考试波澜不惊,实验题老三样,选择和拖图也没见到什么新题。但是碰到不少自己在学习题库时疑惑的争议题。根据考分结果,感觉大部分自己的判断是正确的。因此,贡献我自己整理的题库勘误,大家可以发表意见。总之,不能死记题库,还是要深入学习。* o0 L7 l$ f0 @! O0 r+ R
QUESTION 20 Which two statementsabout CDP are true? (Choose two) A. It can bedisabled only at the interface level. B. Devices withCisco Discovery Protocol configured send advertisement messages to a multicast address on aperiodic basis C. It is disabledwhen switches have mismatched native VLANs. D. Devices withCisco Discovery Protocol configured send advertisement messages to a broadcast address on aperiodic basis. E. VTP relies onCisco Discovery Protocol to carry VTP domain information CorrectAnswer: BC1 {$ a% e# E% y0 u. z5 v
I think:BE
! X B) W; [2 r. Y5 mNative vlan不匹配就是靠cdp通告的。E本身是正确的
# G# N) {3 ~+ v+ \! Z : I7 Y8 G2 w( p
QUESTION 38 You have recentlydeployed an access switch with two fiber cables that connect it to adistribution switch in EtherChannel mode.Soon after it booted up, one of the uplink ports to the distribution switch waserrordisabled. Which option is themost likely reason for the problem? A. The port-channeldetected an inconsistent configuration B. The switch isoperating in UDLD aggressive mode and it failed to receive a UDLD message fromthe peer C. spanning treedetected a loop D. The switch isoperating in UDLD normal mode and it failed to receive a UDLD message from thepeer CorrectAnswer: A P3 k6 N2 \) T
I think:B
7 k! Q% k' J2 e5 UPortchannel misconfig会down掉channel中所有的物理端口以及channel端口本身。Udld只down掉单通的那个端口
6 v# q& E J8 N9 N- w9 a9 N: C 5 v! G5 p6 `* ] [9 R# u
QUESTION 55 Which twocircumstances can cause a port to errdisable? (Choose two.) A. It is connectedto a host with an NIC that is unable to recognize B. The switchincurred a port security violation. C. It detected acollision. D. It learned a newMAC address. E. It detected apeer with a matching duplex. CorrectAnswer: BE
9 v8 ^. |0 m" e) t+ ^I think:BC(除非E的正确写法是It detected a peer with a mismatching duplex)6 z7 u4 |; c) H# Y7 H: i- X \
Errdisable的原因:
) S% _/ C3 O0 ~4 ?8 FDuplex mismatch5 b* b0 n: O- [& u( x/ u% w
Portchannel misconfig. u2 J& ~/ K- b( X" N# o, J
BPDUguard& ~" _) u' P% T6 t9 W% ^
UDLD/ i" T+ L+ `% ^# i* M" y9 h# A
Late-collision
: c1 l! V5 m$ U8 h# \Security
; V/ D M- E2 F3 k! P9 e, `PAgp Flap& K7 D \+ L* u
L2TP guard$ E& C/ p: N; ~( N
DHCP snooping rate-limit
% @" J) D$ }; g6 g" ?6 h. T) jGBIC-SFP misconfig
" @5 l E. T8 @* Q" t/ IARP inspection
. N2 _2 ]$ u- ~: AInline Power
4 J) E5 ?3 v; _8 w* H
. u! r/ {, ~0 `! m" yQUESTION 82 For which reasonwould you configure RSPAN instead of SPAN on your network? A. RSPAN providesmore complete monitoring of the traffic on a single switch. B. Only RSPANdevices can monitor traffic on other device C. Only RSPAN canlog traffic on a VLAN that spans multiple switches. D. Only RSPANsupports STP on multiple switches across a campus. CorrectAnswer: C# v( V0 q& [& K! l( \
I Think: B. Y, w1 J% \7 Z1 i3 N
C写得是log,即记录日志,而不是监控流量
9 [4 h @ m0 J3 j 4 g% A4 L5 o6 i7 U
QUESTION 126 Which two newfeature are included in VTP3?(choose two) A. VTPs can now beconfigured in off mode B. VLANs configuredfor token ring are now eligible to participate in VTP C. VTP now supportMD5 passwords D. it can beconfigured to prevent the override of the vlan database CorrectAnswer: AC( b; }( i9 M! x5 D8 d2 t8 m
I Think:CD4 C8 h1 D7 ~ d. q( _8 T8 F* |
VTP 1-3都有off mode$ y6 t- V4 k9 ^$ X) c- M
VTP 3引入了primary server模式,作为最权威的vtp服务器,其他server不能更改7 W- e8 j' J6 U/ F! O+ Z
# i# o) n5 S. NQUESTION 127 Refer to the exhibit.A single server in Company 123 is connected via EtherChannel to a singleupstream switch. Which EtherChannel load balancing method on the switch makesoptimal use of the redundant links as traffic flows from the routers to theserver? A. source MACaddress B. source IP address C. source anddestination MAC address D. destination MACaddress CorrectAnswer: A+ O( L2 ~( Q- D! }0 t
I Think: B
' H( e9 E* j. G) l没有标注两个路由器以太口的MAC地址,不知道最后一位分别是0和1,所以用mac地址效果不明,最好用source ip
- @' L8 |1 d0 h/ X' l4 h
9 o ]7 x$ l' D; |" T; a) y/ AQUESTION 144 Refer to the exhibit Which two statementsabout the network environment are true? (Choose two.) A. Interface fa0/1and fa0/2 cannot communicate via Layer 2 switching. B. Interface fa0/1and fa0/3 cannot communicate via Layer 2 switching. C. Interface fa0/2and fa0/3 can communicate via Layer 2 switching. D. The twoaaaa.aaaa.aaaa MAC address entries must be from the same VLANs. E. The twoaaaa.aaaa.aaaa MAC address entries must be from different VLANs. CorrectAnswer: AE# G/ l6 d& j g- H! x2 J
答案没问题,题目抄错了,vlan号从上到下分别是:10 10 20
( r1 r; z1 e B! t3 B, o
+ B2 ~0 S+ b) ^) pQUESTION 160 which commandenables you to determine whether any interface on a device was shut down as aresult of a port security violation? A. showport-security address B. show errdisabledetect C. show interfaceerr-disabled status D. showport-security CorrectAnswer: B
" ~7 O2 ~& i# y+ O+ ^' HI Think: D
) J, b0 ]8 y) }+ DB是看哪些errdisable的探测是enable的,只有D才能看到由于port-security被关闭的端口
?: Y- p1 e' O1 S' Z. R ) h* a5 d8 R/ s4 y4 ^
QUESTION 183 Which two statementsabout source port monitoring in a SPAN are true? (Choose two.) A. Traffic through adestination port can be copied and included in the SPAN session. B. The entireEtherChannel must be monitored. C. It can monitoronly FastEthernet and GigabitEthernet port types. D. It can monitorindividual interfaces within a port channel. E. It can monitoringress and egress traffic. CorrectAnswer: AE
* A& j: B9 p* P" W& D! w: U+ XI Think: DE
9 L; @9 l7 W, f+ L; K# bA显然错误,span是可以监控channel的物理端口或整个逻辑端口的
- E3 J5 ~: J- m2 y! ^4 p
4 y' D8 O% E' f' YQUESTION 185 Which two commandsdisplay the VLANs that are present in the VLAN database? (Choose two.) A. showrunning-config B. show vlandatabase C. show vlan brief D. show vlan E. show vlan id CorrectAnswer: AD& |- f, N# s1 }
I Think: CD
) l1 ^+ Q4 {2 }9 u/ @1 W敲一下命令看输出就知道了 A最大的问题在于如果是通过vtp学习到的vlan是看不到的
, [( |& E/ Y6 n; i
" D7 O8 s0 g* g% {% M ]QUESTION 203 Which two commandsenable you to determine the native VLAN that is configured on an interface? (Choose two.) A. show interfacestatus B. show interfaces C. show interfacetrunk D. showrunning-config E. show interfacebrief CorrectAnswer: CE
+ U5 p/ e8 S+ p5 l4 |I Think:CD
$ M5 }" C8 {. }# v3 D没有E这个命令
* W2 {4 s5 x ]" B0 h0 h
8 J! r; B1 [- w0 c8 YQUESTION 276 Which two statementsabout manually-configured LACP EtherChannels are true? (Choose two.) A. LACP negotiationmust be disabled on both devices in the EtherChannel B. They requireCisco Discovery Protocol. C. Each physicalport in the EtherChannel must have the same speed and duplex settings. D. LACP negotiationmust be disabled on one device in the EtherChannel. E. They use an MD5hash for equal load balancing. F. If the physicalport configurations on the two devices are different, the ports are placed intothe errdisabled state CorrectAnswer: AC* M9 y2 c2 I( o7 m
I Think: CF3 u) J0 P. l+ x" @1 s( g$ K- H
协商是否关闭并不影响不选A,由于Portchannel-misconfig默认打开,所以F表述正确( {7 _: r; g6 @9 c% f
7 D$ w9 m& W/ w0 x( Y+ _QUESTION 277 Which four LACPcomponents are used to determine which hot-standby links become active after aninterface failure within an EtherChannel bundle? (Choose two) A. interface bandwidth B. system ID C. interface MACaddress D. hot-standby linkidentification number E. port number CorrectAnswer: BE/ b/ h# h$ y8 ]( J. Q
原题是要选4个答案(which four lacp components)还有两个选项是:
$ ~- S7 Q$ i& U$ }LACP system priority2 U% Z9 B A" W b" t x" r5 T
LACP port priority2 q7 H% o, a4 e9 U
' h& D9 s9 t4 z# \4 ]QUESTION 307 An access switch hasbeen configured with an EtherChannel port. After configuring SPAN to monitorthis port, the network administrator notices that not all traffic is beingreplicated to the management server. What is a cause forthis issue? A. VLAN filters arerequired to ensure traffic mirrors effectively. B. SPANencapsulation replication must be enabled to capture EtherChannel destinationtraffic. C. The port channelcan be used as a SPAN source, but not a destination. D. RSPAN must beused to capture EtherChannel bidirectional traffic. CorrectAnswer: C
. p& O, }3 T$ m1 e# {, ^, _I Think: B |/ N+ |6 @% G+ Z I1 R7 C; d
C表述正确,但是答非所问3 {' l, M# P) O* F
Span默认不镜像vtp、stp、trunkprotocl等流量,如果要完整镜像就要加入replica关键字
4 S: r1 ?1 G: @' H- n * r/ C e6 Z# G$ R5 j1 m
QUESTION 309 which two statementsabout dynamic MAC address learning are true?(choose two) A.Dynamically-learned MAC addresses can be cleared on a per-interface basis only B. it must beenabled on ports with port security enabled C. switch interfaceslearn MAC addresses dynamically by default D. it can bedisabled on a per-vlan basis only E.Dynamiccally-learned MAC addresses supersede static MAC addresses CorrectAnswer: AC
. w; w6 u% d4 W8 r) II Think:BC- B% I0 H( L* d8 V
动态mac可以在global模式、vlan模式、端口模式清理,A错, G3 w" t! F2 D: h/ E% w9 j; C
打开了port security的端口必须强制打开mac learning B正确
* W; n$ R3 P* ?; N 9 u" c# ^6 {" _/ Y
QUESTION 314 Which commandremoves all Mac-address from port channel ? A. Clear mac-addresstable dynamic B. Clear mac-addresstable dynamic addresses mac addresses C. Clear mac-addresstable dynamic interface interface-id D. gyros for all E. Clearmac-addredss table dynamic vlan vlan-id CorrectAnswer: A1 D0 M0 G% x3 ?# ^8 |( j$ ^" f8 d
I Think: C% A/ e8 }# }8 O' N0 i6 s
A会清理掉整个mac表' k6 b' u. W9 Q6 S9 _) d
Clear mac-address tabledynamic interface port-channel 1正解
1 U8 O2 g) k$ X1 Y+ l) U' i. {8 g7 y + j8 @, z7 Y9 ^* F c u- \ t. H
QUESTION320
7 G% E0 J1 D/ s1 ySource Port:2 `5 N# I6 W0 K4 i
It can bean Etherchannel Port& k" A9 b# |! L( C% N
It is themonitored Port# f$ _! @; V; J/ V+ Q
Multipleports can be included in a single session' B/ ?7 Z1 v& i% v2 n0 z" _
DestinationPort:
: s o X, [. f. ~0 {It isexcluded from STP
) }& J1 R( Y1 B) bIt isremoved from portchannel
4 Y( w% O K) [ h; H! p5 ZIt can beany physical Ethernet Port3 P6 g0 m( q$ F/ z: K v
1 j) j- n. f a( e/ N& W8 f6 _
QUESTION321
+ P5 M! p3 N% T( u/ aTrue ofRSPAN VLAN
8 K* h( i/ T3 G! CMAC addresslearning is not support Q6 a* V8 X U3 J
They canonly be configured on trunk port5 c, J% C" P+ M& ?) E
They canbe configured with STP only on the source port
6 t- n! `' N9 M! [# ]0 z2 z, s" |They use VLAN ID from 2 to 1001
# }% ]! L' O4 c$ F Q' ?" [ 7 D& o5 r5 u+ z3 n2 p- s4 V
False of RSPAN VLAN# j1 G) y$ O1 ~
They are not supported with vtp; ?9 Y0 U b' X
They can be configured only on access port% t) |5 D/ m+ H
They use VLAN ID from 2 through 10246 Q3 @( \. v% P/ y2 C! W& M( p
. `) P6 p# [% D9 x0 _! w
5 T3 D5 x3 Q7 I# ]# f- ~- N" ~3 K | 
简体中文
英语
日语
韩语
法语
西班牙语
越南语
泰语
阿拉伯语
俄语
葡萄牙语
德语
意大利语
希腊语
荷兰语
波兰语
保加利亚语
爱沙尼亚语
丹麦语
芬兰语
捷克语
罗马尼亚语
斯洛文尼亚语
瑞典语
匈牙利语
繁体中文
文言文
发表于 2019-11-21 21:19:54
置顶卡
喧嚣卡
变色卡
千斤顶
