1. Which AAA service reduces IT operating costs by providing detailed reporting and monitoring of network user behavior, and also by keeping a record of every access connection and device configuration change across the network?
• authentication
• accreditation
• accounting
• authorization
2. Which three items are normally included when a log message is generated by a syslog client and forwarded to a syslog server? (Choose three.)
• date and time of message
• ID of sending device
• length of message
• message ID
• checksum field
• community ID
3. What is the advantage of using WPA to secure a wireless network?
• It uses a 128-bit pre-shared hexadecimal key to prevent unauthorized wireless access.
• It uses an advanced encryption key that is never transmitted between host and access point.
• It is supported on older wireless hardware, thus providing maximum compatibility with enterprise equipment.
• It requires the MAC address of a network device that is requesting wireless access to be on a list of approved MAC addresses.
4. A company wants to configure a firewall to monitor all channels of communication and allow only traffic that is part of a known connection. Which firewall configuration should be deployed?
• packet filtering
• proxy
• stateful packet inspection
• stateless packet inspection
5. A server log includes this entry: User student accessed host server ABC using Telnet yesterday for 10 minutes. What type of log entry is this?
• authentication
• authorization
• accounting
• accessing
6. What two measures help to verify that server backups have been reliably completed? (Choose two.)
• reviewing backup logs
• performing trial backups
• performing full backups only
• replacing tape backup with hard disk-based backup
• using an autoloader when backups require more than one tape
7. Which means of communication does an SNMP network agent use to provide a network management station with important but unsolicited information?
• query
• broadcast
• ICMP ping
• trap
• poll
8. Which three protocols are used for in-band management? (Choose three.)
• FTP
• HTTP
• SNMP
• Telnet
• TFTP
• DHCP
9. A hacker has gained access to sensitive network files. In analyzing the attack, it is found that the hacker gained access over a wireless segment of the network. It is further discovered that the only security measure in place on the wireless network is MAC Address Filtering. How is it likely that the hacker gained access to the network?
• The hacker used a software tool to crack the shared hexadecimal wireless key.
• The hacker obtained the MAC address of a permitted host, and cloned it on his wireless laptop NIC.
• The attacker mounted a denial of service attack to overwhelm the firewall before penetrating the wireless LAN.
• The hacker gained wireless access to the MAC address database and added his own MAC address to the list of permitted addresses.
10. A network administrator is assigning network permissions to new groups of users and employing the principle of least privilege. Which two actions should the administrator take? (Choose two.)
• Provide users with only the access to resources required to do their jobs.
• Provide the minimum level of permissions required for users to do their jobs.
• Remove all permissions from the users and grant permissions as they are requested.
• Allow users to decide how much permission they need to accomplish their job tasks.
• Provide full access to the users and gradually remove privileges over time.
11. Which three protocols describe methods that can be used to secure user data for transmission across the internet? (Choose three.)
• SMTP
• IPSEC
• SSL
• HTTPS
• FTP
• TFTP
12. Which benefit does SSH offer over Telnet when remotely managing a router?
• encryption
• TCP usage
• authorization
• connection using six VTY lines
13. Which of the following does SNMP use to hold information collected about the network?
• network management station
• network management database
• management information base
• database information agent
14. What are two potential problems with using tape media to back up server data? (Choose two.)
• Tape is not a cost-effective means of backing up data.
• Data tapes are difficult to store offsite.
• Data tapes are prone to failure and must be replaced often.
• Tape drives require regular cleaning to maintain reliability.
• Backup logs are not available with tape backup solutions.
15. What is the term for the public network between the boundary router and the firewall?
• "clean" LAN
• intranet
• DMZ
• extranet
16. Which two characteristics of network traffic are being monitored if a network technician configures the company firewall to operate as a packet filter? (Choose two.)
• applications
• physical addresses
• packet size
• ports
• protocols
17. When is the use of out-of-band network management necessary?
• when a server needs to be monitored across the network
• when the management interface of a device is not reachable across the network
• when enhanced monitoring features are required to gain an overall view of the entire network
• when it is desirable to use the information that is provided by SNMP
18. What network layer security protocol can secure any application layer protocol used for communication?
• HTTPS
• IMAP
• FTPS
• IPSEC
• TLS
19. Before a technician upgrades a server, it is necessary to back up all data. Which type of backup is necessary to ensure that all data is backed up?
• daily
• differential
• full
• incremental
• partial
20. What AAA component assigns varying levels of rights to users of network resources?
• auditing
• accounting
• authorization
• access control
• authentication
• acknowledgement
ccna discovery 2 modul 8 answers versions 4.0
ccna discovery 2 modul 7 answers versions 4.0
• The two bottom layers of the TCP/IP model make up the bottom layer of the OSI model.
• The TCP/IP model is a theoretical model and the OSI model is based on actual protocols.
• The OSI network layer is comparable to the Internet layer of the TCP/IP model.
• The TCP/IP model specifies protocols for the physical network interconnection.
• The TCP/IP model is based on four layers and the OSI model is based on seven layers.
2. To meet customer expectations, an ISP must guarantee a level of service that is based on what two factors? (Choose two.)
• accessibility
• adaptability
• availability
• reliability
• scalability
3. User1 is sending an e-mail to User2@cisco.com. What are two characteristics of the process of sending this data? (Choose two.)
• It utilizes TCP port 110.
• A TCP connection is established directly between the User1 and User2 client computers in order to send the e-mail message.
• It utilizes a store and forward process.
• The same application layer protocol is used to send the e-mail and retrieve it from the destination server.
• SMTP is used to send the e-mail message to the mail servers.
4. Refer to the exhibit. Host1 is in the process of setting up a TCP session with Host2. Host1 has sent a SYN message to begin session establishment. What happens next?
• Host1 sends an ACK message to Host2.
• Host1 sends a SYN message to Host2.
• Host1 sends a SYN-ACK message to Host2.
• Host2 sends an ACK message to Host1.
• Host2 sends a SYN message to Host1.
• Host2 sends a SYN-ACK message to Host1.
5. What are three characteristics of network reliability? (Choose three.)
• Redundant hardware provides enhanced reliability.
• Reliability is measured as a percent.
• Reliability is the responsibility of the ISP customers.
• Fault tolerance is a measure of reliability.
• The longer the MTBF, the greater the reliability.
6. Which two statements describe the FTP protocol? (Choose two.)
• It uses well-known port 23.
• The protocol interpreter is responsible for the data transfer function.
• In passive data connections, the FTP client initiates the transfer of data.
• It requires two connections between client and server.
• FTP servers open a well-known port on the client machine.
7. What is the function of the TCP three-way handshake?
• It enables the synchronization of port numbers between source and destination hosts.
• It immediately triggers the retransmission of lost data.
• It synchronizes both ends of a connection by allowing both sides to agree upon initial sequence numbers.
• It identifies the destination application on the receiving host.
8. What are three characteristics of HTTPS? (Choose three.)
• It uses a different client request-server response process than HTTP uses.
• It specifies additional rules for passing data between the application and data link layers.
• It supports authentication.
• It allows more simultaneous connections than HTTP allows.
• It encrypts packets with SSL.
• It requires additional server processing time.
9. Which DNS zone resolves an IP address to a qualified domain name?
• dynamic lookup
• forward lookup
• resolution lookup
• reverse lookup
10.
What type of update allows client computers to register and update their resource records with a DNS server whenever changes occur?
• dynamic
• zone transfer
• local recursive query
• root domain query
• top-level domain query
11. Refer to the exhibit. Which two statements are true about this file? (Choose two.)
• If the gateway address changes, the file will be updated dynamically.
• The command ping fileserv will use IP address 172.16.5.10.
• If the ping www.cisco.com command is issued, the file will be checked for the Cisco web server IP address before DNS is queried.
• The file must be created by the user if it is to be used by a workstation.
• Name to IP address mappings are added to the file after they are received from DNS.
12. Which two tasks are the responsibility of the local DNS server? (Choose two.)
• maintaining a large number of cached DNS entries
• maintaining the ISP server
• mapping name-to-IP addresses for internal hosts
• forwarding name resolution requests to a caching-only server
• forwarding all name resolution requests to root servers on the Internet
13. What are three unique characteristics of UDP? (Choose three.)
• connection oriented
• full-duplex operation
• low overhead
• no flow control
• no error-recovery function
• reliable transmission
14. A manufacturing company is looking into subscribing to services from a new ISP. The company requires hosted world wide web, file transfer, and e-mail services. Which three protocols represent the key application services that are required by the company? (Choose three.)
• FTP
• HTTP
• ICMP
• PPP
• Telnet
• SMTP
15. Which two options correctly match protocol and well-known port number? (Choose two.)
• DNS - 25
• FTP - 110
• HTTP - 80
• POP3 - 25
• SMTP - 25
16. Within TCP, what combination makes up a socket pair?
• source port with destination port
• source IP address with destination port
• source IP address and destination IP address
• source IP address and port with a destination IP address and port
17. Which protocol is used to send e-mail, either from a client to a server or from a server to another server?
• SNMP
• FTP
• SMTP
• HTTPS
18. Refer to the exhibit. The PC is requesting HTTP data from the server. What is a valid representation of source and destination sockets for this request?
• Source - 192.168.1.17:80 ; Destination - 192.168.2.39:80
• Source - 192.168.1.17:80 ; Destination - 192.168.2.39:1045
• Source - 192.168.1.17:1045 ; Destination - 192.168.2.39:80
• Source - 192.168.1.17:1045 ; Destination - 192.168.2.39:1061
19. What type of DNS server is typically maintained by an ISP?
• caching-only
• root
• second-level
• top-level
20. A client is communicating with a server on a different segment of the network. How does the server determine what service is being requested by the client?
• The server will apply the default service configured in directory services.
• The server will use ARP to discover the appropriate service from the local router.
• The server will send a request to the client asking for the appropriate service.
• The server will determine the appropriate service from the destination port field.
21.
• IP address
• MAC address
• session number
• sequence number
ccna discovery 2 modul 6 answers versions 4.0
• show version
• show ip route
• show interface
• show ip protocols
2.
Refer to the exhibit. What is the maximum number of RIP routers that could separate HostA and HostB and still leave the hosts with connectivity to each other?
• 14
• 15
• 16
• 17
3. In which situation would a company register for its own autonomous system number (ASN)?
• when the company's ISP adds connection points to the Internet
• when additional routers are added to the corporate internetwork
• when more than one interior routing protocol is used
• when the company uses two or more ISPs
4. Consider this routing table entry
• R 172.16.1.0/24 [120/1] via 200.1.1.1 00:00:27 Serial0/1
• What type of route is this?
• a static route
• a default route
• a RIP route
• an OSPF route
• an EIGRP route
• a directly-connected route
5. What is the difference between interior and exterior routing protocols?
• Exterior routing protocols are only used by large ISPs. Interior routing protocols are used by small ISPs.
• Interior routing protocols are used to route on the Internet. Exterior routing protocols are used inside organizations.
• Exterior routing protocols are used to administer a single autonomous system. Interior routing protocols are used to administer several domains.
• Interior routing protocols are used to communicate within a single autonomous system. Exterior routing protocols are used to communicate between multiple autonomous systems.
6. What information is included in RIPv2 routing updates that is not included in RIPv1 updates?
• metric
• subnet mask
• area identification
• hop count
• autonomous system number
7. Which routing protocol is used to exchange data between two different ISPs?
• BGP
• EIGRP
• OSPF
• RIP v2
8.
Refer to the exhibit. Which configuration command or commands contributed to the output that is shown?
• routerA(config-router)# no version 2
• routerA(config)# interface fa0/0
• routerA(config-if)# ip address 172.19.0.0 255.255.0.0
• routerA(config-router)# network 192.168.3.0
• routerA(config)# no ip default-gateway
9.
Refer to the exhibit. If all routers are running RIP and network 10.0.0.0 goes down, when will R3 learn that the network is no longer available?
• in 30 seconds
• in 60 seconds
• in 90 seconds
• Immediately
10. What statement is true regarding an AS number?
• AS numbers are controlled and registered for Internet use.
• Interior routing protocols require registered AS numbers.
• ISPs require all customers to have registered AS numbers.
• All routers at an ISP must be assigned the same AS number.
11. What is the purpose of the network command used when configuring RIP?
• to specify whether RIPv1 or RIPv2 will be used as the routing protocol
• to allow the router to monitor RIP updates that occur on other routers
• to identify which networks on the router will send and receive RIP updates
• to configure the IP address on an interface that will use RIP
• to identify all of the remote networks that should be reachable from the router
12. Which command would a network administrator use to determine if the routers in an enterprise have learned about a newly added network?
• router# show ip address
• router# show ip route
• router# show ip networks
• router# show ip interface brief
• router# debug ip protocol
• router# debug rip update
13. What is the purpose of a routing protocol?
• It is used to build and maintain ARP tables.
• It provides a method for segmenting and reassembling data packets.
• It allows an administrator to devise an addressing scheme for the network.
• It allows a router to share information about known networks with other routers.
• It provides a procedure for encoding and decoding data into bits for packet forwarding.
14. What device enables an ISP to connect with other ISPs to transfer data?
• border gateway router
• DSLAM
• web server
• interior router
15. Which command will display RIP routing updates as they are sent and received?
• show ip route
• show ip rip
• debug ip rip
• show ip protocols
• show ip rip database
16. Which part of an IP packet does the router use to make routing decisions?
• source IP address
• source MAC address
• destination IP address
• destination MAC address
17. What two types of businesses would benefit from registering as their own autonomous systems? (Choose two.)
• a home business with one ISP connection
• a global business with connections to multiple local ISPs
• a medium-sized nationwide business with Internet connectivity through different ISPs
• a large enterprise with two connections to the same ISP
• a small ISP with a single Internet connection through a larger ISP
18. Which command will display RIP activity as it occurs on a router?
• debug ip rip
• show ip route
• show ip interface
• show ip protocols
• debug ip rip config
• show ip rip database
19. Why is fast convergence desirable in networks that use dynamic routing protocols?
• Routers will not allow packets to be forwarded until the network has converged.
• Hosts are unable to access their gateway until the network has converged.
• Routers may make incorrect forwarding decisions until the network has converged.
• Routers will not allow configuration changes to be made until the network has converged.
20. Which two statements describe static routes? (Choose two.)
• They are created in interface configuration mode.
• They require manual reconfiguration to accommodate network changes.
• They automatically become the default gateway of the router.
• They are identified in the routing table with the prefix S
• They are automatically updated whenever an interface is reconfigured or shutdown.
21. Which two statements or sets of statements describe differences between link-state and distance vector routing protocols? (Choose two.)
• Link-state routing protocols routinely use more bandwidth for updates than do distance vector routing protocols.
• Distance vector routing protocols update all routers at one time. Link-state routing protocols update one router at a time.
• Link-state routers only know about directly connected routers. Distance vector routers know about every router in the network.
• Link-state routing protocols update when a change is made. A network using distance vector routing protocols only updates at a specific interval.
• Distance vector routing protocols have limited information about the entire network. Link state routing protocols know about all routers in the network.
• In case of similar topologies, networks using link-state routing protocols typically converge more rapidly than do networks using distance vector routing protocols.
22. Which protocol is an exterior routing protocol?
• BGP
• EIGRP
• OSPF
• RIP
23. Hosts on two separate subnets cannot communicate. The network administrator suspects a missing route in one of the routing tables. Which three commands can be used to help troubleshoot Layer 3 connectivity issues? (Choose three.)
• Ping
• show arp
• Traceroute
• show ip route
• show interface
• show cdp neighbor detail
24. What term refers to a group of networks that uses the same internal routing policies and is controlled by a single administrative authority?
• Internet
• intranet
• virtual private network
• autonomous system