Get Full Version of the Exam
Several new switches have been added to the existing network as VTP clients. All of the new switches have been configured with the same VTP domain, password, and version. However, VLANs are not passing from the VTP server (existing network) to the VTP clients. What must be done to fix this?
Remove the VTP domain name from all switches with quot;nullquot; and then replace it with the new domain name.
Configure a different native VLAN on all new switches that are configured as VTP clients.
Provision one of the new switches to be the VTP server and duplicate information from the existing network.
Ensure that all switch interconnects are configured as trunks to allow VTP information to be transferred.
Correct Answer: D
VTP allows switches to advertise VLAN information between other members of the same VTP domain. VTP allows a consistent view of the switched network across all switches. There are several reasons why the VLAN information can fail to be exchanged. Verify these items if switches that run VTP fail to exchange VLAN information:
VTP information only passes through a trunk port. Make sure that all ports that interconnect switches are configured as trunks and are actually trunking. Make sure that if EtherChannels are created between two switches, only Layer 2 EtherChannels propagate VLAN information.
Make sure that the VLANs are active in all the devices.
One of the switches must be the VTP server in a VTP domain. All VLAN changes must be done on this switch in order to have them propagated to the VTP clients.
The VTP domain name must match and it is case sensitive. CISCO and cisco are two different domain names.
Make sure that no password is set between the server and client. If any password is set, make sure that the password is the same on both sides.
Reference: http://www.cisco.com/en/US/tech/tk389/tk689/technologies_tech_note09186a0080890613. shtml
Which command does a network engineer use to verify the spanning-tree status for VLAN 10?
switch# show spanning-tree vlan 10
switch# show spanning-tree bridge
switch# show spanning-tree brief
switch# show spanning-tree summary
switch# show spanning-tree vlan 10 brief
Correct Answer: A Explanation: Command Description
Displays information about the spanning-tree state.
SW2#show spanning-tree vlan 10
Spanning tree enabled protocol rstp Root ID Priority 24586
Address 0014.f2d2.4180 Cost 9
Port 216 (Port-channel21)
Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec
Bridge ID Priority 32778 (priority 32768 sys-id-ext 10) Address 001c.57d8.9000 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Aging Time 300 sec
Interface Role Sts Cost Prio.Nbr Type
– – – Po21 Root FWD 9 128.216 P2p
Po23 Altn BLK 9 128.232 P2p
A network engineer is trying to deploy a PC on a network. The engineer observes that when the PC is connected to the network, it takes 30 to 60 seconds for the PC to see any activity on the network interface card. Which Layer 2 enhancement can be used to eliminate this delay?
Configure port duplex and speed to auto negotiation.
Configure port to duplex full and speed 1000.
Configure spanning-tree portfast.
Configure no switchport.
Correct Answer: C
When first powered on, each port goes through 4 states to ensure that there are no physical loops in the layer 2 broadcast domain. These steps are outlined as follows. With the initial version of spanning tree, this process could take from 30-60 seconds.
Blocking – A port that would cause a switching loop, no user data is sent or received but it may go into forwarding mode if the other links in use were to fail and the spanning tree algorithm determines the port may transition to the forwarding state. BPDU data is still received in blocking state.
Listening – The switch processes BPDUs and awaits possible new information that would cause it to return to the blocking state.
Learning – While the port does not yet forward frames (packets) it does learn source addresses from frames received and adds them to the filtering database (switching database)
Forwarding – A port receiving and sending data, normal operation. STP still monitors incoming BPDUs that would indicate it should return to the blocking state to prevent a loop. STP PortFast causes a Layer 2 LAN interface configured as an access port to enter the forwarding state immediately, bypassing the listening and learning states. Reference:http://net.cmed.us/Home/ethernet-and-ip/spanning-tree-protocol
Refer to the exhibit. The network switches for two companies have been connected and manually configured for the required VLANs, but users in company A are not able to access network resources in company B when DTP is enabled. Which action resolves this problem?
Delete vlan.dat and ensure that the switch with lowest MAC address is the VTP server.
Disable DTP and document the VTP domain mismatch.
Manually force trunking with switchport mode trunk on both switches.
Enable the company B switch with the vtp mode server command.
Correct Answer: C
Since the number of existing VLANs differ on the switches (9 on A and 42 on B) we know that there is a problem with VTP or the trunking interfaces. The VTP domain names do match and they are both VTP servers so there are no issues there. The only viable solution is that there is a DTP issues and so you must instead manually configure the trunk ports between these two switches so that the VLAN information can be sent to each switch.
You have been tasked with configuring multilayer SwitchC, which has a partial configuration and has been attached to RouterC as shown in the topology diagram.
You need to configure SwitchC so that Hosts H1 and H2 can successfully ping the server S1.
Also SwitchC needs to be able to ping server S1.
Due to administrative restrictions and requirements you should not add/delete vlans or create trunk links. Company policies forbid the use of static or default routing. All routes must be learned via EIGRP 65010 routing protocol.
You do not have access to RouteC. RouterC is correctly configured. No trunking has been configured on RouterC.
Routed interfaces should use the lowest host on a subnet when possible. The following subnets are available to implement this solution:
Hosts H1 and H2 are configured with the correct IP address and default gateway. SwitchC uses Cisco as the enable password.
Routing must only be enabled for the specific subnets shown in the diagram.
Note: Due to administrative restrictions and requirements you should not add or delete VLANs, changes VLAN port assignments or create trunks. Company policies forbid the use of static or default routing. All routes must be learned via the EIGRP routing protocol.
There are two ways to configure interVLAN routing in this case:
Use RouterC as a quot;router on a stickquot; and SwitchC as a pure Layer2 switch. Trunking must be established between RouterC and SwitchC.
Only use SwitchC for interVLAN routing without using RouterC, SwitchC should be configured as a Layer 3 switch (which supports ip routing function as a router). No trunking requires.
The question clearly states quot;No trunking has been configured on RouterCquot; so RouterC does not contribute to interVLAN routing of hosts H1 amp; H2 -gt; SwitchC must be configured as a Layer 3 switch with SVIs for interVLAN routing. We should check the default gateways on H1 amp; H2. Click on H1 and H2 and type the quot;ipconfigquot; command to get their default gateways.
We will get the default gateways as follows: Host1:
Default gateway: 126.96.36.199 Host2:
Default gateway: 188.8.131.52
Now we have enough information to configure SwitchC (notice the EIGRP AS in this case is 650) Note: VLAN2 and VLAN3 were created and gi0/10, gi0/11 interfaces were configured as access ports so we don#39;t need to configure them in this sim.
SwitchC# configure terminal SwitchC(config)# int gi0/1
SwitchC(config-if)#no switchport -gt; without using this command, the simulator does not let you assign IP address on Gi0/1 interface.
SwitchC(config-if)# ip address 10.10.10.2 255.255.255.0 -gt;RouterC has used IP 10.10.10.1 so this is the lowest usable IP address.
SwitchC(config-if)# no shutdown SwitchC(config-if)# exit SwitchC(config)# int vlan 2
SwitchC(config-if)# ip address 184.108.40.206 255.255.255.224
SwitchC(config-if)# no shutdown SwitchC(config-if)# int vlan 3
SwitchC(config-if)# ip address 220.127.116.11 255.255.255.224 SwitchC(config-if)# no shutdown
SwitchC(config)# ip routing (Notice: MLS will not work without this command) SwitchC(config)# router eigrp 65010
SwitchC(config-router)# network 10.10.10.0 0.0.0.255
SwitchC(config-router)# network 18.104.22.168 0.0.0.31
SwitchC(config-router)# network 22.214.171.124 0.0.0.31
NOTE: THE ROUTER IS CORRECTLY CONFIGURED, so you willnot miss within it in the exam, also don#39;t modify/delete any port just do the above configuration. Also some reports said the quot;no auto-summaryquot; command can#39;t be used in the simulator, in fact it is not necessary because the network 126.96.36.199/16 is not used anywhere else in this topology. In order to complete the lab, you should expect the ping toSERVER to succeed from the MLS, and from the PCs as well.
Also make sure you use the correct EIGRP AS number (in the configuration above it is 650 but it will change when you take the exam) but we are not allowed to access RouterC so the only way to find out the EIGRP AS is to look at the exhibit above. If you use wrong AS number, no neighbor relationship is formed between RouterC and SwitchC. In fact, we are pretty sure instead of using two commands quot;network 188.8.131.52 0.0.0.31 and 鈥渘etwork 184.108.40.206 0.0.0.31 we can use one simple command 鈥渘etwork 220.127.116.11 because it is the nature of distance vector routing protocol like EIGRP: only major networks need to be advertised; even without 鈥渘o auto-summary鈥?command the network still works correctly. But in the exam the sim is just a flash based simulator so we should use two above commands, just for sure. But after finishing the configuration, we can use 鈥渟how run鈥?command to verify, only the summarized network 18.104.22.168 is shown.
A network engineer deployed a switch that operates the LAN base feature set and decides to use the SDM VLAN template. The SDM template is causing the CPU of the switch to spike during peak working hours. What is the root cause of this issue?
The VLAN receives additional frames from neighboring switches.
The SDM VLAN template causes the MAC address-table to overflow.
The VLAN template disables routing in hardware.
The switch needs to be rebooted before the SDM template takes effect.
Correct Answer: C
SDM Template Notes:
All templates are predefined. There is no way to edit template category individual values. The switch reload is required to use a new SDM template.
The ACL merge algorithm, as opposed to the original access control entries (ACEs) configured by the user, generate the number of TCAM entries listed for security and QoS ACEs.
The first eight lines (up to Security ACEs) represent approximate hardware boundaries set when a template is used. If the boundary is exceeded, all processing overflow is sent to the CPU which can have a major impact on the performance of the switch.
Choosing the VLAN template will actually disable routing (number of entry for unicast or multicast route is zero) in hardware.
Refer to the exhibit. Users of PC-1 experience slow connection when a webpage is requested from the server. To increase bandwidth, the network engineer configured an EtherChannel on interfaces Fa1/0 and Fa0/1 of the server farm switch, as shown here:
Server_Switch#sh etherchannel load-balance EtherChannel Load-Balancing Operational State (src-mac): Non-IP: Source MAC address
IPv4: Source MAC address IPv6: Source IP address Server_Switch#
However, traffic is still slow. Which action can the engineer take to resolve this issue?
Disable EtherChannel load balancing.
Upgrade the switch IOS to IP services image.
Change the load-balance method to dst-mac.
Contact Cisco TAC to report a bug on the switch.
Correct Answer: C
Since this traffic is coming from PC-1, the source MAC address will always be that of PC-1, and since the load balancing method is source MAC, traffic will only be using one of the port channel links. The load balancing method should be changed to destination MAC, since the web server has two NICs traffic will be load balanced across both MAC addresses.
Which statement about the UDLD protocol is true?
UDLD is a Cisco-proprietary Layer 2 protocol that enables devices to monitor the physical status of links and detect unidirectional failures.
UDLD is a Cisco-proprietary Layer 2 protocol that enables devices to advertise their identity, capabilities, and neighbors on a local area network.
UDLD is a standardized Layer 2 protocol that enables devices to monitor the physical status of links and detect unidirectional failures.
UDLD is a standardized Layer 2 protocol that enables devices to advertise their identity, capabilities, and neighbors on a local area network.
Correct Answer: A
The Cisco-proprietary UDLD protocol monitors the physical configuration of the links between
devices and ports that support UDLD. UDLD detects the existence of unidirectional links. When a unidirectional link is detected, UDLD puts the affected port into the errdisabled state and alerts the user.
When you design a switched network using VTPv2, how many VLANs can be used to carry user traffic?
Correct Answer: B
VTP versions 1 and 2 Supports normal VLAN numbers (1-1001). Only VTP version 3 supports extended VLANs (1-4095).
After UDLD is implemented, a Network Administrator noticed that one port stops receiving UDLD packets. This port continues to reestablish until after eight failed retries. The port then transitions into the errdisable state. Which option describes what causes the port to go into the errdisable state?
Normal UDLD operations that prevent traffic loops.
UDLD port is configured in aggressive mode.
UDLD is enabled globally.
UDLD timers are inconsistent.
Correct Answer: B
With UDLD aggressive mode enabled, when a port on a bidirectional link that has a UDLD neighbor relationship established stops receiving UDLD packets, UDLD tries to reestablish the connection with the neighbor. After eight failed retries, the port is disabled.