29
Top of Form 1Which two statements are reasons why UDP is used for voice and video traffic instead of TCP? (Choose two.) TCP requires all data packets to be delivered for the data to be usable. The acknowledgment process of TCP introduces delays that break the streams of data. UDP does not have mechanisms for retransmitting lost packets. UDP tolerates delays and compensates for them. TCP is a connectionless protocol that provides end-to-end reliability. UDP is a connection-oriented protocol that provides end-to-end reliability. 2 Top of Form Which functional component of the Cisco Enterprise Architecture is responsible for hosting internal servers? enterprise campus enterprise edge service provider edge building distribution 3 Top of Form Which two solutions would an enterprise IT department use to facilitate secure intranet access for remote workers? (Choose two.) VPN NAT user authentication client firewall software packet sniffing

Ccna 3 Discovery 4.0 Chapter 1

Embed Size (px)

Citation preview

Page 1: Ccna 3 Discovery 4.0 Chapter 1

Top of Form

1Which two statements are reasons why UDP is used for voice and video traffic instead of TCP? (Choose two.)TCP requires all data packets to be delivered for the data to be usable.

The acknowledgment process of TCP introduces delays that break the streams of data.

UDP does not have mechanisms for retransmitting lost packets.

UDP tolerates delays and compensates for them.

TCP is a connectionless protocol that provides end-to-end reliability.

UDP is a connection-oriented protocol that provides end-to-end reliability.2 Top of Form

Which functional component of the Cisco Enterprise Architecture is responsible for hosting internal servers?enterprise campus

enterprise edge

service provider edge

building distribution

3 Top of FormWhich two solutions would an enterprise IT department use to facilitate secure intranet access for remote workers? (Choose two.)

VPN

NAT

user authentication

client firewall software

packet sniffing

4 Top of FormWhat is the purpose of the Cisco Enterprise Architecture?

remove the three-layer hierarchical model and use a flat network approachdivide the network into functional components while still maintaining the concept of Core, Distribution, and

Page 2: Ccna 3 Discovery 4.0 Chapter 1

Access Layersprovide services and functionality to the core layer by grouping various components into a single component located in the access layerreduce overall network traffic by grouping server farms, the management server, corporate intranet, and e-commerce routers in the same layer

5 Top of FormIn which functional area of the Cisco Enterprise Architecture should IDS and IPS be located to detect and prevent malicious activity from outside?

enterprise campus

WAN and Internet

enterprise edge

service provider edge

6 Top of FormWhat is a benefit of having an extranet?

It provides web-like access to company information for employees only.

It limits access to corporate information to secure VPN or remote access connections only.

It allows customers and partners to access company information by connecting to a public web server.It allows suppliers and contractors to access confidential internal information using controlled external connections.

7 Top of FormWhat does VoIP provide to telecommuters?

high-quality, live-video presentations

real-time voice communications over the Internet

ability to share desktop applications simultaneously

secure, encrypted data transmissions through the Internet

8 Top of Form

Page 3: Ccna 3 Discovery 4.0 Chapter 1

What can be found at the enterprise edge?Internet, VPN, and WAN modules

Internet, PSTN, and WAN servicesserver farms and network managementconsultant must use Internet websites to research a report on the e-business strategies of several firms and then electronically deliver the report to a group of clients in cities throughout the worlcampus infrastructure, including access layer devices

9 Top of FormWhich task would typically only require services located at the access layer of the hierarchical design model?

connecting to the corporate web server to update sales figures

using a VPN from home to send data to the main office servers

printing a meeting agenda on a local departmental network printer

placing a VoIP call to a business associate in another country

responding to an e-mail from a co-worker in another department

10 Top of FormWhat are two important characteristics or functions of devices at the Enterprise Edge? (Choose two.)

providing Internet, telephone, and WAN services to the enterprise network

providing a connection point for end-user devices to the enterprise network

providing high-speed backbone connectivity with redundant connections

providing intrusion detection and intrusion prevention to protect the network against malicious activity

providing packet inspection to determine if incoming packets should be allowed on the enterprise network

11 Top of FormThe ABC Corporation implements the network for its new headquarters using the Cisco Enterprise Architecture. The network administrator wants to filter the traffic from and to the outside world. Where should the administrator deploy a firewall device?

server farm

Page 4: Ccna 3 Discovery 4.0 Chapter 1

enterprise edge

enterprise campus

service provider edge

12 Top of FormWhich two measures help ensure that a hardware problem does not cause an outage in an enterprise LAN that supports mission critical services? (Choose two.)

providing failover capability

installing redundant power supplies

purchasing more bandwidth from the ISP

enabling half-duplex connectivity to access layer devices

installing routers that can handle a greater amount of throughput

13 Top of FormWhich statement describes the difference between an enterprise WAN and an enterprise extranet?

An enterprise WAN is designed to interconnect local LANs, while an enterprise extranet is designed to interconnect remote branch offices.An enterprise WAN is designed to interconnect branch offices, while an enterprise extranet is designed to give access to external business partners.An enterprise WAN is designed to provide remote access for its teleworkers, while an enterprise extranet is designed to provide Internet connectivity for the enterprise.An enterprise WAN is designed to provide Internet connectivity for the enterprise, while an enterprise extranet is designed to provide remote access to the enterprise network for teleworkers.

14 Top of FormWhat are two important guidelines when using packet sniffers to determine traffic flow patterns? (Choose two.)

Capture only traffic from a single application at a time.

Perform the capture on several different network segments.

Create a baseline capture during a low or non-utilization period.

Relocate highly active servers before attempting the capture.

Page 5: Ccna 3 Discovery 4.0 Chapter 1

Capture traffic during peak utilization times.

15 Top of FormA remote user needs to access a networking device on the internal network of the company. The transactions between the remote user and the device must be secure. Which protocol enables this to happen securely?

HTTP

SSH

Telnet

FTP

16 Top of FormA business consultant must use Internet websites to research a report on the e-business strategies of several firms and then electronically deliver the report to a group of clients in cities throughout the world. Which two teleworker tools can the consultant use to accomplish this project? (Choose two.)

VoIP

VPN

Page 6: Ccna 3 Discovery 4.0 Chapter 1

HTTP

Telnet

email

17 Top of FormHow does a VPN work to support remote user productivity?

It uses SSL to encrypt remote user logins to the corporate intranet.

It uses secure Telnet for remote user connections to internal network devices.

It creates a virtual circuit that allows real-time communications between any two Internet endpoints.

It uses encapsulation to create a secure tunnel for transmission of data across non-secure networks.

18 Top of FormWhy is TCP the preferred Layer 4 protocol for transmitting data files?

TCP is more reliable than UDP because it requires lost packets to be retransmitted.

TCP requires less processing by the source and destination hosts than UDP.

UDP introduces delays that degrade the quality of the data applications.

TCP ensures fast delivery because it does not require sequencing or acknowledgements.

19 Top of FormWhat type of traffic flow is always considered to be external?

file sharing traffic

system updates

company e-mail

Internet bound traffic

transaction processing

20 Top of FormWhat are two benefits of controlling the flow of traffic in an enterprise network? (Choose two.)

Page 7: Ccna 3 Discovery 4.0 Chapter 1

security

smaller failure domains

more reliable transaction processing

bandwidth optimization

local control of network services

21 Top of FormWhat is the main purpose of the Access Layer in a hierarchically designed network?

performs routing and packet manipulation

supplies redundancy and failover protection

provides a high-speed, low-latency backbone

serves as a network connection point for end-user devices

22 Top of FormWhich three items can be discovered by using a packet sniffer application? (Choose three.)

network transmission speed

source IP address

Ethernet frame type

duplex operational status

near-end crosstalk (NEXT) level

TCP sequence number

23 Top of FormWhat are two benefits to an employee of teleworking? (Choose two.)

reduced commuting costs

reduced network complexity

reduced need for support staff

reduced need for expensive business attire

Page 8: Ccna 3 Discovery 4.0 Chapter 1

reduced security risks to the network infrastructure

24 Top of FormWhich protocol and process could be implemented on a network to ensure that a telecommuter can attend a training presentation via the use of VoIP and still experience uninterrupted data streams and quality conversations?

TCP and QoS

UDP and QoS

TCP and queuing

UDP and VPN

TCP and VPNPosted by Rhanol   at 9:17 PM 0 comments 

Wednesday, March 25, 2009

SEM2 CHAP1 100%

1What feature enables network devices to be scalable?a fixed number of interfacesease of repair***modularity***low maintenance requirementslow cost

2The IT manager of a medium-sized business wishes to house the company-owned web servers in a facility that offers round-the-clock controlled access, redundant power, and high-bandwidth Internet access. Which ISP service will fulfill this need?web hostingplanning and provisioningapplication hosting

Page 9: Ccna 3 Discovery 4.0 Chapter 1

***equipment collocation***Tier 1 ISP services

3Which network utility helps determine the location of network problems and identifies routers that packets travel across?pingipconfig***tracert***netstatnslookup

4What are three main types of high-bandwidth connection options used by medium- to large-sized businesses? (Choose three.)DSLcable modemEthernet***metro Ethernet******T1******T3***

5When does a host device issue an ICMP echo request?***to initiate a ping to determine if a destination address is reachable***to respond to a DNS name queryto broadcast its identity to its locally connected neighborsto request the MAC address of a destination IP address

6What is the purpose of an RFC?to provide the connection point for multiple ISPs to the Internet***to document the development and approval of an Internet standard**to indicate a contract that a customer signs when purchasing co-location servicesto document agreements between an ISP and the customer

7What units are used to measure Internet bandwidth?***bits per second***

Page 10: Ccna 3 Discovery 4.0 Chapter 1

bytes per secondhertzmegabytes per secondpackets per second

8

Refer to the exhibit. A host is having problems maintaining a connection to a server at 192.168.100.2. Which statement best describes the output of the ping command?The server is shut down.The server has no route back to the host.Two routers along the path are not responding to pings.***Some packets made it to the destination.***Ping services are not supported on the destination.

9What three support service teams are commonly found within an ISP? (Choose three.)***help desk***computer supportapplication readiness***network operations center******planning and provisioning***implementation and documentation

10Which network support services team is responsible for testing a new customer connection and for monitoring the ongoing operation of the link?customer servicehelp desk***network operations***on-site installation

11Which two things can be determined by using the ping command? (Choose two.)the number of routers between the source and destination devicethe IP address of the router nearest the destination device***the average time it takes a packet to reach the destination and for the response to return to the source***

Page 11: Ccna 3 Discovery 4.0 Chapter 1

***whether or not the destination device is reachable through the network***the average time it takes each router in the path between source and destination to respond

12What is the maximum T1 transmission speed?56 kbps128 kbps***1.544 Mbps***2.4 Mbps

13What interconnects the Internet backbone?MDFs***IXPs***POPssatellite dishes

14

Refer to the exhibit. Host A cannot connect to the web server at 192.168.100.2. Based on the output of the tracert command, which device is most likely causing the problem?Router ARouter BRouter CRouter DRouter E***Router F***

15Which statement describes a function of a Tier 1 ISP?***peers with other similarly sized ISPs to form the global Internet backbone***uses the services of Tier 3 ISPs to connect to the global Internet backbonepays Tier 2 ISPs for transit services to connect across continentslimits the offered services to small geographic areas

16What was the original purpose of the Internet?

Page 12: Ccna 3 Discovery 4.0 Chapter 1

voice communicationmarketing***research***commerce

17Which ISP network support systems team will typically contact the customer once a new circuit is ready and guide the customer in setting up passwords and other account information?***help desk***customer servicenetwork operations centeron-site installation teamplanning and provisioning

18At which point do individuals and small businesses connect directly to the ISP network to obtain Internet access?***at a POP***at an IXPat a Metro Ethernet linkon the ISP extranet

19Which network support services team identifies whether the client site has existing network hardware and circuits installed?customer servicehelp desknetwork operations***planning and provisioning***Posted by Rhanol   at 10:41 AM 0 comments 

Wednesday, February 25, 2009

SEM4 CHAP1

1 Top of FormWhat is true about implementing a centralized server farm topology?

Page 13: Ccna 3 Discovery 4.0 Chapter 1

requires direct cabling from the MPOE to enhance the performance of servers

requires the addition of high-capacity switches to each workgroup

**provides defined entry and exit points so that filtering and securing traffic is easier

allows for placement of workgroup servers at the access layer

2 Top of FormWhat are three ways to ensure that an unwanted user does not connect to a wireless network and view the data? (Choose three.)

**Disable SSID broadcasting.

Configure filters to restrict IP addresses.

**Use authentication between clients and the wireless device.

Use NetBIOS name filtering between clients and the wireless device.

**Configure strong encryption such as WPA.

Use a WEP compression method.

3 Top of FormCentralizing servers in a data center server farm can provide which benefit over a distributed server environment?

It keeps client-to-server traffic local to a single subnet.

Servers located in a data center require less bandwidth.

**It is easier to filter and prioritize traffic to and from the data center.

Server farms are not subject to denial of service attacks.

4 Top of FormWhich two statements are true regarding network convergence? (Choose two.)

**In a large network, using the EIGRP or OSPF routing protocols rather than RIPv2 may improve convergence time.Using STP at the core layer improves convergence time by allowing the use of redundant links between

Page 14: Ccna 3 Discovery 4.0 Chapter 1

devices.**Route summarization improves convergence time by minimizing the size of the routing table.

A full mesh topology improves convergence time by allowing load balancing.

ACLs can be configured to improve convergence time.

5 Top of FormThe network administrator is designing network connectivity for a home teleworker. The teleworker needs secure access to download and upload documents on the network file server. What network connection would be most cost efficient while still meeting the security and connectivity needs of this teleworker?

dedicated leased line connection with a dialup backup link

**Frame Relay connection with a DSL backup link

DSL VPN connection with a dialup backup link

ATM connection with a DSL VPN backup link

DSL connection with no backup link

6 Top of FormIn a well-designed, high-availability network, which device significantly affects the most users if a failure occurs?

desktop PC of the user

large switch in the network core layer

large switch in the network distribution layer

**small workgroup switch in the network access layer

7 Top of Form

Page 15: Ccna 3 Discovery 4.0 Chapter 1

Refer to the exhibit. If the firewall module has been correctly configured using best practices for network security, which statement is true about the security design for the network?

Servers in the network are not protected from internal attacks.

**Servers in the DMZ are protected from internal and external attacks.

Servers in the server farm are protected from internal and external attacks.

Traffic from the external networks is not able to access the servers in the DMZ.

8 Top of FormWhich three statements describe the functions of the Cisco hierarchical network design model? (Choose three.)

Route summarization is not necessary at the core and distribution layers.

**The distribution layer is responsible for traffic filtering and isolating failures from the core.

**Two goals of the core layer are 100 percent uptime and maximizing throughput.

**The access layer provides a means of connecting end devices to the network.

The distribution layer distributes network traffic directly to end users.

Page 16: Ccna 3 Discovery 4.0 Chapter 1

The core layer usually employs a star topology.

9 Top of FormWhich three functions are performed at the distribution layer of the hierarchical network model? (Choose three.)

**summarizing routes from the access layer

allowing end users to access the local network

providing the gateway of last resort for core layer devices

preserving bandwidth at the access layer by filtering network functions

**isolating network problems to prevent them from affecting the core layer

**utilizing redundant links for load balancing to increase available bandwidth

10 Top of FormA network designer is creating a new network. The design must offer enough redundancy to provide protection against a single link or device failure, yet must not be too complex or expensive to implement. What topology would fill these needs?

star

full mesh

**partial mesh

extended star

hub and spoke

11 Top of Form

Page 17: Ccna 3 Discovery 4.0 Chapter 1

Refer to the exhibit. Which two statements correctly describe the benefits of the network access layer design that is shown? (Choose two.)

**If host A sends a broadcast message, only hosts in VLAN10 receive the broadcast frame.

If host A attempts to transmit data at the same time as another host, only hosts in VLAN10 are affected by the collision.**Segmenting all voice traffic on a separate VLAN facilitates the implementation of QoS.

VLANs improve network performance by facilitating the use of route summarization.

VLANs at the access layer help guarantee network availability by facilitating load balancing.

12 Top of Form

Refer to the exhibit. What effect does the ACL shown have on network traffic, assuming that it is correctly

Page 18: Ccna 3 Discovery 4.0 Chapter 1

applied to the interface?All traffic to network 172.16.0.0 is denied.

All TCP traffic is denied to and from network 172.16.0.0.

**All Telnet traffic from the 172.16.0.0 network to any destination is denied.

All port 23 traffic to the 172.16.0.0 network is denied.

All traffic from the 172.16.0.0 network is denied to any other network.

13 Top of FormWhich Cisco IOS function can be configured at the distribution layer to filter unwanted traffic and provide traffic management?

virus protection

spyware protection

VPNs

**access control lists

14 Top of Form

Page 19: Ccna 3 Discovery 4.0 Chapter 1

Refer to the exhibit. What happens when Host 1 attempts to send data?Frames from Host 1 are dropped, but no other action is taken.

**Frames from Host 1 cause the interface to shut down, and a log message is sent.

Frames from Host 1 are forwarded, but a log message is sent.

Frames from Host 1 are forwarded, and the mac-address table is updated.

15What are two mechanisms that provide redundancy for server farm implementations? (Choose two.)host intrusion prevention systems

virtual private networks

network intrusion prevention systems

**Rapid Spanning Tree Protocol**Hot Standby Routing Protocol

16 What kind of ACL inspects outbound UDP, TCP, and ICMP traffic and allows inbound access only to traffic that belongs to these established sessions?

Page 20: Ccna 3 Discovery 4.0 Chapter 1

dynamic ACL

time-based ACL

**reflexive ACL

lock and key ACL

17

Refer to the exhibit. The server broadcasts an ARP request for the MAC address of its default gateway. If STP is not enabled, what is the result of this ARP request?

Router_1 contains the broadcast and replies with the MAC address of the next-hop router.

Switch_A replies with the MAC address of the Router_1 E0 interface.

**Switch_A and Switch_B continuously flood the message onto the network.

Switch_B forwards the broadcast request and replies with the Router_1 address.

18 Top of Form

Page 21: Ccna 3 Discovery 4.0 Chapter 1

Refer to the exhibit. Which two devices are part of the access design layer? (Choose two.)Edge2

ISP4

BR4

**FC-AP

FC-CPE-1

Page 22: Ccna 3 Discovery 4.0 Chapter 1

**FC-ASW-2

19 Top of FormWhat address can be used to summarize only networks 172.16.0.0/24, 172.16.1.0/24, 172.16.2.0/24, and 172.16.3.0/24?

172.16.0.0/21

**172.16.0.0/22

172.16.0.0 255.255.255.248

172.16.0.0 255.255.254.0

20 Top of FormWhich statement is true about a DMZ in a traditional network firewall design?

A DMZ is designed to provide service for external access but not for internal access.

**Servers in the DMZ provide limited information that can be accessed from external networks.

User access to the DMZ from the Internet and the internal network usually is treated the same way.

All servers in the enterprise network should be located in a DMZ because of enhanced security measures.

21 Top of FormThe ability to connect securely to a private network over a public network is provided by which WAN technology?

DSL

Frame Relay

ISDN

PSTN

**VPN

22 Top of FormWhich two considerations are valid when designing access layer security? (Choose two.)

In a large wireless network, the most efficient method to secure the WLAN is MAC address filtering.

Page 23: Ccna 3 Discovery 4.0 Chapter 1

DoS attacks are normally launched against end-user PCs and can be mitigated by installing personal firewalls on all company PCs.**SSH is more secure than Telnet to administer network devices.

**Disabling unused ports on the switches helps prevent unauthorized access to the network.

All Telnet passwords are at least 6 characters long.

23 Top of FormWhich two items in a physical WLAN design can be identified through a site survey? (Choose two.)

**the types of antennas that are required

the encryption techniques that are required

**the access point hardware that is required

the different levels of access that are required

the connection reliability that is required

24 Top of Form

Page 24: Ccna 3 Discovery 4.0 Chapter 1

Refer to the exhibit. The network administrator creates a standard access control list to prohibit traffic from the192.168.1.0/24 network from reaching the 192.168.2.0/24 network while still permitting Internet access for all networks. On which router interface and in which direction should it be applied?

interface fa0/0, inbound

interface fa0/0, outbound

interface fa0/1, inbound

**interface fa0/1, outbound

25 Top of FormWhat are two best practices in wireless LAN design to ensure secure wireless access to the corporate network? (Choose two.)

Configure APs for broadcast SSID.

Place APs as far apart as possible.

***Use a separate WLAN for employees.

**Configure WPA.

Use wireless routers in all IDFs.