Which statement describes the behavior of a switch when the MAC address table is full?

It treats frames as unknown unicast and floods all incoming frames to all ports within the local VLAN.

It treats frames as unknown unicast and floods all incoming frames to all ports on the switch.

It treats frames as unknown unicast and floods all incoming frames to all ports across multiple switches.

It treats frames as unknown unicast and floods all incoming frames to all ports within the collision domain.

What device is considered a supplicant during the 802.1X authentication process?

the client that is requesting authentication

the router that is serving as the default gateway

the authentication server that is performing client authentication

the switch that is controlling network access

Refer to the exhibit. Port security has been configured on the Fa 0/12 interface of switch S1. What action will occur when PC1 is attached to switch S1 with the applied configuration?

Frames from PC1 will cause the interface to shut down immediately, and a log entry will be made.

Frames from PC1 will be forwarded since the switchport port-security violation command is missing.

Frames from PC1 will be forwarded to its destination, and a log entry will be created.

Frames from PC1 will be forwarded to its destination, but a log entry will not be created.

Frames from PC1 will be dropped, and there will be no log of the violation.

A network administrator is configuring DAI on a switch with the command ip arp inspection validate src-mac. What is the purpose of this configuration command?

It checks the source MAC address in the Ethernet header against the sender MAC address in the ARP body.

It checks the source MAC address in the Ethernet header against the user-configured ARP ACLs.

It checks the source MAC address in the Ethernet header against the MAC address table.

It checks the source MAC address in the Ethernet header against the target MAC address in the ARP body.

Which two commands can be used to enable BPDU guard on a switch? (Choose two.)

S1(config)# spanning-tree portfast bpduguard default

S1(config-if)# spanning-tree bpduguard enable

S1(config)# spanning-tree bpduguard default

S1(config-if)# spanning-tree portfast bpduguard

S1(config-if)# enable spanning-tree bpduguard

What are the two methods that are used by a wireless NIC to discover an AP? (Choose two.)

receiving a broadcast beacon frame

initiating a three-way handshake

A technician is configuring the channel on a wireless router to either 1, 6, or 11. What is the purpose of adjusting the channel?

to avoid interference from nearby wireless devices

to enable different 802.11 standards

to disable broadcasting of the SSID

to provide stronger security modes

A technician is about to install and configure a wireless network at a small branch office. What is the first security measure the technician should apply immediately upon powering up the wireless router?

Change the default user-name and password of the wireless router.

Enable MAC address filtering on the wireless router.

Configure encryption on the wireless router and the connected wireless devices.

Disable the wireless network SSID broadcast.

Which step is required before creating a new WLAN on a Cisco 3500 series WLC?

Build or have an SNMP server available.

Build or have a RADIUS server available.

A network engineer is troubleshooting a newly deployed wireless network that is using the latest 802.11 standards. When users access high bandwidth services such as streaming video, the wireless network performance is poor. To improve performance the network engineer decides to configure a 5 Ghz frequency band SSID and train users to use that SSID for streaming media services. Why might this solution improve the wireless network performance for that type of service?

The 5 GHz band has more channels and is less crowded than the 2.4 GHz band, which makes it more suited to streaming multimedia.

Requiring the users to switch to the 5 GHz band for streaming media is inconvenient and will result in fewer users accessing these services.

The 5 GHz band has a greater range and is therefore likely to be interference-free.

The only users that can switch to the 5 GHz band will be those with the latest wireless NICs, which will reduce usage.

A network administrator is configuring a RADIUS server connection on a Cisco 3500 series WLC. The configuration requires a shared secret password. What is the purpose for the shared secret password?

It is used to encrypt the messages between the WLC and the RADIUS server.

It is used by the RADIUS server to authenticate WLAN users.

It is used to authenticate and encrypt user data on the WLAN.

It allows users to authenticate and access the WLAN.

Which three parameters would need to be changed if best practices are being implemented for a home wireless AP? (Choose three.)

wireless client operating system password

Which type of wireless network is based on the 802.11 standard and a 2.4-GHz or 5-GHz radio frequency?

wireless metropolitan-area network

What are three techniques for mitigating VLAN attacks? (Choose three.)

Set the native VLAN to an unused VLAN.

Refer to the exhibit. What can be determined about port security from the information that is shown?

The port violation mode is the default for any port that has port security enabled.

The port has the maximum number of MAC addresses that is supported by a Layer 2 switch port which is configured for port security.

The port has two attached devices.

A technician is troubleshooting a slow WLAN that consists of 802.11b and 802.11g devices . A new 802.11n/ac dual-band router has been deployed on the network to replace the old 802.11g router. What can the technician do to address the slow wireless speed?

Split the wireless traffic between the 802.11n 2.4 GHz band and the 5 GHz band.

Update the firmware on the new router.

Configure devices to use a different channel.

What is the function provided by CAPWAP protocol in a corporate wireless network?

CAPWAP provides the encapsulation and forwarding of wireless user traffic between an access point and a wireless LAN controller.

CAPWAP creates a tunnel on Transmission Control Protocol (TCP) ports in order to allow a WLC to configure an autonomous access point.

CAPWAP provides connectivity between an access point using IPv6 addressing and a wireless client using IPv4 addressing.

CAPWAP provides the encryption of wireless user traffic between an access point and a wireless client.

What is the result of a DHCP starvation attack?

Legitimate clients are unable to lease IP addresses.

The attacker provides incorrect DNS and default gateway information to clients.

The IP addresses assigned to legitimate clients are hijacked.

Clients receive IP address assignments from a rogue DHCP server.

Which feature or configuration on a switch makes it vulnerable to VLAN double-tagging attacks?

the native VLAN of the trunking port being the same as a user VLAN

the limited size of content-addressable memory space

the automatic trunking port feature enabled for all ports by default

mixed duplex mode enabled for all ports by default

A laptop cannot connect to a wireless access point. Which two troubleshooting steps should be taken first? (Choose two.)

Ensure that the wireless NIC is enabled.

Ensure that the wireless SSID is chosen.

Ensure that the correct network media is selected.

Ensure that the laptop antenna is attached.

Ensure that the NIC is configured for the proper frequency.

What is an advantage of SSID cloaking?

Clients will have to manually identify the SSID to connect to the network.

It is the best way to secure a wireless network.

SSIDs are very difficult to discover because APs do not broadcast them.

It provides free Internet access in public locations where knowing the SSID is of no concern.

A company has recently implemented an 802.11n wireless network. Some users are complaining that the wireless network is too slow. Which solution is the best method to enhance the performance of the wireless network?

Split the traffic between the 2.4 GHz and 5 GHz frequency bands.

Disable DHCP on the access point and assign static addresses to the wireless clients.

Upgrade the firmware on the wireless access point.

Replace the wireless NICs on the computers that are experiencing slow connections.

Which type of wireless network is suitable for national and global communications?

wireless metropolitan-area network

Which feature on a switch makes it vulnerable to VLAN hopping attacks?

the automatic trunking port feature enabled for all ports by default

the mixed duplex mode enabled for all ports by default

the limited size of content-addressable memory space

mixed port bandwidth support enabled for all ports by default

Cspring10-13

Quiz

•

Computers

•

University

•

Practice Problem

•

Medium

David Berryman

Used 1+ times

FREE Resource

78 questions

Show all answers

1.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which Layer 2 attack will result in legitimate users not getting valid IP addresses?

ARP spoofing

DHCP starvation

IP address spoofing

MAC address flooding

2.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What mitigation plan is best for thwarting a DoS attack that is creating a MAC address table overflow?

Disable DTP.

Disable STP.

Enable port security.

Place unused ports in an unused VLAN.

3.

MULTIPLE SELECT QUESTION

30 sec • 1 pt

Which three Cisco products focus on endpoint security solutions? (Choose three.)

IPS Sensor Appliance

Web Security Appliance

Email Security Appliance

SSL/IPsec VPN Appliance

NAC Appliance

4.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

? In the 802.1X standard, the client attempting to access the network is referred to as the supplicant.

true

false

5.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which authentication method stores usernames and passwords in the router and is ideal for small networks?

server-based AAA over TACACS+

local AAA over RADIUS

server-based AAA

local AAA over TACACS+

local AAA

6.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What represents a best practice concerning discovery protocols such as CDP and LLDP on network devices?

Enable CDP on edge devices, and enable LLDP on interior devices.

Use the open standard LLDP rather than CDP.

Use the default router settings for CDP and LLDP.

Disable both protocols on all interfaces where they are not required.

7.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which protocol should be used to mitigate the vulnerability of using Telnet to remotely manage network devices?

SNMP

TFTP

SSH

SCP

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

75 questions

NET1L - Lesson 7 (Ethernet Switching)

Quiz

•

University

80 questions

Cryptography

Quiz

•

University

80 questions

Quiz Time - Learn eQuick

Quiz

•

University

76 questions

CFall4-7

Quiz

•

University

74 questions

Examen Teórico Final Base de datos II

Quiz

•

University

74 questions

REV 4- Antenna Systems

Quiz

•

University

76 questions

Electromagentic , Mid-term 2 , questions

Quiz

•

University

82 questions

Quiz6,7 COOS295

Quiz

•

12th Grade - University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

54 questions

Analyzing Line Graphs & Tables

Quiz

•

4th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Computers

20 questions

CompTIA Network+ - Ports and Protocols

Quiz

•

University