networking mod 11-13 University Quiz

1.

MULTIPLE SELECT QUESTION

45 sec • 1 pt

hich three Cisco products focus on endpoint security solutions? (Choose three.)

NAC Appliance

Web Security Appliance

Email Security Appliance

SSL/IPsec VPN Appliance

Adaptive Security Appliance

2.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What mitigation plan is best for thwarting a DoS attack that is creating a MAC address table overflow?

Enable port security.

Place unused ports in an unused VLAN.

Disable DTP.

Disable STP

3.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

True or False?
In the 802.1X standard, the client attempting to access the network is referred to as the supplicant.

true

false

4.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which authentication method stores usernames and passwords in the router and is ideal for small networks?

server-based AAA over RADIUS

local AAA

local AAA over TACACS+

server-based AAA

local AAA over RADIUS

5.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What represents a best practice concerning discovery protocols such as CDP and LLDP on network devices?

Disable both protocols on all interfaces where they are not required.

Use the default router settings for CDP and LLDP.

Use the open standard LLDP rather than CDP.

Enable CDP on edge devices, and enable LLDP on interior devices.

6.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which protocol should be used to mitigate the vulnerability of using Telnet to remotely manage network devices?

SCP

SSH

TFTP

SNMP

7.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which statement describes the behavior of a switch when the MAC address table is full?

It treats frames as unknown unicast and floods all incoming frames to all ports within the collision domain.

It treats frames as unknown unicast and floods all incoming frames to all ports within the local VLAN.

It treats frames as unknown unicast and floods all incoming frames to all ports across multiple switches.

It treats frames as unknown unicast and floods all incoming frames to all ports on the switch.

8.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What device is considered a supplicant during the 802.1X authentication process?

the switch that is controlling network access

the client that is requesting authentication

the authentication server that is performing client authentication

the router that is serving as the default gateway

9.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Refer to the exhibit. Port Fa0/2 has already been configured appropriately. The IP phone and PC work properly. Which switch configuration would be most appropriate for port Fa0/2 if the network administrator has the following goals?

No one is allowed to disconnect the IP phone or the PC and connect some other wired device.
If a different device is connected, port Fa0/2 is shut down.
The switch should automatically detect the MAC address of the IP phone and the PC and add those addresses to the running configuration.

SWA(config-if)# switchport port-security
SWA(config-if)# switchport port-security maximum 2
SWA(config-if)# switchport port-security mac-address sticky

SWA(config-if)# switchport port-security violation restrict
SWA(config-if)# switchport port-security mac-address sticky
SWA(config-if)# switchport port-security maximum 2

SWA(config-if)# switchport port-security
SWA(config-if)# switchport port-security maximum 2
SWA(config-if)# switchport port-security mac-address sticky

SWA(config-if)# switchport port-security
SWA(config-if)# switchport port-security mac-address sticky

10.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

. Which type of VLAN-hopping attack may be prevented by designating an unused VLAN as the native VLAN?

DTP spoofing

VLAN double-tagging

DHCP starvation

DHCP spoofing

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground