Request More Information

Email:  WhatsApp:

whatsAppIcon +91-984-072-2417 (Chat Only)
emailIcon info@koenig-solutions.com
koenig-logo
Login
whatsAppIcon +91-984-072-2417 (Chat Only)
koenig-logo

Implementing Cisco Enterprise Network Core Technologies (ENCOR) v1.3 Quiz Questions and Answers

Answer :
  • Source address

Explanation :

The Unicast RPF feature helps to mitigate problems that are caused by the introduction of malformed or forged (spoofed) IP source addresses into a network by discarding IP packets that lack a verifiable IP source address. For example, a number of common types of denial-of-service (DoS) attacks, including Smurf and Tribal Flood Network (TFN), can take advantage of forged or rapidly changing source IP addresses to allow attackers to thwart efforts to locate or filter the attacks. For Internet service providers (ISPs) that provide public access, Unicast RPF deflects such attacks by forwarding only packets that have source addresses that are valid and consistent with the IP routing table. This action protects the network of the ISP, its customer, and the rest of the Internet.
Answer :
  • The switch connected to the phone provides the VLAN

Explanation :

When using auxiliary VLANs, the switch connected to the phone provides the VLAN to the phone. IP telephones typically have a built in 3-port 10/100 hub. One port internally attaches to the phone, one port is attached to the switch access port, and the other is used to connect to the workstation. The PC attached to the switch port via the IP phone is unaware of the presence of the phone Objective: Layer 2 Technologies - Sub-Objective: Configure and verify VLANs - References: Cisco > Home > Products and Services > Cisco Interfaces and Modules > Cisco Network Modules > Product Literature > Data Sheets > Cisco Catalyst 6500 Series Switches - Cisco > Cisco IOS Interface and Hardware Component Command Reference > squelch through system jumbomtu > switchport voice vlan
Answer :
  • security violation

Explanation :

There are various reasons for the interface to go into errdisable. The reason can be: -> Duplex mismatch -> Port channel misconfiguration -> BPDU guard violation -> UniDirectional Link Detection (UDLD) condition -> Late-collision detection -> Link-flap detection -> Security violation -> Port Aggregation Protocol (PAgP) flap -> Layer 2 Tunneling Protocol (L2TP) guard -> DHCP snooping rate-limit -> Incorrect GBIC / Small Form-Factor Pluggable (SFP) module or cable -> Address Resolution Protocol (ARP) inspection -> Inline power Reference: http://www.cisco.com/en/US/tech/tk389/tk621/technologies_tech_note09186a00806cd87b.shtml
Answer :
  • portfast

Explanation :

Voice VLAN Configuration Guidelines -> You should configure voice VLAN on switch access ports. The voice VLAN should be present and active on the switch for the IP phone to correctly communicate on the voice VLAN. Use the show vlan privileged EXEC command to see if the VLAN is present (listed in the display). -> The Port Fast feature is automatically enabled when voice VLAN is configured. When you disable voice VLAN, the Port Fast feature is not automatically disabled. Reference: https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3560/software/release/12-2_52_se/configuration/guide/3560scg/swvoip.html
Answer :
  • 300 seconds

Explanation :

After you fix the root problem, the ports are still disabled if you have not configured errdisable recovery on the switch. In this case, you must reenable the ports manually. Issue the shutdown command and then the no shutdown interface mode command on the associated interface in order to manually reenable the ports. The errdisable recovery command allows you to choose the type of errors that automatically reenable the ports after a specified amount of time. The show errdisable recovery command shows the default error-disable recovery state for all the possible conditions. cat6knative#show errdisable recovery
Answer :
  • VTP summary advertisements are sent out of all ports with the new domain name.

Explanation :

By default, a switch will have a domain name of NULL and no password. If the switch hears a VTP advertisement it will automatically learn the VTP domain name, VLANs, and the configuration revision number. Summary advertisements â€" sent out every 300 seconds and every time a change occurs on the VLAN database. Contained in a summary advertisement: -> VTP version -> Domain name -> Configuration revision number -> Time stamp -> MD5 encryption hash code Reference: https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3560/software/release/12-2_52_se/configuration/guide/3560scg/swvtp.html
Answer :
  • router(config-if)#ip helper-address 172.20.14.225

Explanation :

To let a router forward broadcast packet the command ip helper-address can be used. The broadcasts will be forwarded to the unicast address which is specified with the ip helper command. ip helper-address {ip address} When configuring the ip helper-address command, the following broadcast packets will be forwarded by the router by default: -> TFTP â€" UDP port 69 -> Domain Name System (DNS) â€" UDP port 53 -> Time service â€" port 37 -> NetBIOS Name Server â€" port 137 -> NetBIOS Datagram Server â€" port 138 -> Bootstrap Protocol (BOOTP) â€" port 67 -> TACACS â€" UDP port 49
Answer :
  • Spanning-Tree PortFast

Explanation :

In order to allow immediate transition of the port into forwarding state, enable the STP PortFast feature. PortFast immediately transitions the port into STP forwarding mode upon linkup. The port still participates in STP. So if the port is to be a part of the loop, the port eventually transitions into STP blocking mode. Example configuration: Switch-C# configure terminal - Switch-C(config)# interface range fa0/3 - 24 Switch-C(config-if-range)# spâ€"nning-tree portfast Reference: http://www.informit.com/library/content.aspx?b=CCNP_Studies_Switching&seqNum=36