CCNA 2 R&S Essentials Chapter 3 QUIZ

1 Which two statements describe the benefits of VLANs? (Choose two.)

VLANs improve network performance by regulating flow control and window size.
VLANs enable switches to route packets to remote networks via VLAN ID filtering.
VLANs reduce network cost by reducing the number of physical ports required on switches.
VLANs improve network security by isolating users that have access to sensitive data and applications.*
VLANs divide a network into smaller logical networks, resulting in lower susceptibility to broadcast storms.*

2

Refer to the exhibit. All workstations are configured correctly in VLAN 20. Workstations that are connected to switch SW1 are not able to send traffic to workstations on SW2. What could be done to remedy the problem?

Allow VLAN 20 on the trunk link.*
Enable DTP on both ends of the trunk.
Configure all workstations on SW1 to be part of the default VLAN.
Configure all workstations on SW2 to be part of the native VLAN.

3 Open the PT Activity. Perform the tasks in the activity instructions and then answer the question or complete the task.

What security issue is of concern regarding the VLAN configuration of the switches?

All interfaces are in the same user VLAN.
The management VLAN is using the same VLAN ID as a user VLAN is using.
The “black hole” VLAN is not configured.
The native VLAN has not been changed from the default setting.*

4 Which distinct type of VLAN is used by an administrator to access and configure a switch?

default VLAN
native VLAN
data VLAN
management VLAN*

5 Match the action to the corresponding command. 

assigns VLAN 10 for untagged traffic -> Switch(config-if)# switchport trunk native vlan 10

activates the current interface as trunk -> Switch(config-if)# switchport mode trunk

prohibits VLAN 10 on the trunk interface -> Switch(config-if)# switchport trunk allowed vlan remove 10

6 Which step should be performed first when deleting a VLAN that has member switch ports?

Reload the switch.
Implement the command delete vlan.dat.
Reassign all VLAN member ports to a different VLAN.*
Backup the running-config.

7 All access ports on a switch are configured with the administrative mode of dynamic auto. An attacker, connected to one of the ports, sends a malicious DTP frame. What is the intent of the attacker?

VLAN hopping attack*
DHCP spoofing attack
MAC flooding attack
ARP poisoning attack

8 For what reason would a network administrator use the show interfaces trunk command on a switch?

to view the native VLAN*
to examine DTP negotiation as it occurs
to verify port association with a particular VLAN
to display an IP address for any existing VLAN

9 What is the purpose of the switch command switchport access vlan 99?

to enable port security
to make the port operational
to assign the port to a particular VLAN*
to designate the VLAN that does not get tagged
to assign the port to the default native VLAN (VLAN 99)

10 An administrator is investigating a failure on a trunk link between a Cisco switch and a switch from another vendor. After a few show commands, the administrator notices that the the switches are not negotiating a trunk. What is a probable cause for this issue?

Both switches are in trunk mode.
Both switches are in nonegotiate mode.
Switches from other vendors do not support DTP.*
DTP frames are flooding the entire network.

11 Which two statements accurately describe DTP? (Choose two.)

DTP is a Cisco proprietary protocol.*
DTP supports IEEE 802.1Q.*
Cisco switches require DTP to establish trunks.
DTP must be enabled on only one side of the trunk link.
Trunk ports that are configured for dynamic auto will request to enter the trunking state.

12 What is one way to prevent the VLAN hopping attack?

Disable DTP negotiation on all ports.*
Change the native VLAN to an unused VLAN.
Designate a different default VLAN.
Remove all user VLANs from the trunk.

13 In which location are the normal range VLANs stored on a Cisco switch by default?

flash memory*
startup-config
running-config
RAM