X3 W+ U2 _6 V' j& kS W I T C H( @( n! Z; ~) G7 K
|||||||||||& \8 T7 e, R6 e2 k, M% u6 Z
S W I T C H; |+ |- ?( @( w+ I( a
|
" G1 U; L$ P- R1 o+ h/ O$ a6 f7 {HOST
E+ x0 e; q6 G) X; A/ V! ?Which EtherChannel load balancing algorithm should be used to optimize theEtherChannel links
7 g! Z+ n: M# ?1 [5 U6 @between switches?
. @4 _ Q, `* S, m+ f+ a9 e2 yA. Source MAC
/ E' P9 [! }+ sB. Source-dest MAC
; _9 D# g; ^- o2 L* e3 QC. Destination IP
. H" e& t9 ~ L. ]. L4 U- E, c, v5 aD. Destination MAC Correct Answer: A 我认为答案是D. Destination MAC
$ b; y7 k/ w1 A( R9 m2 B- T$ hSection: part7 QUESTION 317
9 d% ~/ s& B( u. O N& m9 V5 ^Aquestion about the port number and multicast address of VRRP.
& c1 e& o1 z5 G* N5 |# G* C(CONCEPT ONLY), T8 z) k' a3 z8 a# X
A. VRRP uses multicast address 224.0.0.18 and uses UDPport 112.
; b" g; g- E: `& k4 T& _; tB. na: I+ W+ b0 _8 M# M0 Z
C. na
0 }+ U8 P' @* u0 q. p d$ Y; ?! FD. na! y! I2 K) C2 L2 H0 R- m0 Y2 \/ e5 u
CorrectAnswer: A) x: O! X0 c# v
Section:part7- Z% P& F, Z& q$ H7 e! `+ d, d! [9 k
Explanation/Reference: 1. HSRP——封装在UDP数据中,使用UDP端口号1985,多点广播地址为224.0.0.2 VRRP——使用IP报文作为传输协议,协议号为112,使用组播地址224.0.0.18 Advertisementprotocol—Uses a dedicated Internet Assigned Numbers Authority (IANA) standardmulticast address (224.0.0.18) for VRRP advertisements. This addressing schememinimizes the number of routers that must service the multicasts and allowstest equipment to accurately identify VRRP packets on a segment. IANA hasassigned the IP protocol number 112 to VRRP. QUESTION 3334 J9 L) U$ e# w) W7 b. g6 F
A question about EtherChannel compatibility modes. (Choose two.)( Q2 p+ w5 h8 k/ i R
A. passive-passive
+ e$ H) p$ B3 u( tB. active-active, K) G+ ^. ~+ R' ~
C. desirable-desirable
. z4 g$ t0 @8 s8 f2 _' u$ S8 D9 Y$ p! ]D. active-passive E. active-desirable
6 l% v- A! ~8 a ]4 jCorrect Answer: CD 我认为答案ACD
( ^+ m0 }7 H/ hSection: part7
* t# A9 k( l+ N8 w
考试CCNP交换的朋友,大神,或者网络爱好者,欢迎吐槽、指点。 / S: O$ r. z2 R/ ^: G
| 
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
发表于 2017-6-15 16:52:23
置顶卡
喧嚣卡
变色卡
千斤顶