0% found this document useful (0 votes)
17 views105 pages

Complab Manual

The document is a comprehensive lab manual for configuring and troubleshooting various network components, including workstations, access points, routers, and switches. It includes detailed exercises for wired and wireless workstation configuration, DHCP setup, and router and switch management. Additionally, it features scenario labs for home and small office networks, along with chapter-end questions and answers for review.

Uploaded by

remamrema5
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
0% found this document useful (0 votes)
17 views105 pages

Complab Manual

The document is a comprehensive lab manual for configuring and troubleshooting various network components, including workstations, access points, routers, and switches. It includes detailed exercises for wired and wireless workstation configuration, DHCP setup, and router and switch management. Additionally, it features scenario labs for home and small office networks, along with chapter-end questions and answers for review.

Uploaded by

remamrema5
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 105

COMP-LAB MANUAL

A. Work Station (WS) Configuration Labs


a. Wired (Ethernet) Work Station Configuration

1. Configuring IP address, subnet mask, default gateway statically on a


Windows client
2. Configuring DNS server IP addresses statically on a Windows client
(WS1).
3. Configuring a Windows client work station to obtain DHCP parameters
from a DHCP server
4. Configuring a DHCP server for offering DHCP parameters to a DHCP
client computer
5. Troubleshooting IP settings on WS1 by using ping command
6. Troubleshooting DNS server configuration on a client computer using
ipconfig /all command.
7. Troubleshooting DNS server configuration on a client computer using
ipconfig /all command.
8. Design a PC-to-PC network using a Cross-over Ethernet cable and
check communication.
9. Design a simple network of two PCs connected through a Switch and
check communication.
10. Design a network with DHCP server and a client computer using a
Switch. Verify DHCP configuration parameters.
11. Telnet to a DHCP server (given DHCP server IP address) and verify
login.

b. Wireless Work Station Configuration

1. Configure a wireless Wifi connection on a client computer.


2. Configuring WEP on client computers in wireless network
environment.
3. Troubleshoot WiFi connection on a Windows Work Station (SSID
mismatch).
4. Verifying route taken by an IP Packet to reach destination using Tracert
command.

Copyright © 2002-2015 CertExams.com


c) Work station Chapter-end Questions & Answers

B. Access Point and DHCP Configuration Labs


a) Lab Exercises

1. Configure basic parameters of an Access Point (AP).


2. Configure WEP on a Wireless Access Point.
3. Configure a Wireless Access Point to have the functionality of a DHCP
server.
4. Design a Wireless Network with an Access Point and Client Computers
5. Configuring Wireless Security on an Access Point (WEP)

b) Access Point Chapter-end Questions & Answers

C. Router Configuration and Troubleshooting Labs


a) Lab Exercises

1. Entering User Exec mode


2. Setting Host name
3. Router Interface Configuration
4. Setting Console Password
5. Setting Telnet Password
6. Setting Auxiliary Password
7. Copy Running Config to Startup Config
8. Bringing-up a router interface
9. Telnet
10. TFTP
11. Configuring Static Routes
12. Configuring Default Route
13. Implement and Verify Static Route
14. Implement and Verify Default Route
15. Configuring Loopback Interface
16. Connectivity test with Traceroute

Copyright © 2002-2015 CertExams.com


17. Configuring RIP
18. Configuring Cisco Router as DHCP Server
19. DHCP client configuration
20. Configuring two DHCP Clients and DHCP verification commands

b) Router Chapter-end Questions & Answers

D. Switch Configuration and Troubleshooting Labs


a) Lab Exercises

1. Switch 2950 Console Password Assignment


2. Switch 2950 VTY password assignment
3. Switch 2950: Setting Privileged Password
4. Enable Fast Ethernet Interface on a 2950 switch
5. Initial Switch configuration
6. Basic Switch Interface Configuration
7. Enabling STP
8. Configuring Root Switch
9. Configuring Port-Priority
10. Configuring the switch priority of a VLAN
11. Verifying STP
12. Basic Switch IP Configuration
13. Configuring 2950 Switch vlan
14. 2950 Trunking Configuration
15. Troubleshooting 2950 Switch
16. Creating and Deleting 2950 VLAN's
17. Configuring VTP on 2950 Switch
18. Configuring VTP with a VTP Client
19. Troubleshooting lab with non matching domains
20. Troubleshooting lab with trunk functionality

Copyright © 2002-2015 CertExams.com


b) Switch Chapter end Questions & Answers

E. Scenario labs – Home and Small Office Networks


a) Lab Exercises

1. Design a Home Network with a Router, Access Point, and Wireless Work
Stations I
2. Design a Home Network with a Router, Access Point, and Wireless Work
Stations. –II
3. Design a Home Network with a Router, Access Point, and Wireless Work
Stations. –III
4. VLANs Scenario
5. VTP (VLAN Trunking Protocol) Scenario
6. VLANs and Trunking
7. Routing between VLANs (Router on a stick)

F. Questions & Answers - Final

Copyright © 2002-2015 CertExams.com


Default Lab Diagram:

Copyright © 2002-2015 CertExams.com


A. Work Station (WS) Configuration Labs

a). Wired (Ethernet) Workstation Configuration and Troubleshooting.

Lab Exercise 1 : Configuring IP address, subnet mask, default gateway


statically on a Windows client workstation.

Configure IP address, subnet mask, default gateway statically on Windows client


workstation WS1 with the following IPv4 configuration settings:.
IP address: 192.168.1.3
Subnet mask: 255.255.255.0
Default gateway: 192.168.1.1

Instructions:

1. Click on WS1 this will open Windows Networking dialog box.


2. Configure the IP address, subnet mask, and default gateway as given. Click on Save button
to save the settings.
3.Exit properties window.

Copyright © 2002-2015 CertExams.com


Notes: IPv4 configuration parameters at the minimum include IP address and subnet mask.
If you want to communicate outside of the local area network (LAN), you need to configure
default gateway also. Additionally, if you want to communicate using hostnames or domain
names (for example when accessing the Internet), you need to configure DNS Server IP
addresses also.

Lab Exercise 2:Configuring DNS server IP addresses statically on a Windows client


workstation (WS1).
Use the following information to configure DNS:
DNS Primary: 8.8.8.8
DNS Secondary: 8.8.4.4

Instructions:

We continue with DNS server configuration on WS1 from the previous lab.

1. Click on WS1 this will open Windows Networking dialog box.


2. Configure the DNS Server Primary IP address, and DNS Server Secondary IP Address.

Copyright © 2002-2015 CertExams.com


3. Exit properties window.

Notes: The DNS server enables address resolution. If one needs to connect to remote
resources by host name or domain name (other than the IP address), then DNS server needs
to be configured. Incidentally, 8.8.8.8 and 8.8.4.4 are free public DNS servers provided by
Google. The DNS protocol is an important part of the web's infrastructure, serving as the
Internets phone book. every time you visit a website, your computer performs a DNS look
up.

Lab Exercise 3:Configuring Windows client workstation, WS2 to obtain DHCP


parameters from a DHCP server.

Your task is to configure DHCP server (Server) for the following:

Server Network IP Address:


Server IP address: 192.168.1.2
Subnet mask: 255.255.255.0
Default Gateway: 192.168.1.1

DHCP Configuration parameters:


IP address range: 192.168.1.3 to 192.168.1.254
Subnet mask: 255.255.255.0
Default Gateway: 192.168.1.1
DNS Primary: 8.8.8.8
DNS Secondary: 8.8.4.4

Copyright © 2002-2015 CertExams.com


Instructions:

1. Click on WS2 this will open Windows Networking dialog box.


2. Click on Obtain DHCP configuration automatically (if it was not selected already)
3. Exit properties window.

Notes: The default configuration for Windows PCs (client computers) is that of automatic
DHCP configuration. As soon as a Windows PC is powered on, it searches for DHCP server
to provide IP parameters. If a PC is configured with static IP settings, then it will take
precedence over DHCP server, and automatic configuration is not activated.

Lab Exercise 4:Configuring a DHCP server for offering DHCP parameters to a


DHCP client computer.

Your task is to configure DHCP server (Server) for the following:

Server Network IP Address:


Server IP address: 192.168.1.2

Copyright © 2002-2015 CertExams.com


Subnet mask: 255.255.255.0
Default Gateway: 192.168.1.1

DHCP Configuration parameters:


IP address range: 192.168.1.3 to 192.168.1.254
Subnet mask: 255.255.255.0
Default Gateway: 192.168.1.1
DNS Primary: 8.8.8.8
DNS Secondary: 8.8.4.4

Instructions:

1. Click on Server this will open Windows Networking dialog box.


2. Configure IP address, subnet mask and default gateway on the Server with 192.168.1.2,
255.255.255.0, and 192.168.1.1 respectively.
3. Click on DHCP parameters(DHCP scope) button to enable DHCP.
4. Enter the IP address range 192.168.1.3 to 192.168.1.254 in the boxes provided.
5. Enter the DHCP subnet mask and default gateway.
6. Enter the DNS server information, 8.8.8.8 for DNS Primary, and 8.8.4.4 for DNS
Secondary.

Copyright © 2002-2015 CertExams.com


7. Save and Exit configuration.
8. Click on WS1 this will open Windows Networking dialog box. Click on Obtain DHCP
configuration automatically exit properties window.
9. On WS1 issue command ipconfig /all. You will see that IP address, subnet mask, and
default gateway, DNS server address assigned.

Notes: The DNS server itself requires an IP address, and subnet mask, at the minimum, to
be addressable in the network. Therefore, you need to set these IP settings first. Also, note
that the IP settings for DNS server must be configured statically. It cannot obtain it’s own IP
address from another DHCP server!

Next, you configure the DHCP parameters that need to be passed on to the DHCP client
computers as and when required by the client computers. Usually, DHCP will be able to pass
several other parameters, but most widely used options are given here.

Lab Exercise 5: Troubleshooting IP settings on WS1 by using ping command (Ping


from WS1 to ISP router at 200.202.1.51 Verify whether the Gateway address is properly
configured.)

For this purpose, assign an IP address 192.168.1.1 and subnet mask 255.255.255.0 for
interface E0 on router R1. Similarly, assign and IP address of 200.202.1.51 and subnet mask
of 255.255.255.0 on interface S0 on R1. Misconfigure Gateway on WS1 to 192.168.0.1

Copyright © 2002-2015 CertExams.com


On router R1

R1>enable
R1#configure terminal
R1(config)#int e 0
R1(config-if)#ip address 192.168.1.1 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#int s 0
R1(config-if)#ip address 200.202.1.51 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#

Instructions:
1. Ping from WS1 to 200.202.1.51. Observer that you get ping failed message.
2. Click on WS1 this will open Windows Networking dialog box.
2. Verify the IP settings, including IP address, subnet mask and default gateway. Note that
DNS does not matter at this stage because you are pinging using IP address.
3. Notice that the default gateway has been wrongly configured to 192.168.0.1 instead of
192.168.1.1 Correct the gateway IP address and Save the settings.

Copyright © 2002-2015 CertExams.com


4. Exit and ping 200.202.1.51 from command prompt. You should get the ping successful
response.

Notes: Default gateway plays an important role in network communications. One renowned
way to find problem with IP settings is to ping a remote host by IP address first and then by
domain name or host name. If the former works and the later doesn’t, then it is very likely
that the problem is with DNS resolution.

Lab Exercise 6:Troubleshooting subnet mask on a Windows client computer using


ipconfig /all command.

Scenario: The manually configured client WS1 is unable to communicate to any other clients
or gateway on the network. Check whether the same are properly configured on WS1.
WS1 Configuration:
IP address: 192.168.1.130
Subnet mask: 255.255.255.128
Default gateway: 192.168.1.1

Instructions:

Copyright © 2002-2015 CertExams.com


1. Ping from WS1 to default gateway 192.168.1.1. Observer that you get ping failed message.
Therefore, there is some problem with IP settings on WS1. As per the given problem, other
client computers are able communicate properly. You need to check the IP configuration first.
2. Click on WS1 this will open Windows Networking dialog box.
3. Verify the IP settings, including IP address, subnet mask and default gateway. Note that
DNS does not matter at this stage because you are pinging using IP address.
4. Notice that the subnet mask is set to 255.255.255.128 where as the default gateway address
is 192.168.1.1. Therefore, both are not in the same subnet! You need to correct either the
default gateway or the subnet mask and/IP address on WS1.
5. Correct the subnet mask to 255.255.255.0
6. Exit and ping default gateway 192.168.1.1 from command prompt. You should get the ping
successful response.

Notes: It is important that the default gateway and the host computer reside in the same
subnet. The purpose of default gateway is to receive any packets from the connected host
computers that could not be delivered within the local network. A subnet mask mismatch
ensures that there is no communication between gateway and the host (in this case Work
Station client WS1)!

Lab Exercise 7:Troubleshooting DNS server configuration on a client computer using


ipconfig /all command.

Scenario: WS1, which has been manually configured, is not able to ping R1 by using host
name. However, ping to 192.168.1.1 by using IP address is successful. Verify that the
problem exists and correct the same using appropriate diagnostic command in the command
prompt. DNS server is located at IP address 192.168.1.2

Copyright © 2002-2015 CertExams.com


Instructions:

1. Go to command prompt on WS1 and issue ping command, ping R1. Verify that the
command fails. Now, issue ping 192.168.1.1. Verify that the command is successful. Since it
is assumed that the gateway is configured properly, we need to troubleshoot WS1 for any
mis-configuration.
2. Click on WS1 this will open Windows Networking dialog box.
3. Verify the DNS server addresses for DNS Primary. It should read 192.168.1.2 However, it
is set to 192.168.1.1. Correct the DNS Primary to 192.168.1.2
4. Exit Properties window, and ping by host name from the command prompt. Ping should be
successful.

Notes: DNS (Domain Name Server) is used for resolving domain names (or host names) to
machine understandable IP addresses. On a workstation, DNS can be configured manually
or may be passed using DHCP. Usually, there will be at least two DNS servers configured on
a workstation accessing the Internet. If one fails, the second DNS server is used for address
resolution. The first in the list is called DNS Primary and the second is called DNS
Secondary.

Copyright © 2002-2015 CertExams.com


Lab Exercise 8: Design a PC-to-PC (or workstation to workstation) network using a
Cross-over Ethernet cable and check communication.

Instructions:

1. Start Network Designer


2. Drag and drop work station icon, and name it WS1.
3. Drag and drop work station icon, and name it WS2.
4. Drag and connect Ethernet Cable (Cross) to WS1 and drop the other end to WS2.
5. Export the network using “Export” command.
6. Open Simulator, click on WS1 and configure IP address, Subnet mask, and Gateway.
7. Next, click on WS2, and configure IP address, Subnet mask and Gateway.
8. Ping from WS1 to WS2. It should be successful for verifying proper configuration.

Notes: Two workstations or client PC can communicate with each other using a Cross
Cable. Note that a straight Ethernet cable is used for connecting a workstation (or a host) to
a Switch or Hub, whereas a cross Ethernet cable is used for connecting a host to host or a
switch to switch or workstation to workstation directly.

Copyright © 2002-2015 CertExams.com


Lab Exercise 9:Design a simple network of two PCs connected through a Switch and
check communication.

Task: Design a network with two workstations WS1, WS2 connected via central switch
(Switch A) using Ethernet as shown in the figure.

Instructions:

1. Start Network Designer


2. Drag and drop work station icon, and name it WS1.
3. Drag and drop work station icon, and name it WS2.
4. Drag and drop a 2950 Switch. Drag and connect Ethernet Cables (Straight) to connect WS1
to Switch A, WS2 to Switch A.
5. Export the network using “Export” command.
6. Open Simulator, click on WS1 and configure IP address, Subnet mask, and Gateway.
7. Next, click on WS2, and configure IP address, Subnet mask and Gateway.
8. Ping WS1 to WS2. It should be successful for verifying proper configuration.

Notes: A layer 2 switch works transparently in a network. There is no need to configure a


Layer 2 Switch for performing basic operations of forwarding frames. However, for using
advanced functionality like port security, VLAN configuration, etc. one may need to
configure a Switch.

Lab Exercise 10: Design a network with DHCP server and a client computer using a
Switch.

Copyright © 2002-2015 CertExams.com


Verify DHCP configuration parameters using appropriate command on the client computer.
For this purpose, ping DHCP server by IP address or host name (Server) from the remote
work station.

Configuration parameters:
DHCP Server IP address: 192.168.1.2
Subnet mask: 255.255.255.0
Default Gateway: 192.168.1.1

DHCP Parameters:
IP address range: 192.168.1.2 to 192.168.1.254
subnet mask: 255.255.255.0
Gateway: 192.168.1.1
DNS1: 192.168.1.1 DNS2: None.
Client (WS1) needs to be configured to obtain DHCP parameters automatically.

Instructions:

1. Open designer and drag and drop components as shown in the figure. Connect the Switch
with WS1 and Server with Ethernet (Straight) cables.
2. Export the configuration.
3. Open the exported configuration in the simulator.
4. Click on the Server computer and configure IP address, and DHCP parameters on the
Server. Save configuration and exit.
5. Click on WS1 and view configuration. By default, DHCP parameters are obtained
automatically. If not configured to obtain DHCP values by default, set it back to default
configuration. Save and exit configuration window.
6. Ping Server (192.168.1.2 from WS1. Ping should be successful. If not, troubleshoot for the
same.

Copyright © 2002-2015 CertExams.com


Notes: The DHCP server needs to be configured statically. Therefore, you need to manually
assign the IP settings on the DHCP server, whereas, on WS1 no configuration is required (if
default configuration is not disturbed).

Lab Exercise 11:Telnet to a DHCP server (given DHCP server IP address) and verify
login. User name: certexam, password: test

Instructions:

1. Click on Server this will open Windows Networking dialog box.


2. Configure IP address, subnet mask and default gateway on the Server with 192.168.1.2,
255.255.255.0, and 192.168.1.1 respectively.
3. Click on DHCP parameters(DHCP scope) button to enable DHCP by assigning IP address
range,mask,default gateway and DNS server address.
4. Click on Add users button enter User Name “CertExams” and password “test”
5. Click on WS1 to obtain IP address automatically from DHCP server.
5. On WS1 telnet to DHCP Server 192.168.1.2
6. Enter CertExams for User name and “test’ for password.
7. You should be able to get DHCP server prompt.

b) Wireless Work Station Configuration

Lab Exercise 1:Configure a wireless Wifi connection on a client computer.

Configure workstations WS3, WS4 to connect to Access Point AP1 without using any
security (Open network). Note that AP1 is already configured with appropriate SSID. Verify
network connectivity by pinging Server IP address 192.168.1.2

Copyright © 2002-2015 CertExams.com


Instructions:

1. Configure WS3, WS4 to obtain IP addresses automatically from the DHCP server.
2. Note the SSID provided on AP1 by Opening the Properties window on AP1.
3. Configure the same SSID on both WS3 and WS4 wireless clients.
4. At the command prompt, verify that ping from WS3 to 192.168.1.2 and see if the ping is
successful.
5. Repeat ping on WS4.

Notes: At the minimum, the wireless network needs to be configured with SSID. Though
SSID is the only required parameter for communicating in a wireless LAN environment, the
wireless network is not considered secure. This is because any other client computer (say, a
rogue computer) can communicate over the network using the same SSID and misuse the
network resources. For this reason, security protocols such as WEP or WPA or MAC address
filtering are used on the wireless LANs.

Copyright © 2002-2015 CertExams.com


Lab Exercise 2:Configuring WEP on client computers in wireless network
environment.

Scenario: Configure a wireless WiFi connection on client computers WS3 and WS4 to
connect to Access Point AP1 using WEP key Cert1 and SSID CertExams. Verify
communication between the work station WS3 and DHCP server (192.168.1.2) using Ping
command from WS3 or WS4. Note that AP1 is already configured with appropriate SSID and
WEP code (5/13 char long) DHCP is also configured with IP address 192.168.1.2 and subnet
mask 255.255.255.0

Requirements: The Access Point is configured properly with SSID CertExams and WEP
password Cert1. The DHCP server is configured with IP address, subnet mask and default
gateway of 192.168.1.2, 255.255.255.0 and 192.168.1.1 respectively..

Instructions:

1.Configure WS3, WS4 to obtain IP addresses automatically from the DHCP server.
2. Configure the SSID CertExams and WEP code Cert1 on both WS3 and WS4 wireless
clients. Save configurations.

Copyright © 2002-2015 CertExams.com


3. At the command prompt, verify that ping from WS3 to DHCP IP address 192.168.1.2 is
successful. Repeat the same from WS4.

Notes: WEP (short for Wireless Equivalent Privacy) is used to secure wireless LAN. The
password could be 5/13 characters long. Necessary conditions to communicate in wireless
environment using WEP are:
1. IP address, subnet mask, and default gateway are configured properly
2. SSID and WEP password are configured properly.

Lab Exercise 3:Troubleshoot WiFi connection on a Windows Work Station


(SSID mismatch).

Scenario: WS3 is not able to communicate with WS4. Ping WS4 from WS3 is not successful.
Verify the configuration on WS3/WS4 and ensure that ping works. DHCP is configured on
client computers and working properly.

Requirements: For this purpose, WS3 SSID will be configured wrongly before hand.
No communication takes place (ping fails). Then, bringup the wireless properties window on
WS3 and configure SSID properly. Ping should be successful.
Access Point configuration:
SSID: CertExams, Password: Cert1,
IP address: 192.168.1.3, subnet mask: 255.255.255.0
Default gateway: 192.168.1.1

DHCP Server is configured to provide DHCP parameters as below:


IP address range: 192.168.1.3 to 192.168.1.254
Subnet mask: 255.255.255.0
Default gateway: 192.168.1.1

DHCP Server IP address: 192.168.1.2


DHCP Server Subnet mask: 255.255.255.0
Default gateway: 192.168.1.1

Copyright © 2002-2015 CertExams.com


Instructions:

1. Open command prompt on WS3 and ping WS4. Verify that ping fails.
2. Open WS3 network properties window and make sure that DHCP is set to Automatic (no
manual configuration).
3. Open wireless properties windows and verify that SSID is correct (CertExams, case
sensitive). Ensure that WEP password is properly set by re-entering the password “Cert1,
again case sensitive)
4. Save and exit the Properties window.
5. Repeat the same on WS4.
6. Now, ping WS3 to default gateway 192.168.1.1. The ping should be successful, provided
that the Access Point and DHCP Server are configured properly. Repeat the same on WS4.

Notes: An SSID is the name of a wireless local area network (WLAN). All wireless devices
on a WLAN must employ the same SSID in order to communicate with each other. SSIDs
are case sensitive text strings. The SSID is a sequence of alphanumeric characters (letters or
numbers). SSIDs have a maximum length of 32 characters.

Copyright © 2002-2015 CertExams.com


Lab Exercise 4:Verifying route taken by an IP Packet to reach destination using
Tracert command.

Scenario: Find the route taken by IP packets reach the Default gateway using appropriate
command on WS3. Trace the route from WS3 to Server by using tracert command.

Requirements: AP, Server, and WS3 needs to be configured prior to tracert command with
proper IP addresses.

Access Point configuration:


SSID: CertExams
IP address: 192.168.1.3, subnet mask: 255.255.255.0
Default gateway: 192.168.1.1

DHCP Server is configured to provide DHCP parameters as below:


IP address range: 192.168.1.3 to 192.168.1.254
Subnet mask: 255.255.255.0
Default gateway: 192.168.1.1

Copyright © 2002-2015 CertExams.com


DHCP Server IP address: 192.168.1.2
DHCP Server Subnet mask: 255.255.255.0
Default gateway: 192.168.1.1

Instructions:

1. Go to command prompt on WS3. Issue tracert Server command at the prompt. Notice the
path taken by the packet.
2. Exit command prompt.

Notes: You may see only one hop to get to the destination server. This is because the server
is in the local network. The number of hops required to reach the destination is only one in
this case.

c). Work station Chapter-end Questions & Answers.

1. You have installed TCP/IP protocol stack on your computer. Now you want to check
whether the TCP/IP stack is installed properly by pinging the local loopback address. Which
of the following is used for local loopback?
a) 1.0.0.0
b) 127.0.0.1
c) 255.255.255.255
d) 240.0.0.0

2. Which two authentication schemes does PPP support? [Select 2]

a) PAP
b) Radius
c) CHAP
d) Verisign

3. You are configuring PPP on your router. Which authentication scheme uses 3-way
handshake?

a) PAP
b) CHAP
c) TACACS
d) RADIUS

4. How many bytes (octets) does an IPv6 address consist of?


a) 8
b) 16
c) 4
d) 32

Copyright © 2002-2015 CertExams.com


5. In hexadecimal colon notation, a 128-bit address is divided into _______ sections, each
_____ hexadecimal digits in length.
a) 8: 3
b) 8: 2
c) 8: 4
d) None of the above

6. The correct format of an IPv6 global address is which of the following?


a) 32-bit global routing prefix; 32-bit subnet ID; 64-bit interface ID
b) 64-bit global routing prefix; no subnet ID; 64-bit interface ID
c) 48-bit global routing prefix; 16-bit subnet ID; 64-bit interface ID.
d) 64-bit global routing prefix; 32-bit subnet ID; 64-bit interface ID.

7. Which utility you use for terminal emulation?


a) Telnet
b) FTP
c) HTTP
d) HTML

8. You are Telnetting to a remote host on the Internet. Which protocol is being used?
a) IPX/SPX
b) TCP/IP
c) NetBEUI
d) HTTP

9. What is true about IP routing?


a) The frame changes at each hop
b) The source IP address changes at each hop
c) The destination IP address changes at each hop
d) The hardware interface addresses remain constant

10. Which TCP/IP command is most likely to produce the following output?
Interface:202.100.99.10 on interface 0X1000003
Internet Address Physical Address Type
202.200.99.10 00:A0:C9:14:C8:29 static

a. Ping
b. arp –a
c. tracert
d. nbtstat

11. An administrator has configured a SOHO LAN with two 8-port Hubs. Both Hubs are
connected together using a straight cable. A workstation connected to one Hub is not able to
communicate with any other workstation connected to the second Hub. But workstations on
the same Hub are able to communicate with each other. What is the likely problem?

a. One of the Hubs is bad

Copyright © 2002-2015 CertExams.com


b. You need a Switch, not a Hub
c. The HOSTS file on the workstations is corrupt.
d. You need to use crossover cable to connect network Hubs

12. Which of the following cable types has the longest range without significant signal
reduction?

a. UTP
b. STP
c. MMF (Multi Mode Fiber)
d. SMF (Single Mode Fiber)

13. Which utility can be used to view the current TCP/IP connections to your Windows
computer?

a. ARP
b. Ping
c. Tracert
d. Netstat

14. Identify the WAN devices below. (Choose 2 best answers)

a. CSU/DSUs
b. Hubs
c. Modems
d. Bridges

15. Which device should you use to monitor the amount of network traffic over a period of
time?
a. Time domain reflectometer (TDR)
b. Oscilloscope
c. Protocol Analyzer
d. Frequency domain reflectometer

16. Which parameter uniquely identifies a wireless network?

a. IP address
b. MAC address
c. SSID
d. Network number

17. You want to make a home network connecting two Windows XP computers with NIC and
RJ-45 connectors. At the minimum, what networking components do you require?

a. A hub and a cable


b. A switch and a cable
c. A crossover cable
d. A straight cable

Copyright © 2002-2015 CertExams.com


18. Which of the following is a valid MAC address?

a. 202.199.100.2
b. FEDC:BA98:7654:3210:FEDC:BB98:7654:3210
c. 00:A0:C9:14:C8:29
d. 1101100011110000

19. You are installing a network infrastructure in a new office. Which one of the following is
used to force solid wire into metal slots on the 110 block.

a. A punch-down tool
b. 66 block
c. Smart jack
d. Cable stripper

20. You want to verify the default gateway that a client computer is using. Which of the
following commands can be used to display the default gateway?

a. Tracert
b. Ping
c. IPCONFIG
d. Route

21. The IP address for DHCP server needs to be assigned statically.

a. True
b. False

22. Which command will give an output as shown below:

Tracing route to 202.100.1.20 over a maximum of 30 hops.


1 31 ms 16 ms 31 ms 200.1.20.5
2 30 ms 20 ms 30 ms 202.100.1.20
Trace complete.
a. Ping
b. Tracert
c. Arp
d. Ipconfig

23. Which command produces the following output?

Active Connections
Proto Local Address Foreign Address State
TCP system:3931 system:3932 ESTABLISHED
TCP system:3932 system:3931 ESTABLISHED
TCP system:4664 system:12080 ESTABLISHED

Copyright © 2002-2015 CertExams.com


a. nbtstat
b. netstat
c. ipconfig
d. route

24. You are preparing to install and configure a DHCP Server. Which task must you
complete?
a. Configure the Server to be a DNS Server
b. Manually assign a valid IP address to the Server
c. Install NetBEUI on the Server
d. Configure the IP address of the second DHCP server when prompted.

25. Which of the following are key characteristics of PPP? (Choose three)
a) can be used over analog circuits
b) maps Layer 2 to Layer 3 address
c) encapsulates several routed protocols
d) supports IP only
e) provides error correction

1. Ans. b
Explanation: 127.0.0.1 is the local loopback address defined by the Internet Protocol and used
for by a host to ping itself to verify the IP connectivity.
2. Ans a and c
Explanation: PPP supports Password Authentication Protocol (PAP) and,
Challenge Handshake Authentication Protocol (CHAP).
3. Ans. b
Explanation: PAP uses 2-way handshaking. Passwords are sent in clear text across the link.
Therefore, PAP is to be used only when it not possible to use CHAP. CHAP uses 3-way
handshaking. CHAP uses Challenge/ Response method which provides protection against the
password capture while authenticating the user. One should use CHAP whenever it is
possible.
4. Ans. b
Explanation: IPv6 addresses are 128 bits in length that correspond to 16
Bytes or octets.
5. Ans. c
Explanation: The 128 bit IPv6 address correspond to 8 sections
separated by colons with 4 hexadecimal digits in each section.
6. Ans. c
Explanation: IPv6 address format is eight groups of hexadecimals

Copyright © 2002-2015 CertExams.com


separated by colons. And the format is 48-bit global prefix, 16-bit subnet
and 64-bit interface identifier.
7. Ans. a
Explanation : Telnet is used for terminal emulation that runs programs remotely. FTP is used
to transfer files.
8. Ans. b
Explanation : TCP/IP is the protocol used when you are Telnetting to a remote host. HTTP is
used for accessing the World Wide Web services.
9. Ans. a
Explanation : IP Packets are transported from source network to the destination network by
what is known as routing. Hop-by-hop routing model is used by the Internet for delivery of
packets. At each hop, the destination IP address is examined, the best next hop is determined
by the routing protocol (such as RIP, OSPF or BGP) and the packet is forwarded by one more
hop through this route. The same process takes place at the next hop. During this process, the
logical addresses remain same. In an IP network, the logical addresses are IP addresses. The
hardware interface addresses, such as MAC address changes with each hop.
10. Ans: b
Explanation:: arp stands for Address Resolution Protocol. It essentially maps logical and
physical addresses. In the table given, the logical address 202.200.99.10 is mapped to MAC
address 00:A0:C9:14:C8:29.
11. Ans: d
Explanation:You need to use crossover cable to connect two network Hubs, and straight
cables to connect workstations to the Hub.
12. Ans: d
Explanation :The distance specification for various media type is as given below:
Standard Media Max. Length
1000BaseCX Copper shielded twisted pair ..... 25 meters
1000BaseT Cat 5 UTP, 4 pair ..... 100 meters
1000BaseSX Multimode fiber cable ..... 260 meters
1000BaseLX Single mode fiber cable ..... 3 km
13. Ans: d
Explination:NETSTAT is used to review all inbound / outbound connection to a server.
14. Ans:a,c
Explanation :WAN (Wide Area Network) devices extend the reach of LAN (Local Area
Network) devices. WANs typically span over a wide area, such over multiple cities /
countries. WANs are connected over serial lines that typically operate at lower speeds than
LANs.
Some of the WAN devices are:

Copyright © 2002-2015 CertExams.com


1. Routers: Routers are responsible for routing the packets in an internetwork.
2. Modems: Modems connect to public telephone circuits through dial-up.
3. CSU/DSU: Stands for Channel Service Unit / Data Service Unit. CSU/DSUs are used for
connecting to Central Office of a Telephone switching company and provides serial WAN
connections.
4.Communication Servers: These are used for dial in/out to remote users. Provides RAS
(Remote Access Server) functionality.
5. Multiplexers (mux): Multiplexers combine two or more signals before transmitting on a
single channel. Multiplexing can be done by sharing "time" or "frequency".
15. Ans:c
Explanation: Protocol analyzer can be used to capture the packets over a period of time and
can be analyzed.
16. Ans:c
Explanation SSID (short for service set identifier) is a 32-character unique identifier attached
to the header of packets when a host connects to a Wireless LAN. The SSID differentiates
one WLAN from another, so all access points and all devices attempting to connect to a
specific WLAN must use the same SSID. An SSID is also referred to as a network name
because essentially it is a name that identifies a wireless network.
IP address is a logical address and used for routing packets over an IP network. MAC address
is assigned to the NIC and identifies the resource physically. Network number is not a
relevant option.
17. Ans;c
Explanation :A crossover cable directly connects two compatible network devices to each
other over Ethernet. Ethernet crossover cables are commonly used when networking two
devices in situations where a network router, switch or hub is not present. Compared to
standard Ethernet cables, the internal wiring of Ethernet crossover cables reverses the
transmit and receive signals.
18. Ans:c
Explanation :There are typically two types of addresses used:
1. Logical address, example IP address of a node. 202.199.100.2 is an example of logical
address. The addressing scheme is compliant to IPv4. The address
FEDC:BA98:7654:3210:FEDC:BB98:7654:3210 is compliant to IPv6. IP version 6
addressing scheme is being used due to scarcity of IP addresses using IP version 4. That is,
the Internet is almost running out of logical addresses (uniquely identifiable over the Internet)
using IP v4. Due to larger number of bits used in IP v6, it can take several billions of logical
addresses!
2. Physical address, also called MAC address. MAC is short for Media Access Control.
MAC addresses are 12-digit hexadecimal numbers (48 bits in length). By convention, MAC
addresses are usually written in one of the following two formats:
Format 1.......MM:MM:MM:SS:SS:SS

Copyright © 2002-2015 CertExams.com


Format 2.......MM-MM-MM-SS-SS-SS
The first half of a MAC address contains the ID number of the adapter manufacturer. The
second half of a MAC address represents the serial number assigned to the adapter by the
manufacturer. In the example,
00:A0:C9:14:C8:29
The prefix 00A0C9 indicates the manufacturer is Intel Corporation.
The number 14C829 is the serial number assigned by the manufacturer.
19. Ans:a
Explanation :A 110 block is a punch-down block used to connect wiring for telephone
systems, data network wiring, and other low-voltage wiring applications. The 110 block
improves on the 66 block by supporting higher frequencies and using space more efficiently.
A punch-down tool is used to force solid wire into metal slots on the 110 block.
20. Ans:c
Explanation :Some of the important commands useful in troubleshooting TCP/IP networks
are:
I. Ipconfig: Displays TCP/IP configuration values, including IP address, subnet mask, and
default gateway.
II. Ping: This command can be used to verify whether the target ip address or host name is
present. You need to specify the target IP address or the host name.
III. route: Displays and manipulates route information.
iv: Tracert: Determines the route packets take to reach the specified destination.
In the given question, the relevant command that gives the default gateway is "ipconfig"
command.
21. Ans. A
Explanation:You have to assign the IP address for your DHCP server statically. A DHCP
server can't assign an IP address to itself. Similarly, some other servers which need static
assignment of IP addresses are your DNS server, WINS server, and Default gateway.
22. Ans:b
Explanation :The tracert utility traces the path to the destination. It is accomplished by
controlling the TTL (Time To Live) of the packets in the increments of 1 (one). When the
TTL reaches 0, the router sends back an error message saying that the TTL has elapsed. This
information is used to find the intermediate devices over the path to destination. Note that
some routers may be programmed not to respond to TTL 0 packets. In such event, you may
not receive any response.
23. Ans.b
Explanation The command netstat provides active connections on the host with detail like
local address, foreign address, etc.
24. Ans.b
Explanation :You must assign the IP address of a DHCP Server manually.

Copyright © 2002-2015 CertExams.com


25. Ans. a, c and e
Explanation : PPP (Point-to-Point Protocol) allows authentication such as Password
Authentication Protocol (PAP) and Challenge Handshake Authentication Protocol (CHAP)
and multi-link connections (allow several separate physical paths to appear to be one logical
path at layer 3) and can be run over asynchronous and synchronous links.

B. Access Point and DHCP Configuration Labs


a). Lab Exercises

Lab Exercise 1:Configure basic parameters of a wireless Access Point


(AP1). Given below are the IP address, subnet mask, channel, and SSID.

IP Address: 192.168.1.3
Subnet mask: 255.255.255.0
SSID: CertExams
Channel: 11
Instructions:

Copyright © 2002-2015 CertExams.com


1. Open AP1 properties by clicking on the icon. Set the IP address and subnet mask to
192.168.1.3 and 255.255.255.0 respectively.
2. Open Wireless Properties tag, and set SSID to CertExams, and channel to 11 from the drop
down box.
3. Save and exit configuration.

Notes: An Access Point, at the minimum requires that SSID is set. Channel is selected
automatically. However, you have the option to change the channel. The IP address and
subnet mask on the Access Point are optional. Wifi access points need not have an IP
address, any more than wired switches and hubs do. However a large number do, as they
also act as DHCP servers and network gateways.

Lab Exercise 2: Configure WEP on a Wireless Access Point.

Continuing from the previous lab, your task is to configure WEP on AP1 with a password

Cert1 . Also verify that the SSID is set to CertExams.

Copyright © 2002-2015 CertExams.com


Instructions:

1. Open AP1 properties by clicking on the icon. Open Wireless Properties tag, and set the
WEP value to Cert1.
2. Verify that the SSID is same as CertExams. If not, set it to CertExams
3. Save and exit configuration.

Notes: WEP stands for Wireless Equivalent Privacy. There are several other security
mechanisms available for securing wireless networks. These include WPA, MAC filtering,
Authentication.

Lab Exercise 3:Configure a Wireless Access Point to have the functionality


of a DHCP server.

Configure Access Point AP1 to function as a DHCP server as well. The parameters are: IP
Address range, subnet mask, default gateway, DNS Primary, and DNS Secondary.

AP1:

IP address: 192.168.1.3 Subnet mask: 255.255.255.0

DHCP Parameters to be set on AP1:

DHCP: Address range: 192.168.1.4 to 192.168.1.254


Default Gateway: 192.168.1.1, Subnet mask: 255.255.255.0
DNS Primary: 8.8.8.8
DNS Secondary: 8.8.4.4

Copyright © 2002-2015 CertExams.com


Instructions:

1. Open AP1 properties by clicking on the icon. Set the IP address and subnet mask to
192.168.1.3 and 255.255.255.0 respectively.
2. Enable DHCP button. Configure IP address range as 192.168.1.4 to 192.168.1.254
3. Subnet mask 255.255.255.0, and default gateway 192.168.1.1
4. Configure DNS Primary as 8.8.8.8 and DNS Secondary as 8.8.4.4
5. Save and exit configuration.

Notes: In pure sense, a wireless access point is nothing but a wireless switch (layer 2
switch). However, additional functionalities are usually built in to the access point. These
include that of a DHCP server and a Gateway. By making an access point multi functional,
manufacturers are able to reduce the number of devices that needs to be used for
accomplishing a task like accessing Internet using a wireless client
.

Copyright © 2002-2015 CertExams.com


Lab Exercise4: Design a Wireless Network with an Access Point and Client
Computers.

Task: Design a wireless LAN network using an Access Point (AP) and two wireless work
stations (WS1 and WS2) using designer module. Assign AP SSID: CertExams

Instructions:

1. Open Network Designer.


2. Drag and drop Access Point, and two Work Stations on to the designer window. Host
names to be given as AP for Access Point, WS1 and WS2 for work stations.
3. Now, open AP properties window and configure the IP address range as given in the table.
Configure AP IP address and subnet mask.
4. Check whether WS1 and WS2 have DHCP enabled. (This is enabled by default unless
changed).
5. Save configuration, and export.
6. Open the lab in Simulator mode. Verify configurations using right click and selecting
Properties.
7. Ping from WS1 to AP by IP address (192.168.1.131). It should succeed.

Notes: The designer module allows users to design simple to complex networks using
workstations, switches, access points, servers, and routers. Various connectors, including
Ethernet (Straight, Cross), Serial, Console, and other types are made available. WAN types
include Frame Relay, Leased line, and ISDN.

Lab Exercise5: Configuring Wireless Security on an Access Point (WEP)


Task:

Copyright © 2002-2015 CertExams.com


Configure WEP security on AP Verify that the communication will not take place between
the PCs (PC1 and PC2) until the WEP key is provided. Use ping command to ping the Access
Point (AP) fro WS1. AP IP address: 192.168.1.131 subnet mask: 255.255.255.128

Instructions:

1. In the Simulator window, open the Properties box for AP1 and set the WEP key to Cert1
and save configuration.
2. On WS1 set the WEP key to Cert1 and save.
3. On WS2 also set the WEP key to Cert1 and save.
4. Ping from WS1 to AP by IP address (192.168.1.131). It should succeed.
5. If ping fails, check for SSID mismatch, or WEP mismatch and try again.
6. Try ping from WS2 to AP by IP address. It should also succedd.

b). Access PointChapter-end Questions & Answers:

1. Which one of the following is typically used for connecting a Wireless mouse to a
computer?

a. 802.11a
b. 802.11g
c. 801.11b
d. Bluetooth

2. Which of the following statements is true about Ad-hoc mode in a 802.11 wireless
network?

a. It is the mode used by wireless work stations to connect to the WAP.


b. It is a mode used while testing the Wireless network.
c. It is a draft protocol development standard

Copyright © 2002-2015 CertExams.com


d. It is a mode in which devices or stations communicate directly with each other,
without the use of Wireless Access Point (WAP).

3. Which of the following is a security standard for 802.11?

a. WAP
b. WEP
c. Kerberos
d. IPSEC

4. A small office has a wireless Access Point with several computers connected to it.
However, some of the users complain that the connection was slow at times. What are the
likely reasons? (Choose 2 best answers).

a. SSID mismatch
b. Incorrect mode selection
c. Wireless phones
d. Antenna mismatch

5. A directional antenna (such as Yagi antenna) radiates more power in a given direction,
whereas omni antenna radiates equal power in all directions.

a. True
b. False

6. You want to connect your notebook computer to a wireless network. Which of the
following network interface card (NIC) is required to connect to a 54 Mbps wireless LAN
that uses 2.4GHz frequencies as per the Wi-Fi standard?

a. 802.11a NIC
b. 802.11b NIC
c. 802.11g NIC
d. Bluetooth NIC

7. Which of the following wireless standards operate at 2.4 GHz?


(Choose 3 best answers)

a. Blue tooth
b. 802.11a
c. 802.11b
d. 802.11g

8. Which of the following devices works at the physical layer of OSI model?

a. Switch
b. Router
c. Gateway
d. Wireless Access Point (WAP)

Copyright © 2002-2015 CertExams.com


9. Several client computers are connected to a network using WAP (Wireless Access Point).
The WAP in turn is connected to a broadband Internet modem through a router. Only one of
the client’s notebook computers is not able to access the Internet, nor able to see other
computers on the wireless network. Other computers on the wireless LAN are functioning
normally. Which of the following is the likely reason?

a. The connectivity between the WAP and the router is bad


b. The router IP address is wrong
c. The SSID on the client’s notebook computer is not configured properly
d. The cable connecting the router and broadband modem is bad

10. Several client computers are connected to a network using WAP (Wireless Access Point).
The WAP in turn is connected to a broadband Internet modem through a router. None of the
computers on the wireless LAN are able to access the Internet during specific times. Which
of the following is the likely reason?

a. The connectivity between the WAP and the router is bad


b. The router IP address is wrong
c. The SSID on the wireless LAN computers is not configured properly
d. The MAC address of the router is bad
e.
11. What type of antenna, commonly used in wireless APs and wireless routers in SOHO
locations, radiates uniformly (equal power levels) in all directions?

a. Unidirectional
b. b. Yagi
c. c. Parabolic
d. d. Omnidirectional

12. Which of the following supports a maximum speed of 54 Mbps and uses the 2.4-GHz
band?

a. 802.11a
b. b. 802.11b
c. c. 802.11n
d. d. 802.11g

13. Which of the following is true about ESS (Extended Service Set) in a wireless LAN
environment?

a. It allows two devices to communicate directly without the need for an Access Point
(AP)
b. b. It uses a single wireless Access Point (AP)
c. c. Multiple Access Points (APs) create one wireless LAN
d. d. It allows same frequency channels be used for adjacent wireless cells

Copyright © 2002-2015 CertExams.com


14. Which of the following are important features of WPA wireless standard? (Choose 2 best
answers)

a. It includes option to specify dynamic key exchange


b. b. It uses AES encryption standard
c. c. It provides user authentication
d. d. It is also known as 802.11i

15. A small office has a wireless AP with several computers connected to it. However, some
users complain that they are not able to access the WLAN. What are the probable causes?
(choose 2 best answers)

a. SSID is not configured on the AP


b. b. Incorrect mode is selected on the AP
c. c. Wireless phones
d. d. Antenna mismatch

16. Which of the following are valid IPv6 addresses? (Choose three.)
a) 2001:0bc8:0000:0000:0000:0000:1128:6ab
b) 2001:0bc8::1128:6ab
c) 2001::13cd:1781::1428:57ab
d) 2001:99:ab:1:99:2:1:9
e) 2001:1858:57ab:1345:2223:1728:34bc

PLEASE REFER THE ANSWERS BELOW

1. Ans:d
Explanation :802.11 standards are typically used in wireless lan configurations. Bluetooth
supports low speeds (up to 1 Mbps) over short distances (up to a max of 30 feet). The
technology is well suited for connecting PDAs or wireless mouse to a computer.
2. Ans:d
Explanation:Ad-hoc mode is used when devices or stations communicate directly with each
other, without the use of Wireless Access Point (WAP). Ad-hoc mode is useful for
establishing a network where wireless infrastructure is un-available or does not exist.
3. Ans:b
Explanation:WEP (Wired Equivalent Protection) is a security standard for 802.11 WAP
networks.
4. Ans:c,d
Explanation:Note that the connectivity was slow or intermittent. If there were any
mode/SSID mismatch, there wouldn’t be any communication at all. It is also likely that the
wireless phones, filing cabinets, and antenna mismatch errors are adding to the problem.
5. Ans.a
Explanation:There are broadly two types of wireless networking antennas. These are Omni
antenna, and Yagi antenna. Omni antennas, as the name implies are omni (omni means "all")

Copyright © 2002-2015 CertExams.com


directional. They radiate power in all directions uniformly. On the other hand, Yagi antennas
are directional. These antennas radiate more power in a given direction and require
alignment. Wrong alignment or misalignment may result in total communication loss. Omni
antennas are used for access point communication. The mobile user may be located at any
point within the radio distance. Therefore, there is no directional preference, and hence Omni
antennas are used. Yagi antennas are used for back-haul networks. To connect different access
points. By using directional antenna, you can increase the distance/bandwidth between the
communication points.
6. Ans:c
Explanation:You need an NIC (Network Interface Card) that is compatible with 802.11g
standard.
7. Ans.a,c,d
Explanation:All Blue tooth, 802.11b, and 802.11g use 2.4GHz spectrum, where as 802.11a
uses 5 GHz spectrum. Note that 2.4GHz band is more susceptible to noise compared with 5
GHz because several ISM band compatible devices work in the 2.4GHz frequency band.
8. Ans:d
Explanation: Wireless Access Point (WAP) works at the physical layer of OSI model.
9. Ans.c
Explanation:SSID (short for service set identifier) is a 32-character unique identifier attached
to the header of packets when a host connects to a Wireless LAN. The SSID differentiates
one WLAN (Wireless LAN) from another, so all access points and all devices attempting to
connect to a specific WLAN must use the same SSID. An SSID is also referred to as a
network name because essentially it is a name that identifies a wireless network.If the
connectivity between the WAP and the router is bad, then none of the computers on the
wireless LAN would have worked.
10. Ans: a
Explanation:Note that the wireless computers are able to communicate over the Internet
intermittently. Therefore, the problem with IP address, MAC address or SSID can be ruled
out. It is likely that the connectivity between the WAP and the router is intermittent, and
needs to be checked.
11. Ans. D
Explanation:There are three main categories of antennas:
Omni-directional - Omni-directional antennas radiate RF in a fashion similar to the way a
table or floor lamp radiates light. They are designed to provide general coverage in all
directions.
Semi-directional - Semi-directional antennas radiate RF in a fashion similar to the way a wall
sconce is designed to radiate light away from the wall or the way a street lamp is designed to
shine light down on a street or a parking lot, providing a directional light across a large area.
Yagi antenna is an example of this type of antennas.

Copyright © 2002-2015 CertExams.com


Highly-directional - Highly-directional antennas radiate RF in a fashion similar to the way a
spotlight is designed to focus light on a flag or a sign. Each type of antenna is designed with a
different objective in mind. Phased array antenna is an example of this type of antenna.
12. Ans. D
Explanation:802.1g has a maximum bit rate of 54Mbps and uses OFDM for modulation. Note
that 802.1a also has the maximum bit rate of 54Mbps, but works in 5GHz frequency band.
13. Ans.c
Explanation:Extended Service Set (ESS) is a set of two or more Basic Service Sets (BSSes)
working together to form a single wireless network. Stations are able to move between BSS
within a single ESS yet remain "connected" to the fixed network and so continue to receive
emails etc. As a Station moves into a new BSS, it will carry out a re-association procedure
with the new AP (Access Point).
14. Ans:a,c
Explanation:WPA stands for Wi-Fi Protected Access. The key features of the protocol are
given below:
1. It supports both static and dynamic key distribution
2. It provides Device Authentication, as well as User Authentication.
3. It uses TKIP (Temporal Key Integrity Protocol) encryption for dynamic key exchange.
Note that WPA2 uses AES encryption where as WPA uses TKIP. AES encryption is a stronger
encryption protocol.
4. WPA is forward compatible with WPA2.
15. Ans.c, d
Explanation:Note that the connectivity was slow or intermittent. If there were any
mode/SSID mismatch, there wouldn't be any communication at all. It is also likely that the
wireless phones, filing cabinets, and antenna mismatch errors are adding to the problem.
16. Ans. a, b and d
Explanation : c and e are incorrect. Because :: can be used only once in a IPv6 address and a
IPv6 address consists of 128 bits, namely eight groups of 16 bits.
C. Router Configuration and Troubleshooting Labs:
a). Lab Exercises

Lab Exercise 1 : Entering User EXEC prompt on a Router, and exit


Description : This lab exercise helps to get familiar with the benefits of a VLAN and also in
understanding the process to configure a router and a switch to support VLANs.
Instructions:
1. Enter into privileged mode
2. Get back to the user mode

Copyright © 2002-2015 CertExams.com


R1>enable
R1#disable
R1>

Lab Exercise 2 : Setting Host Name

Description: This basic exercise illustrates the steps required to set a hostname to a router.

Instructions:

1. Enter into privileged mode


2. Enter into global Configuration Mode
3. Set hostname as cisco

R1>enable
R1#configure terminal
R1(config)#hostname cisco

Lab Exercise 3 : Router Interface Configuration

Description: In this lab, you will learn to enable interfaces on a router i.e, configure Serial 0
and Ethernet 0 interfaces on a router with specified IP Address and Subnet Mask.

Instructions:

1. Enter into privileged mode


2. Enter into global Configuration Mode
3. Set IP Address of Serial 0 as 196.20.32.15 and Subnet Mask as 255.255.255.5
4. Set IP Address of Ethernet 0 as 195.20.32.10 and Subnet Mask as 255.255.255.10

R1>enable
R1#configure terminal
R1(config)#interface serial 0
R1(config-if)#ip address 196.20.32.15 255.255.255.5
R1(config-if)#exit
R1(config)#interface ethernet 0
R1(config-if)#ip address 195.20.32.10 255.255.255.10

Lab Exercise 4 : Setting Console Password

Description: Set the line console password for line 0. Use password routercon

Instructions:

1. Enter into global configuration mode

Copyright © 2002-2015 CertExams.com


2. Enter into line console 0 mode
3. Set console password as routercon

R1>enable
R1#configure terminal
R1(config)#line console 0
R1(config-line)#password routercon

Lab Exercise 5 : Setting Telnet Password

Description: Set the vty password for lines 0 to 4.

Instructions:

1. Enter into global configuration mode


2. Configure a password ‘cisco’ that will enable remote users to telnet into vty ports 0-4

R1>enable
R1#configure terminal
R1(config)#line vty 0 4
R1(config-line)#password cisco

Lab Exercise 6 : Setting Auxiliary Password to Router

Description: In this exercise, setting Auxiliary password to a router is being showcased.


Like the console, Auxiliary Port is a physical port on every router and it is used for
administrative console
dial up access to the router.

Instructions:

1. Enter into global configuration mode


2. Type line aux ? to configure the auxiliary password
3. Enter login command and set auxiliary password as admin

R1>enable
R1#config t
R1(config)#line aux ?
R1(config)#line aux 0
R1(config-line)#login
R1(config-line)#password admin

Lab Exercise 7 : Copy Running Configuration to Startup Configuration

Description: You will practice viewing running configuration, copying running configuration
to startup configuration etc. in this exercise.

Copyright © 2002-2015 CertExams.com


a. Show running-config is the command which displays the current running active
configuration in memory.

b. Show startup-config displays the configuration stored in NVRAM

c. Copy running-config startup-config or copy run start command copies the current
active configuration to NVRAM.

d. Erase startup-config will enable you to completely delete all configurations on the router
so that you can start from scratch. Type this command to delete the configuration file in
NVRAM.

Instructions:

1. Enter into privileged mode


2. Show the active configuration in memory
3. View the configuration stored in NVRAM
4. Copy the active configuration to NVRAM
5. View the configuration stored in NVRAM
6. Issue the command to delete the configuration file in NVRAM
7. Then view the configuration stored in NVRAM

R1>enable
R1#show running-config
R1#show startup-config
R1#copy running-config startup-config
R1#show startup-config
R1#erase startup-config
R1#show startup-config

Lab Exercise 8: Bringing-up a router Interface

Description: By default, an interface will be in shut-down state. We need to issue no


shutdown command to bring-up the interface. Notice that the show interfaces command
shows that the line protocol is up indicating that the interface is now active (sending and
receiving packets).

Instructions:

1. View the information about interface serial 0


2. Bring serial 0 to no shutdown state
3. Now view the state of the interface serial 0

R1>enable
R1#show interfaces serial 0
R1#configure terminal

Copyright © 2002-2015 CertExams.com


R1(config)#interface serial 0
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#exit
R1#show interfaces serial 0

Lab Exercise 9 : Telnet

Description: This lab is to learn establishing a telnet session between two routers.

Instructions:

1. Configure R1 and then set the hostname to Router1. Use the command line vty 0 4 to
access telnet lines
2. Configure the router to require the use of login and password
3. Configure cisco as the password that will be used to establish a telnet session
4. Now, assign the IP address of 192.168.100.2 255.255.255.0 to Router1’s Ethernet 0
interface, and enable the interface
5. Connect to R2 and set its host name to Router2 , then access its Ethernet 0 interface and
assign its IP address to 192.168.100.1 255.255.255.0 and enable it
6. From Router2, telnet into Router1’s Ethernet 0 interface
7. A password will be prompted, enter the password as cisco, now the host name changes
from Router2 to Router1 which indicates a telnet session has been established
8. Type the show sessions command on Router2 to view all the active telnet sessions
9. Type the command resume and type the number of session to resume, now the host name
changes to Router1
10. Now go back to Router2 and disconnect the session using disconnect command

R1>
R1>enable
R1#configure terminal
R1(config)#hostname Router1
Router1(config)#line vty 0 4

Copyright © 2002-2015 CertExams.com


Router1(config-line)#
Router1(config-line)#login
Router1(config-line)#password cisco
Router1(config-line)#exit
Router1(config)#interface ethernet 0
Router1(config-if)#ip address 192.168.100.2 255.255.255.0
Router1(config-if)#no shut

R2>
R2>enable
R2#configure terminal
R2(config)#hostname Router2
R2(config)#interface ethernet 0
Router2(config-if)#ip address 192.168.100.1 255.255.255.0
Router2(config-if)#no shutdown
Router2(config-if)#end
Router2#telnet 192.168.100.2

Password:
Router1>
Router1>Press CTRL+SHIFT,6 then press X
Router2#show sessions
Router2#resume 1
Router1>Press CTRL+SHIFT,6 then press X
Router2#
Router2#disconnect 1

Lab Exercise 10: TFTP

Description : In this lab exercise, we will be configuring WS1 as a TFTP Server. Then we
shall back up router R1's configuration and restore it to the TFTP Server.

Instructions :

1. Configure WS1 to have an IP Address of 192.168.200.2 255.255.255.0 and a default-


gateway of 192.168.200.1. (The WS1 is automatically enabled to be a TFTP Server)
2. Ping WS1 from R1
3. On R1, copy your running configuration to the TFTP Server. Enter the IP Address of the
TFTP Server (192.168.200.2) when prompted and also enter the filename when prompted
4. Now restore the configuration you saved on the TFTP Server to NVRAMon R1. Determine
whether R1’s NVRAM is currently empty by issuing show startup-config command
5. Restore the configuration from TFTP Server to NVRAM on R1 by issuing appropriate
copy command (Enter WS1’s IP Address and previously saved file name when prompted)
6. Issue show startup-config command to view the restored configuration file in
NVRAM

WS1:ip address 192.168.200.2 255.255.255.0


WS1:ip default-gateway 192.168.200.1

Copyright © 2002-2015 CertExams.com


R1>enable
R1#con ter
R1(config)#int e 0
R1(config-if)#ip address 192.168.200.1 255.255.255.0
R1(config-if)#no shut
R1(config-if)#end
R1#
R1#ping 192.168.200.2
R1#copy running-config tftp
R1#show startup-config
R1#copy tftp startup-config
R1#show startup-config

Lab Exercise 11 Configuring Static Routes

Description: Configure static route 172.16.1.0 mask 255.255.255.0 with next hop address of
172.16.2.1.

Syntax: ip route prefix mask {address|interface} [distance]


prefix mask: It is the ip route prefix and mask for the destination.
address|interface: Use either the next hop router ip or the local router outbound interface
used to reach the destination.

distance: It is the administrative distance and an optional parameter.

Instructions:

1. Enter into Global Configuration Mode


2. Disable IP Routing
3. Re-enable IP Routing
4. Configure a static route with destination sub network number as 172.16.1.0,
subnet mask as 255.255.255.0,and IP address of the next-hop router in the destination path to
172.16.2.1

R1>enable
R1#configure terminal
R1(config)#no ip routing
R1(config)#ip routing
R1(config)#ip route 172.16.1.0 255.255.255.0 172.16.2.1

Lab Exercise 12 : Configuring Default Route

Description: ip default-gateway command is used when ip routing is disabled on a Cisco


router. The ip default-network and ip route 0.0.0.0 0.0.0.0 commands are used to set the
gateway of last resort on Cisco routers that have ip routing enabled.

Command syntax:

Copyright © 2002-2015 CertExams.com


1. ip default-gateway <ip address>
Ex: ip default-gateway 192.168.14.2
2. ip default-network <ip address>
Ex: ip default-network 192.168.1.0
3. ip route 0.0.0.0 0.0.0.0 <ip-address>
Ex: ip route 0.0.0.0 0.0.0.0 192.168.5.1
Here 192.168.5.1 is the gateway of last resort to network 0.0.0.0

Instructions:

1. Enter into Global Configuration Mode


2. Set the default route as

R1>enable
R1#configure terminal
R1(config)#ip route 0.0.0.0 0.0.0.0 192.168.5.1

Lab Exercise 13 : Implement and Verfiy Static Routes

Description : This lab demonstrates configuring and implementing static routes in a network

Instructions

1. Configure R1 Ethernet interface with IP Address 192.168.201.1/24 and serial interface


with IP Address 192.168.1.1/24 and enable the interfaces
2. Configure R2 Ethernet interface with IP Address 192.168.200.1/24 and serial interface
with IP Address 192.168.1.2/24 and enable the interfaces
3. Configure workstations WS1 and WS2 with the IP addresses and default-gateways as
shown in the figure
4. Ping from R1 to R2, R1 to WS1 and R2 to WS2 and see that they are successful
5. Ping from WS1 to WS2 and see that it fails
6. Now set up a static route on R1 and R2 using ip route command and by specifying the
appropriate destination address and next hop address
7. Now ping from WS1 to WS2 and see that it is success and also verify that any device can
ping any other device

R1>enable
R1#configure terminal
R1(config)#int e 0
R1(config-if)#ip address 192.168.201.1 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#exit

Copyright © 2002-2015 CertExams.com


R1(config)#int s 0
R1(config-if)#ip address 192.168.1.1 255.255.255.0
R1(config-if)#no shutdown

R2>enable
R2#configure terminal
R2(config)#int e 0
R2(config-if)#ip address 192.168.200.1 255.255.255.0
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#int s 0
R2(config-if)#ip address 192.168.1.2 255.255.255.0
R2(config-if)#no shutdown
WS1:ip address 192.168.201.2 255.255.255.0
WS1:ip default-gateway 192.168.201.1
WS2:ip address 192.168.200.2 255.255.255.0
WS2:ip default-gateway 192.168.200.1

R1#ping R2
R1#ping WS1
R2#ping WS2

WS1:ping 192.168.200.2

R1(config)#ip route 192.168.200.0 255.255.255.0 192.168.1.2

R2(config)#ip route 192.168.201.0 255.255.255.0 192.168.1.1

WS1:ping 192.168.200.2

Now all devices can ping any other device

Note:Static routes are those which are manually configured on router and which specifies a
path the router should use to reach a destination, typically for smaller networks.

Command for configuring static route is

R1(config)#ip route destination_network_# [subnet_mask]


IP_address_of_next_hop_neighbor

Lab Exercise 14 : Implement and Verify Default Routes

Description : This lab demonstrates configuring and implementing default routes in a


network

Copyright © 2002-2015 CertExams.com


Instructions

1. Configure R1 Ethernet interface with IP Address 192.168.201.1/24 and serial interface


with IP Address 192.168.1.1/24 and enable the interfaces
2. Configure R2 Ethernet interface with IP Address 192.168.200.1/24 and serial interface
with IP Address 192.168.1.2/24 and enable the interfaces
3. Configure workstations WS1 and WS2 with the IP addresses and default-gateways as
shown in the figure
4. Ping from R1 to R2, R1 to WS1 and R2 to WS2 and see that they are successful
5. Ping from WS1 to WS2 and see that it fails
6. Now set up default routes on R1 and R2 using ip route command by specifying appropriate
next hop address
7. Ping from WS1 to WS2 and see that it is successful and also verify that every device can
ping any other device

R1>enable
R1#configure terminal
R1(config)#int e 0
R1(config-if)#ip address 192.168.201.1 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#int s 0
R1(config-if)#ip address 192.168.1.1 255.255.255.0
R1(config-if)#no shutdown

R2>enable
R2#configure terminal
R2(config)#int e 0
R2(config-if)#ip address 192.168.200.1 255.255.255.0
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#int s 0
R2(config-if)#ip address 192.168.1.2 255.255.255.0
R2(config-if)#no shutdown

WS1:ip address 192.168.201.2 255.255.255.0


WS1:ip default-gateway 192.168.201.1

WS2:ip address 192.168.200.2 255.255.255.0


WS2:ip default-gateway 192.168.200.1

R1#ping R2
R1#ping 192.168.201.2

R2#ping 192.168.200.2

WS1:ping 192.168.200.2

Copyright © 2002-2015 CertExams.com


R1(config)#ip route 0.0.0.0 0.0.0.0 192.168.1.2

R2(config)#ip route 0.0.0.0 0.0.0.0 192.168.1.1

WS1:ping 192.168.200.2

Now all devices can ping any other device

Note:Default route specifies a path the router should use if it does’nt know how to reach the
destination.

Syntax to configure a default route is


R1(config)#ip route 0.0.0.0 0.0.0.0 IP_address_of_next_hop_neighbor
Network 0.0.0.0 represents all networks and a mask of all 0’s represent all hosts in the
specified network

Lab Exercise 15 : Configuring Loopback Interface

Description: The purpose of this exercise is to configure a loop back interface and test it for
connectivity.The loopback interface is a logical interface internal to a router. It is not
connected to any other device. A loopback interface is UP as long as the router is up and
running. It is useful in managing a router as there will always be at least one interface
available on the router, irrespective of other physical interfaces.
The command used for assigning loopback interface is:
Router(config)#interface loopback <number>
The number can be between 0 and 2147483647

A loopback interface is automatically put in "no shutdown" state when created. However, you
need to assign an ip address to use a loopback interface.

Instructions:

1. Configure s0 on R1 with ip address and subnet mask as shown in the diagram

Copyright © 2002-2015 CertExams.com


2. Configure s0 and loopback 1 on router R2 as shown in the diagram
3. Ping loopback 1 and verify connectivity

R1>enable
R1#conf term
R1(config)# int ser 0
R1(config-if)#ip address 192.168.1.1 255.255.255.0
R1(config-if)#no shutdown
R1(Config-if)#end
R1#

R2>enable
R2#conf term
R2(config)#int ser 0
R2(config-if)#ip address 192.158.1.2 255.255.255.0
R2(config-if)#no shutdown
R2(config-if)#exit
R2(config)#interface loopback 1
R2(config-if)#ip address 192.168.1.10 255.255.255.0
R2(config-if)#end
R2#
R1>enable
R1#ping 192.168.1.10

Lab Exercise 16 : Connectivity Tests with Traceroute

Description: Use the traceroute command to map the IP addresses that a packet travels
through to get from one device to another

Instructions:

Copyright © 2002-2015 CertExams.com


1. Configure routers to the specification given below
2. Enable RIP routing across all three routers
3. From Router1, ping the directly connected routers and their interfaces which are Router2
ethernet0 and Router3 serial 0
4. You should be able to ping non-directly connected routers as RIP routing is enabled
5. Next , the traceroute command is entered which helps in determining the path of a packet
to its destination.

Configure Routers 1, 2, 3 to the specifications given


Device Router1 Router2 Router3
Hostname Router1 Router2 Router3
Ethernet 0 192.168.10.2 /24 192.168.10.1 /24
Serial 0 192.168.20.1 /24 192.168.20.2/24

Router1#conf term
Router1(config)#router rip
Router1(config-router)#network 192.168.10.0
Router1(config-router)#network 192.168.20.0
Router1(config-router)#exit
Router1(config)#exit
Router1#

Router2#conf term
Router2(config)#router rip
Router2(config-router)#network 192.168.10.0
Router2(config-router)#exit
Router2(config)#exit
Router2#

Router3#conf term
Router3(config)#router rip
Router3(config-router)#network 192.168.20.0
Router3(config-router)#exit
Router3(config)#exit
Router3#

Router1#ping 192.168.10.1
Router1#ping 192.168.20.2

Router2#ping 192.168.20.2
Router2#traceroute 192.168.20.2

Lab Exercise 17 : Configuring RIP

Description: This exercise helps in understanding RIP Configuration. The router rip
command selects RIP as the routing protocol. The network command assigns a major network

Copyright © 2002-2015 CertExams.com


number that the router is directly connected to. The RIP routing process associates interface
addresses with the advertised network number and begins RIP packet processing on the
specified interfaces.

Instructions:

1. Enter into Global Configuration Mode


2. Enable RIP routing on the router
3. Associate network 1.0.0.0 in the RIP routing process

R1>enable
R1#configure terminal
R1(config)#router rip
R1(config-router)#network 1.0.0.0

Lab Exercise 18 : Configuring cisco router as a DHCP Server

Description : This lab exercise demonstrates the required commands for DHCP Server
configuration on a cisco router.

Instructions :

1. Issue service dhcp command on router R1 that enables and disables the DHCP server
feature on router. By default, this is enabled.
2. Create an addressing pool for dhcp.
3. Issue network command that specifies the range of IP addresses to be assigned to
clients.
4. Assign the domain-name to the client.
5. In order to resolve Host names to IP addresses, client computers require the IP addresses
of DNS (Domain Name Service) servers. Use dns-server command that allows assigning
upto 8 DNS server addresses to the client, but however in simulator only 1 address is
allowed.
6. Specify the default-router address using default-router command that allows assigning
upto 8 default-gateway addresses to the client for this range of addresses.
7. Specify the duration of the lease, which if omitted results to default 1 day.

R1(config)#service dhcp
R1(config)#ip dhcp pool newpool
R1(config-dhcp)#network 192.168.2.0 255.255.255.0
R1(config-dhcp)#domain-name xyz.com
R1(config-dhcp)#dns-server 192.168.2.2
R1(config-dhcp)#default-router 192.168.2.1
R1(config-dhcp)#lease 2

Copyright © 2002-2015 CertExams.com


R1(config-dhcp)#exit
R1(config)#

Lab Exercise 19 : DHCP client configuration

Description : This lab exercise demonstrates DHCP client configuration i.e, Configuring
an interface on the router to use DHCP to acquire its IP address.

Instructions :

1. Before proceeding with the DHCP client configuration, make sure that DHCP server is
configured as shown in the previous lab exercise.
2. Enter into interface configuration mode on router R2 with appropriate commands.
3. Use the command "ip address dhcp" that configures the specified interface to acquire its
IP Address from the DHCP server, verify the same using "show ip interface brief" on the
router.

R2>enable
R2#configure terminal
R2(config)#interface e 0
R2(config-if)#ip address dhcp
R2(config-if)#exit
R2(config)#exit
R2#show ip interface brief

Lab Exercise 20 : Configuring two DHCP clients and DHCP verification


commands

Description : This lab exercise demonstrates DHCP server configuration and DHCP client
configuration on two routers and also shows the verification commands both on the server
and the client.

Copyright © 2002-2015 CertExams.com


Instructions

1. Issue service dhcp command on router R1 that enables DHCP server feature on router
2. Create an addressing pool for dhcp called pool1.
3. Isssue network command that specifies the range of IP addresses to be assigned to
clients. Use 192.168.4.0 255.255.255.0 in this lab.
4. Assign the domain-name "sample.com" to the client.
5. Assign the IP Address of the DNS-server and Default-router, say 192.168.4.2 and
192.168.4.5 respectively
7. Set the duration of the lease to 4 days.
8. On router R2 and R3, enter into interface confiuration mode and issue the command "ip
address dhcp" that configures the interfaces to acquire IP Addresses from the DHCP
server.
9. Use "show interfaces" or "show ip interface brief" command on R2 and R3 to verify the
addresses acquired from the server.
10. Use "show ip dhcp binding" command on router R1 i.e, server, to view the addresses
assigned to clients.
11. Use "clear ip dhcp binding <client_address>" on the server R1 to clear the specific
address assigned to client or "clear ip dhcp binding *" to remove all the addresses assigned
to clients.
12. Use "no ip address dhcp" command on clients R2/R3 in interface configuration mode
to unconfigure an address assigned on it by the DHCP server.

R1(config)#service dhcp
R1(config)#ip dhcp pool pool1
R1(config-dhcp)#network 192.168.4.0 255.255.255.0
R1(config-dhcp)#domain-name sample.com
R1(config-dhcp)#dns-server 192.168.4.2
R1(config-dhcp)#default-router 192.168.4.5
R1(config-dhcp)#lease 4
R1(config-dhcp)#exit
R1(config)#

Copyright © 2002-2015 CertExams.com


R2>enable
R2#configure terminal
R2(config)#interface e 1
R2(config-if)#ip address dhcp
R2(config-if)#exit
R2(config)#exit
R2#show ip interface brief

R3>enable
R3#configure terminal
R3(config)#interface e 0
R3(config-if)#ip address dhcp
R3(config-if)#exit
R3(config)#exit
R3#show interfaces

R1#show ip dhcp binding

Note: DHCP provides dynamic addressing information to hosts on a network. It allows


devices to dynamically acquire their addressing information. The main purpose of the
DHCP server is to provide IP configuration parameters to hosts such as the default
gateway, domain name, Domain Name System – DNS.
DHCP uses UDP protocol. Port 67 for requests and 68 for replies.
Note that as per cisco 12.2 release, only ethernet interfaces are supported for DHCP.

b). Router Chapter-end Questions & Answers

1. Which of the following are routing protocols? [Select all that apply]
a) RIP
b) TCP
c) OSPF
d) IP

2. What is the maximum hop count supported by RIP?

a) 5
b) 15
c) 255
d) 512

3. You intend to connect your PC directly to a Cisco router. Which of the following allow you
to connect to the router directly?

Copyright © 2002-2015 CertExams.com


a) Connect PC’s COM port to the router’s console port using a patch cable.
b) Connect PC’s COM port to the router’s console port using a straight through
cable
c) Connect PC’s COM port to the router’s console port using a rollover cable
d) Connect PC’s Ethernet port to the Router’s Ethernet port using a straight
through cable.

4. On a Cisco router, you are working in User EXEC (>) mode and want to enter privileged
mode (at # prompt). Which command would you type at the privileged mode prompt?
a) begin
b) exit
c) enable
d) end

5. On a router running Cisco IOS, what is the command used for copying the configuration
from NVRAM to a running RAM?

a) copy startup running


b) copy startup-config running-config
c) copy running-config startup-config
d) write memory

6. The output of “show interface s0/0” on a router (say, RouterA) is given below. The output
points to some problem with the interface. What is the likely problem?

RouterA#show interface s0/0


Serial0/0 is down, line protocol is down Hardware is QUICC Serial Internet
address is 213.5.3.7/16 MTU
1500 bytes, BW 1544 Kbit, DLY 20000 usec, rely 255/255, load 1/255
…irrelevant output omitted…

a) There is a protocol mismatch between the communication partners on


the interface.
b) There is some Layer 1 problem
c) The bandwidth was not set correctly
d) The IP address is illegal

7. Which cable do you use for connecting a Cisco router console port to a workstation?

a) A straight-through cable
b) A cross-over cable
c) Patch cable
d) Rolled cable

8. On a Cisco router, you want to see the IP address assigned to interface s0. Which command
will display the IP address assigned to serial interface s0?

Copyright © 2002-2015 CertExams.com


a) show controllers s0
b) show running-config
c) disp controllers s0
d) disp running-config

9. Which of the following statements are true about “debug” command on a Cisco router?
(Choose 2 best answers)
a) Debug command output takes priority over other network traffic
b) The command “undo debug” is used to undo any previous debug commands
c) The “debug all” command generates more output than any other debug command.
d) It is always recommended to use “debug all” commands instead of selectively
issuing debug command.

10. Which of the following is the purpose of subnetting?


a. Increase network bandwidth above the specified level
b. Decrease the network congestion
c. To enable supernetting
d. Servers require subnets

11. You have configured IP RIP on your network. You want to see the routing table. What is
the command you can use for this purpose?
a) show IP protocol
b) show IP route
c) show IP interface
d) debug IP RIP

12. You are configuring a router running Cisco IOS with a hostname of "Router". You want to
change the hostname to "RouterA". What is(are) the command(s) used for doing this?
a) Router#hostname RouterA
b) Router#config t Router(config)#hostname RouterA
c) Router#hostname Router RouterA
d) Router#config t Router(config)#hostname Router RouterA

13. You are connecting the Auxiliary port on a Cisco access server (DTE) to a modem (DCE).
Which of the following is correct combination of cables? [See the Image]

a) Rolled RJ-45 and Rolled DB-25 adapter.


b) Rolled RJ-45 and straight DB-25 adapter.
c) Straight RJ-45 and straight DB-25 adapter.
d) Straight DB-25 cable and straight DB-25 adapter.

Copyright © 2002-2015 CertExams.com


14. You want to connect your router through a modem. Which port do you use?
a) Console port
b) Auxiliary port
c) vty
d) V.35 interface

15. A router connecting two subnets was replaced with a new router. The two subnets are
connected to 2 computers each as shown below:

Subnet 1 Subnet 2:
Computer A: Computer C:
IP address: 202.54.29.6 IP address: 202.54.28.6
Subnet mask: 255.255.255.0 Subnet mask: 255.255.255.0
Default gateway: 202.54.29.1 Default gateway: 202.54.28.1
Computer B: Computer D:
IP address: 202.54.29.7 IP address: 202.54.29.7
Subnet mask: 255.255.255.0 Subnet mask: 255.255.255.0
Default gateway: 202.54.29.1 Default gateway: 202.54.28.1

What should be the IP addresses of the router interface connecting to subnet 1?

a. 202.54.29.1
b. 202.54.29.6
c. 202.54.28.1
d. 255.255.255.0

PLEASE REFER THE ANSWERS BELOW

1. Ans: a and c
Explanation : Routing protocols job is to maintain routing tables and route packets
appropriately. Examples of routing protocols are RIP, IGRP, EIGRP,
OSPF. Routers can support multiple independent routing protocols and can update and
maintain routing tables for each protocol independently.
Routed protocols are used to transport user traffic from source node to destination node.
Examples of routed protocols are IP, IPX, AppleTalk.
2. Ans. b
Explanation : Maximum hop count supported by RIP is 15. A hop count of 16 or greater is
considered unreachable.
3. Ans. C
Explanation : There are different types of cables:
1. Straight through cable: This is also known as patch cable. A straight through cable is used
to connect a computer to a hub or a switch.

Copyright © 2002-2015 CertExams.com


2. Crossover cable: A crossover cable is used to connect one computer A to the other
computer B without using a switch or hub.
3. Rollover cable: A rollover (also known as console cable) is used to connect to routers for
configuration purpose.
Also, you can’t connect the Ethernet port on PC to another Ethernet port on a router using a
straight through cable. You need crossover cable for this
purpose. Also, the PC need to have a network card, and appropriate networking protocol
stack properly installed and configured.
4. Ans: c
Explanation :
Routers and switches usually have different user levels. A user logged in at each level will
have certain privileges. For example, Cisco router include the following modes:
1. User EXEC mode:- This is the LOWEST level of access. This allows examination of
router status, see routing tables, and do some diagnostics. However, you cannot change the
router configuration, view the configuration files, or control the router in any way. The
prompt in this mode is "Router>".
2. Privileged (enable) EXEC mode:- This mode allows you to have all the
privileges of EXEC (user) mode plus commands that enable you to view configuration files,
change the router configuration, perform troubleshooting that could potentially disrupt traffic.
The default prompt for this mode is "Router#".
When you are working in the privileged mode (at # prompt), you can get back to user mode
by typing "disable" at the "#" prompt.
5. Ans: b
Explanation : Key word: COPY <source> <destination>This command copies configuration
information to specified location.
The following are some frequently used COPY commands:
COPY RUNNING-CONFIGURATION STARTUP-CONFIGURATION (alternatively, you
can use an older version of the command, WRITEMEMORY): This command saves the
current configuration to NVRAM .Alternatively, we can issue the command using short form:
COPY RUNNING STARTUP - Copies configuration from RAM to NVRAMCOPY
STARTUP RUNNING - This command merges configuration from COPY FLASH TFTP -
Copies current IOS from router flash memory toTFTP server. COPY TFTP FLASH - Copies
image file from TFTP server to flash. This is
Used to upgrade the IOS image file to a newer version, or if your IOS image becomes
corrupt.
6.Ans b
Explanation : The first line “Serial0/0 is down, line protocol is down” says that the Serial 0/0
is down. It usually means a hardware failure on the router interface. Therefore, it is
recommended to check Layer 1 (Physical layer) parameters. If the Physical layer is okay, and
if there is any problem with protocol matching, you usually get the error “Serial0/0 is up, line
protocol is down”.

Copyright © 2002-2015 CertExams.com


7. Ans. d
Explanation : 1. A straight-through cable is what you normally use to connect a PC to a hub
or switch
2. A crossover cable is a special type of Ethernet cable used to connect a PC to a PC or a
switch to a switch
3. A rolled cable isn’t actually an Ethernet cable, but looks like one. It is used to connect a PC
to a switch’s console port, for management. This cable is normally used when configuring a
Cisco switch or a router for the first time.
8. Ans. b
Explanation : SHOW command is extensively used for seeing the status and configuration
information of the router.
Some of the frequently used commands are:
SHOW RUNNING-CONFIGURATION -This command displays the router's active
configuration file, passwords, system name, and interface settings, interfaces IP addresses etc.
SHOW INTERFACE - Shows status and configuration information of the local interfaces.
The first line says something like “TokenRing1 is up, lineprotocol is up”. The first part
“TokenRing1 is up” describes the physical layer components such as electrical cabling and
signaling are OK. The second part “line protocol is up” means that the router is detecting
keep-alive messages.The router may be put into administratively down status, at which point
the linewould read, “TokenRing1 is administratively down, line protocol is down.”
SHOW INTERFACE SERIAL 0 - Shows the serial 0 configuration.
SHOW INTERFACES - Displays statistics for all interfaces configured on the switch.
SHOW PROCESS - Displays a router’s CPU utilization.
SHOW CONFIG - Displays information on the startup configuration.
SHOW VERSION - Displays information about the system hardware
(RAM/ROM), software version, names of configuration files, and boot-images.This
command will also show the current configuration register value.
9.Ans. a and c
Explanation : Debugging output takes priority over other network traffic. Also, the “debug
all” command generates more output than any other debugcommand, and it can severely
affect the router's performance. Practically in allcases, it is best to use more specific debug
commands.
10 Ans.b
Explanation : The following are the advantages of subnetting:
1. The network congestion improves
2. IP addresses can be efficiently used
3. Security can be improved (Since it requires a router to switch traffic from one subnet to
another, only hosts on a particular subnet can see the packets)

Copyright © 2002-2015 CertExams.com


11.Ans. b
Explanation: Show IP protocol: This command will show information on RIP timers
including routing update timer (30sec default), hold-down timer (default 180sec). It also
displays the number of seconds due for next update (this is fraction of update timer). This
command also gives the network number for which IP RIP is enabled, Gateway, and the
default metric.
Show IP route: This command will display the IP routing table entries. In addition, it
displays the Gateway of last resort (if one is assigned). It also displays the codes used for
various types of routes. Some of the important codes are:
C: Directly connected
S: Statically connected
I: IGRP
R: RIP
Show IP interface: This command shows you interface-wise information such as IP address
assigned to each interface, whether the interface is up, MTU etc.Debug IP RIP: Debug IP RIP
will turn the RIP debugging ON. This willdisplay a continuous list of routing updates as they
are sent and received. Thisleads to lot of overhead, which is the reason that you use "undebug
ip rip" toturn-off debugging as soon as you finish with debugging.
12.Ans. b
Explanation : You need to enter global configuration mode to change thename of the router.
The three different modes are:
Mode Prompt
1. User EXEC mode ... Router>
2. Privileged EXEC mode ... Router#
3. Global Configuration mode ... Router(Config)#
Global configuration mode allows you to perform tasks that affect the entire
router, such as naming the router, configuration of banner messages, enabling
routed protocols, and generally anything that affects the operation of the entire
router.When you first switch on a router, you enter Setup mode. Setup mode is
different from configuration mode in that setup mode appears when there is no
configuration file present. Upon entering setup mode, you can supply some
basic configuration parameters to Cisco router.
13. Ans. c
Explanation : In normal course, a DTE device is expected to communicate with a DCE
device. In such event, the connections between the DCE and DTE devices is straight.
However, if the communication need to happen between two DTEs or two DCEs, the signals
need to be rolled. This is achieved by rolling the pins in the cable or in the DB-25 adapter.
Typically, a DTE to DTE communication can be achieved by:

Copyright © 2002-2015 CertExams.com


1. By connecting DTE to a rolled RJ-45 cable to a straight DB-25 adapter to
DTE, OR
2. By connecting a straight RJ-45 cable to a rolled DB-25 adapter to DTE.
Similarly, a DTE to DCE communication can be achieved by:
1. Connecting a DTE to a straight RJ-45 cable to a straight DB-25 adapter to DCE, OR
2. Connecting a rolled RJ-45 cable to a rolled DB-25 adapter to DCE.
Note that rolling the signals twice is same as using straight through cables or adapters without
any rolling at all.
14.Ans. b
Explanation: The Cisco router can be configured from many locations.
1. Console port: During the initial installation, you configure the router from a console
terminal connected to the "Console port" of the router.
2. Virtual Terminals (vty): A virtual terminal (vty) is typically accessed through Telnet. A
router can be accessed through vty after the initial installation in the network. There are five
virtual terminals, namely, vty0,vty1,vty2,vty3,vty4.
3. Auxiliary Port: You can configure a router through auxiliary port.Typically, a modem is
used to configure the modem through aux port.
4. TFTP Server: Configuration information can be downloaded from a TFTP server over the
network.
5. NMS (Network Management Station): You can also manage router configuration through
NMS such as CiscoWorks or HP OpenView.
15. Ans:a
Explanation: The router interface connecting to subnet 1 would be the default gateway to
subnet 1, i.e 202.54.29.1

D. Switch Configuration and Troubleshooting Labs

a). Lab Exercises

Lab Exercise 1 : Switch 2950 Console Password Assignment

Description: Select 2950 switch using the N/W Diagram button in the router simulator.
Assign password "consolepass" to line console 0.
Use the line console 0 command, followed by the password and login subcommands, to
require login and establish a login password on the console terminal or on a VTY port. By
default, login is not enabled on the console or on VTY ports.

Instructions:

Copyright © 2002-2015 CertExams.com


1. Enter global configuration mode
2. Enter line sub-configuration mode
3. Set the console password to "consolepass"
4. Exit line configuration mode

2950>enable
2950#configure terminal
2950(config)#line console 0
2950(config-line)#password consolepass
2950(config-line)#exit

Lab Exercise 2 : Switch 2950 VTY password assignment

Description: To assign vty password for a switch for vty lines 0 to 15, choose 2950 switch
from the N/W diagram, and use the following commands. Use the line vty command,
followed by the password and login subcommands, to require login and establish a login
password on the VTY port. By default, login is not enabled on the console or on VTY ports.

Note: The password "virtualpass" is assumed. You can use any other password.
Instructions:

1. Enter global configuration mode


2. Enter line sub-configuration mode for virtual terminals 0 to 15
3. Assign virtual terminal password "virtualpass" to lines 0-15
4. Enable the switch to use the password for telnet access
5. Exit line sub-configuration mode
6. Exit to privileged mode

2950>enable
2950#configure terminal
2950(config)#line vty 0 15
2950(config-line)#password virtualpass
2950(config-line)#login
2950(config-line)#exit
2950(config)#

Lab Exercise 3: Switch 2950: Setting Privileged Password

Description: In this exercise, you assign enable password, and secret password on a 2950
switch. Select the switch by going to the network diagram, and selecting appropriate device
from the drop down box.

Instructions:

1. Enter global configuration mode


2. Set password for enable password and enable secret
3. Exit from the global configuration mode

Copyright © 2002-2015 CertExams.com


2950>enable
2950#configure terminal
2950(config)#enable password epass
2950(config)#enable secret spass
2950(config)#end

Lab Exercise 4: Enable Fast Ethernet Interface on a 2950 switch

Description: Here you enter interface configuration mode on a 2950 switch and make the
interface protocol up. Choose 2950 switch by going to the network diagram, and selecting
appropriate device.

Instructions:

1. Enter global configuration mode


2. Enter interface sub-configuration mode for Ethernet slot#0 and port#1
3. Shutdown the interface
4. Exit to privileged mode

2950>enable
2950#configure terminal
2950(config)#interface fastethernet 0/1
2950(config-if)#no shutdown
2950(config-if)#end

Lab Exercise 5: Initial Switch configuration

Description: This exercise helps in examining the default configurations of a switch and
makechanges to the configuration accordingly as required and view the changes.

Instructions:

1. Enter into privileged mode of a switch


2. Enter global configuration mode
3. Assign a name to the switch by setting its hostname
4. View the version of IOS running on the switch
5. View the running-configuration on the switch
6. View the interfaces on the switch initially
7. View the interfaces on the switch and their IP’s by issuing show ip interface command
8. Enter into global configuration mode and assign an ip address to the switch’s interface and
make the interface up
9. Exit to privileged mode
10. View the IP Address configured by issuing show ip interface brief and show interfaces
command

2950>enable
2950#configure terminal

Copyright © 2002-2015 CertExams.com


2950(config)#hostname SW1
SW1(config)#exit
SW1#show version
SW1#show running-config
SW1#show interfaces
SW1#show ip interface brief
SW1#configure terminal
SW1(config)#interface vlan 1
SW1(config-if)#ip address 198.10.2.1 255.255.255.0
SW1(config-if)#no shutdown
SW1(config-if)#exit
SW1(config)#exit
SW1#show ip interface brief
SW1#show interfaces

Lab Exercise 6 : Basic Switch Interface Configuration

Description: You configure a few switch ports for duplex. Choose 2950 switch from the n/w
diagram and exit. The following commands are used for configuring the switch ports.

Instructions:

1. Set the inter-switch communication to full-duplex on Switch S1, port fa 0/26


2. Set the port speed to 100 mbps, and inter-switch communication to full-duplex on Switch
S2 ports fa 0/1, fa 0/2, and fa 0/3
3. Exit to privileged mode
4. Save the configuration to NVRAM

2950>enable
2950#configure terminal
2950(config)#interface fa 0/1
2950(config-if)#duplex full
2950(config-if)#exit
2950(config)#interface fa 0/3
2950(config-if)#duplex full
2950(config-if)#speed 100
2950(config-if)#end
2950#copy running-config startup-config

Lab Exercise 7 : Enabling STP( Spanning Tree Protocol)


Description : This lab exercise demonstrates the necessary commands to enable and disable
spanning tree protocol on a switch.

Instructions:

1. Enter into configuration mode on SW1


2. Issue command "spanning-tree vlan <vlan-num> to enable spanning-tree on a specified
VLAN

Copyright © 2002-2015 CertExams.com


3. Issue no form of the command "spanning-tree vlan <vlan-num> to disable spanning-tree
on the VLAN specified.

SW1>enable
SW1#configure terminal
SW1(config)#spanning-tree vlan 1
SW1(config)#no spanning-tree vlan 1
SW1(config)#exit
SW1#

Note: Spanning Tree Protocol (STP) is enabled by default on modern switches. It is


possible to disable or enable the Spanning Tree Protocol (STP) when required.

Lab Exercise 8 : Configuring Root Switch

Description : This lab exercise demonstrates the necessary commands to configure the root
switch.

Instructions:

1. Enter into configuration mode on SW1


2. Issue the command "spanning-tree vlan <vlan-num> root" that modifies the switch priority
from the default 32768 to a lower value to allow the switch to become the root switch for
VLAN1
3. Verify the configuration using “show spanning-tree” command.

SW1>enable
SW1#configure terminal
SW1(config)#spanning-tree vlan 1 root
SW1(config)#exit
SW1#show spanning-tree

Lab Exercise 9 : Configuring Port-Priority

Description : This lab exercise demonstrates configuring port-priority for an interface on a


switch.

Instructions:

1. Enter into interface configuration mode on SW1


2. Issue the command "spanning-tree port-priority <priority-value> to configure port-priority
on the specified interface
3. Use the command "show spanning-tree vlan <vlan-id>" to verify the configuration

SW1>enable
SW1#configure terminal
SW1(config)#interface fa 0/1

Copyright © 2002-2015 CertExams.com


SW1(config-if)#spanning-tree port-priority 64
SW1(config-if)#exit
SW1(config)#exit
SW1#show spanning-tree vlan 1

Note: Port-Priority can be between 0 and 255, default is 128, the lower the number, higher is
the priority.

Lab Exercise 10 : Configuring the switch priority of a VLAN

Description: This exercise demonstrates the command required to configure switch priority
of a VLAN.

Instructions:

1. Enter into configuration mode on SW1


2. Issue the command "spanning-tree vlan <vlan-id> priority <priority-value> to configure
the switch priority of a VLAN and verify the same using “show spanning-tree” command.

SW1>enable
SW1#configure terminal
SW1(config)#spanning-tree vlan 1 priority 12288
SW1(config)#exit
SW1#show spanning-tree

Note: The switch priority can be configured thus making it more likely to be chosen as the
root switch. Priority range is 0 to 61440 in increments of 4096, default is 32768.

Copyright © 2002-2015 CertExams.com


Lab Exercise 11 : Verifying STP

Description: This lab exercise demonstrates the various show commands to verify spanning-
tree protocol.

Instructions:

1. Show spanning-tree command displays the spanning-tree statistics, including information


about the root bridge and port status.
2. Show spanning-tree summary command displays a summary of port states.
3. Show spanning-tree vlan <vlan-id> displays STP information for the specified VLAN.

SW1>enable
SW1#show spanning-tree
SW1#show spanning-tree summary
SW1#show spanning-tree vlan 1

Lab Exercise 12: Basic Switch IP Configuration

Copyright © 2002-2015 CertExams.com


Description: Configure hostname as 2950, and set the switch ip address to 172.16.1.10,
subnetmask 255.255.255.0. Also, set the default-gateway to 172.16.1.2

Instructions:

1. Enter user Exec mode


2. Enter privileged Exec mode
3. Assign the hostname “2950”
4. Assign an ip address 172.16.1.10 255.255.255.0
5. Assign default gateway route 172.16.1.2
6. Exit switch configuration mode

SW1>enable
SW1#configure terminal
SW1(config)#hostname 2950
2950(config)#interface vlan 1
2950(config-if)#ip address 172.16.1.10 255.255.255.0
2950(config-if)#exit
2950(config)#ip default-gateway 172.16.1.2
2950(config)#end

Lab Exercise 13: Configuring 2950 Switch vlan

Description: Configure vlan1 on 2950 switch, and set the ip address to 192.16.2.3 mask
255.255.255.0. Set ip default-gateway to 172.16.2.2. copy running configuration to startup
configuration.

Instructions:

1. Enter privileged exec mode


2. Enter global configuration mode
3. Assign IP address 172.16.2.3 mask 255.255.255.0 on VLAN1
4. Set the default gateway to 172.16.2.2
5. Save the configuration to NVRAM

2950>enable
2950#configure terminal
2950(config)#interface vlan 1
2950(config-if)#ip address 172.16.2.3 255.255.255.0
2950(config-if)#exit
2950(config)#ip default-gateway 172.16.2.2
2950(config)#end
2950#copy running-config startup-config

Lab Exercise 14 : 2950 Trunking Configuration

Description : This exercise concentrates on establishing a trunk-line between the switches.


The command used to configure trunking is switchport mode trunk.

Copyright © 2002-2015 CertExams.com


Instructions :

1. Connect to SW1 and configure fast ethernet interface fa 0/11 on the switch
2. Configure trunking on the switch by issuing command switchport mode trunk
3. Connect to SW2 and configure fast ethernet interface fa 0/11 on the switch
4. Configure trunk line on the switch by issuing switchport mode trunk command
5. Configure WS1 with IP Address 192.168.100.1/24 and WS2 with IP Address
192.168.100.2/24

SW1>enable
SW1#configure terminal
SW1(config)#interface fa 0/11
SW1(config-if)#switchport mode trunk
SW1(config-if)#exit
SW1(config)#exit
SW1#
SW2>enable
SW2#configure terminal
SW2(config)#interface fa 0/11
SW2(config-if)#switchport mode trunk
SW2(config-if)#exit
SW2(config)#exit
SW2#
WS1:ip address 192.168.100.1 255.255.255.0
WS2:ip address 192.168.100.2 255.255.255.0

Lab Exercise 15: Troubleshooting 2950 Switch

Description: Configure switch ip address, default gateway (172.16.2.2), and use ping
command to verify the ip address. Ping default-gateway (192.16.2.2) from the work station.

Instructions:

1. Issue appropriate command to view switch ip address, default gateway, and management
VLAN
2. Enter privileged exec mode
3. Enter terminal configuration mode
4. Correct the configuration and bring up the interface using appropriate commands
5. Use "ping" command from WS22 and verify that the connection to the switch is OK

2950>
2950>enable
2950#configure terminal
2950(config)#interface vlan 1
2950(config-if)#ip address 172.16.2.3 255.255.255.0
2950(config-if)#no shutdown
2950(config-if)#exit

Copyright © 2002-2015 CertExams.com


2950(config)#ip default-gateway 172.16.2.2
2950(config)#end

Lab Exercise 16 : Creating and Deleting 2950 VLAN's

Description : This lab exercise helps in learning the concept of creating VLAN's on a
2950Switch, and deleting them.

Instructions :

1. Enter into privileged mode of SW1 and add vlan’s 20 and 50 by entering into vlan
database mode
2. Enter into global configuration mode of SW1 and add ports 2,3 and 4 to vlan 20 and
check the same using show vlan command
3. Configure WS1 with IP Address 192.168.100.1 255.255.255.0 and WS2 with IP
Address 192.168.100.2 255.255.255.0
4. Enter into vlan database mode of SW1 and issue no vlan command to remove a specific
vlan
5. Issue show vlan command to verify the changes and view the vlan information that has
been set.

SW1>enable
SW1#vlan database
SW1(vlan)#vlan 20
SW1(vlan)#vlan 50
SW1(vlan)#exit
SW1#configure terminal
SW1(config)#interface fa 0/2
SW1(config-if)#switchport access vlan 20
SW1(config-if)#exit
SW1(config)#interface fa 0/3
SW1(config-if)#switchport access vlan 20
SW1(config-if)#exit
SW1(config)#interface fa 0/4
SW1(config-if)#switchport access vlan 20
SW1(config-if)#exit
SW1(config)#exit
SW1#show vlan

WS1:ip address 192.168.100.1 255.255.255.0


WS2:ip address 192.168.100.2 255.255.255.0

SW1>enable

Copyright © 2002-2015 CertExams.com


SW1#vlan database
SW1(vlan)#no vlan 20
SW1(vlan)#exit
SW1#show vlan

Lab Exercise 17 : Configuring VTP on 2950 Switch

Description : This lab exercise demonstrates configuring VTP on a 2950 Switch.

Instructions :

1. Configure SW1 with fast ethernet 0/11 interface and enable trunk line by issuing
switchport mode trunk command
2. Enter into vlan database mode of SW1 and configure vtp server on SW1 and set vtp
domain to certexams
3. Configure SW2 with fast ethernet 0/11 interface and enable trunk line by issuing
switchport mode trunk command
4. Enter into vlan database mode of SW2 and configure vtp server on SW2 and set vtp
domain to certexams, and then create VLAN 30 and VLAN 100 on SW2
5. Confirm that the VLAN’s set on SW2 are seen on SW1

SW1>enable
SW1#configure terminal
SW1(config)#interface fa 0/11
SW1(config-if)#switchport mode trunk
SW1(config-if)#exit
SW1(config)#exit
SW1#vlan database
SW1(vlan)#vtp server
SW1(vlan)#vtp domain certexams

SW2>enable
SW2#configure terminal
SW2(config)#interface fa 0/11
SW2(config-if)#switchport mode trunk
SW2(config-if)#exit
SW2(config)#exit
SW2#vlan database
SW2(vlan)#vtp server
SW2(vlan)#vtp domain certexams

Copyright © 2002-2015 CertExams.com


SW2(vlan)#vlan 30
SW2(vlan)#vlan 100
SW1>enable
SW1#show vlan

SHORT NOTE ON VTP


Vlan Trunking Protocol (VTP) is used to propagate VLAN configuration (creating,
deleting and changing) between multiple switches in the same VTP domain.
Cisco switches operate in one of three available VTP modes:
Server - Allows to read/write to the VLAN database, will propagate to switches in the
same VTP domain.
Client - Read Only - You can’t make changes to the VLAN database, will propagate
changes recieved to neighbouring switches in thesame VTP domain.
Transparent - Essentially “ignores” VTP updates but still relays VTP information
received regardless of VTP domain.
For VLAN database to be exchanged between two switches:
1. The VTP domain name should be same,
2. VTP password must be the same,
3. Trunk links should be configured between the switches (switchport mode trunk), and
4. Atleast one switch should be configured as server and the other switches as server or
client to learn vlan database. Server mode is the default on Cisco Catalyst switches.
5. All switches throughout the VTP domain must operate the same VTP version.
6. A Cisco Catalyst switch can belong to only one domain at any given time.
7. VTP messages not intended for a local domain (configured on a Cisco switch) are
ignored.

Lab Exercise 18 : Configuring VTP with a VTP Client

Description : This lab exercise demonstrates configuring VTP with a VTP client.

Instructions :

1. Configure SW1 with fast ethernet 0/11 interface and enable trunk line by issuing
switchport mode trunk command
2. Enter into vlan database mode of SW1 and configure SW1 as VTP Server and set vtp
domain to certexams, create VLAN 10 and VLAN 40 on SW1 and view the VTP
information by issuing show vtp status command
3. Configure SW2 with fast ethernet 0/11 interface and enable trunk line by issuing
switchport mode trunk command
4. Enter into vlan database mode of SW2 and configure SW2 as VTP Client and set vtp
domain to certexams, and make sure that VLANs cannot be created on SW2 as SW2 is in

Copyright © 2002-2015 CertExams.com


the client mode, and view the VTP information by issuing show vtp status command
5. Confirm that the VLANs created on SW1 are seen on SW2 by issuing show vlan
command

SW1>enable
SW1#configure terminal
SW1(config)#interface fa 0/11
SW1(config-if)#switchport mode trunk
SW1(config-if)#exit
SW1(config)#exit
SW1#vlan database
SW1(vlan)#vtp server
SW1(vlan)#vtp domain certexams
SW1(vlan)#vlan 10
SW1(vlan)#vlan 40
SW1(vlan)#exit
SW1#show vtp status

SW2>enable
SW2#configure terminal
SW2(config)#interface fa 0/11
SW2(config-if)#switchport mode trunk
SW2(config-if)#exit
SW2(config)#exit
SW2#vlan database
SW2(vlan)#vtp client
SW2(vlan)#vtp domain certexams
SW2(vlan)#exit
SW2#show vtp status
SW2#show vlan

Lab Exercise 19 : Troubleshooting lab with non-matching domains

Description : This lab exercise demonstrates vtp domain concept in VLANs. i.e with
nonmatching domains set up on the two switches and see that vlan info is not propagated
between the switches, correct the configuration and verify the same.

Instructions

1. Enter into database mode on SW1, set the mode to server and domain to cisco and create
VLANs 10, 20 and 50

Copyright © 2002-2015 CertExams.com


2. Issue show vlan command on SW1 and check the VLAN information
3. Configure SW2 as client and set its domain to ciscosys
4. Configure port fa 0/11 on SW1 and SW2 as trunk ports
5. Issue show vlan on SW2 and in the response VLAN information on SW1 will not be
displayed even after trunk is configured between the two switches because the switches are
configured with different domains, so VLAN information is not propagated from SW1 to
SW2
6. Correct the configuration on SW2 by setting its domain name same as on SW1 i.e, cisco
7. Issue show vlan command on SW2 and see that the VLANs created on SW1 are seen
8. Also view VTP information by issuing show vtp status command on SW2

SW1>enable
SW1#vlan database
SW1(vlan)#vlan 10
SW1(vlan)#vlan 20
SW1(vlan)#vlan 50
SW1(vlan)#vtp server
SW1(vlan)#vtp domain cisco
SW1(vlan)#exit
SW1#show vlan

SW2>enable
SW2#vlan database
SW2(vlan)#vtp client
SW2(vlan)#vtp domain ciscosys
SW2(vlan)#exit
SW2#

SW1>enable
SW1#configure terminal
SW1(config)#interface fa 0/11
SW1(config-if)#switchport mode trunk
SW1(config-if)#exit
SW2>enable
SW2#configure terminal
SW2(config)#interface fa 0/11
SW2(config-if)#switchport mode trunk
SW2(config-if)#exit
SW2#show vlan
SW2>enable
SW2#vlan database
SW2(vlan)#vtp client
SW2(vlan)#vtp domain cisco
SW2(vlan)#exit
SW2#show vlan
SW2#show vtp status

Lab Exercise 20 : Troubleshooting lab with trunk functionality

Copyright © 2002-2015 CertExams.com


Description : This lab exercise demonstrates trunk concept in VLANs. i.e with trunk set up
on only one of the the two switches and see that ping fails from R1 to WS1, correct the
configuration by setting up trunk on both the switches and verifying the same.

Instructions

1. Configure Work station WS1 with IP Address 192.168.100.2/24 and a default-gateway


of 192.168.100.1
2. Configure Router R1 Ethernet interface with IP Address 192.168.100.1/24
3. Check ping from WS1 to R1 and see that it is successful
4. Configure SW1 with vtp domain cisco, password ccna and create VLANs 50, 60 and 70
on it
5. Issue show vlan and show vtp status commands and verify the configurations
6. Configure SW2 with vtp domain cisco, password ccna and create VLAN 50 on it and
verify the same using show vlan and show vtp status commands
7. On SW1, configure port fa 0/1 to VLAN 50 and check the same using show vlan
command
8. On SW2 also, configure port fa 0/1 to VLAN 50 and check the same using show vlan
command
9. Now ping from WS1 to R1 and see that it fails as there is no trunk line enabled to carry
traffic on any VLAN
10. Configure trunk on fa 0/12 port of SW1 and now ping form WS1 to R1 and see that it
fails because trunk is to be configured on both the switches to carry traffic
11. Now configure trunk on SW2 also on fa 0/12 port and issue appropriate show
commands to check the same
12. Ping from WS1 to R1 and see that ping is now successful

WS1:ip address 192.168.100.2 255.255.255.0


WS1:ip default-gateway 192.168.100.1

R1>enable
R1#con ter
R1(config)#int e 0
R1(config-if)#ip address 192.168.100.1 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#end
R1#

WS1:ping 192.168.100.1

SW1>enable

Copyright © 2002-2015 CertExams.com


SW1#vlan database
SW1(vlan)#vlan 50
SW1(vlan)#vlan 60
SW1(vlan)#vlan 70
SW1(vlan)#vtp domain cisco
SW1(vlan)#vtp password ccna
SW1(vlan)#exit
SW1#show vlan
SW1#show vtp status

SW2>enable
SW2#vlan database
SW2(vlan)#vlan 50
SW2(vlan)#vtp domain cisco
SW2(vlan)#vtp password ccna
SW2(vlan)#exit
SW2#show vlan
SW2#show vtp status

SW1#con ter
SW1(config)#int fa 0/1
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 50
SW1(config-if)#end
SW1#show vlan

SW2#con ter
SW2(config)#int fa 0/1
SW2(config-if)#switchport mode access
SW2(config-if)#switchport access vlan 50
SW2(config-if)#end
SW2#show vlan

WS1:ping 192.168.100.1

SW1#con ter
SW1(config)#int fa 0/12
SW1(config-if)#switchport mode trunk
SW1(config-if)#end

SW2#show vlan

WS1:ping 192.168.100.1

SW2#con ter
SW2(config)#int fa 0/12
SW2(config-if)#switchport mode trunk
SW2(config-if)#end

Copyright © 2002-2015 CertExams.com


SW2#show interface fa 0/12 switchport
SW2#show vlan

WS1:ping 192.168.100.1

b). Switch Chapter-end Questions & Answers

1. Which of the following is true of a Switch?


a) Switches forward packets based on IP address.
b) Switches forward packets based on MAC address.
c) Switches forward packets based on IPX address.
d) Switches forward packets based on Layer 3 protocol.

2. Network devices such as switches and routers have a well defined LED status indicators.
Match the system LED status light on a Cisco 2950 series switch to its description.

a. Green 1. Malfunctioning
b. Amber 2. System is not powered up.
c. Off 3. System is operating normally.

a) a->3; b->1; c->2


b) a->1; b->3; c->2
c) a->3; b->2; c->1
d) a->2; b->1; c->3

3. Which is true regarding VLANs?


a) VLAN technology uses VLAN switches (layer 2) which is a substitute for
routing technology which uses routers.
b) A VLAN has same collision domain
c) A VLAN has same broadcast domain
d) VLANs are less secure with respect to simple switch or Hub networks.

4. Which command will set the default gateway to 192.168.1.1 on a Cisco switch?
a) ip default-route 192.168.1.1
b) ip route 192.168.1.1
c) ip default-gateway 192.168.1.1
d) ip default-network 192.168.1.1

5. A company installs additional workstations in the corporate LAN, and as a result the
network congestion increased significantly. Which device could be used to reduce the
network congestion without the need for additional IP addresses?

a. Gateway
b. Router
c. Switch
d. Hub

Copyright © 2002-2015 CertExams.com


1. Ans. b
Explanation: Switches work at layer 2 of ISO model, which is Data Link Layer. A switch
looks at the destination MAC address before forwarding the frame.
2. Ans. a
Explanation: The system LED shows whether the system is receiving power and functioning
properly.
LED Off: System is not powered up.
LED color is Green: System is operating normally. LED color is Amber: System is receiving
power but is not functioning properly. The amber color on a Cisco2950 series switch
indicates that the system is malfunctioning.
3. Ans. c
Explanation: A VLAN is a group of devices on one or more logically segmented LANs. All
devices working on a VLAN will have same broadcast domain. Like routers, switches (Layer
2) have the ability to provide domain broadcast segmentation called a VLAN. Using VLAN
technology, you can group switch ports and their connected users into logically defined
communities of interest. A VLAN operating on a Catalyst switch limits transmission of
unicast, multicast, and broadcast traffic to only the other ports belonging to that VLAN,
thereby controlling broadcasts.
The benefits of VLANS include:
1. Easy Administration resulting in reduced administration costs,
2. Increased Security due to broadcast control, if you are using simple hub, you can observe
traffic corresponding to any node by simply inserting a Network analyzer.
3. Grouping based on functional requirements irrespective of physical location
of nodes,
4. Simplify moves, adds, changes.
5. Distribution of traffic thereby using the network bandwidth more efficiently.
4. Ans. c
Explanation: The command “ip default-gateway 192.168.1.1” in global Configuration mode
can be used to set the default gateway on a Cisco Switch/router.
5. Ans:c
Explanation: A switch uses OSI layer 2 addresses (MAC Addresses) for forwarding frames. A
switch can be used to reduce network traffic by dividing the broadcast domains of a network.

E. Scenario Labs – Home and Small Office Networks


a). Lab Exercises

Copyright © 2002-2015 CertExams.com


Scenario Lab1:This exercise demonstrates the concept of designing a Home
Network with a Router, Access Point, and Wireless Work Stations. -I

Communicating to Internet
a.Wrong DHCP Scope
b.Wrong SSID on Access Point
c. DHCP Server not assigned with static IP address and subnet mask.

A network administration has configured various components of the network as below:

Server Configuration:
IP address: 192.168.1.2
Subnet mask: 255.255.255.192

DHCP Range on Server:


Start IP: 192.168.1.65
Stop IP: 192.168.1.128
Subnet mask: 255.255.255.192

Copyright © 2002-2015 CertExams.com


Default Gateway: 192.168.1.1

Router R1 configuration:
E0: 192.168.1.1
255.255.255.192
S0: 202.100.15.10
Subnet mask: 255.255.255.64

Access Point (AP1):


SSID:CertExams
WEP:Cert1

Client Configurations:
All workstations have been configured to obtain the IP settings from DHCP server.

It was reported that none of the workstations are able to ping the Router R1’s E0 interface
(Default Gateway). The technician had checked all the physical connections are found them
to be in order.What is the most likely problem?
Solution:
In the above scenario, the DHCP scope was set wrongly on the DHCP Server. The DHCP
scope of 192.168.1.65 to 192.168.1.128 corresponds to subnet ID 192.168.1.64 where as the
default gateway (192.168.1.1) corresponds to subnet ID 192.168.1.0. By correcting the
DHCP scope to 192.168.1.3 to 192.168.1.63 (note that 192.168.1.1 and 192.168.1.2 have
been used for static assignment) the problem could be solved.
Instructions:
1. Open the Server configuration window.
2. Change the Start IP to 192.168.1.3 and Stop IP to 192.168.1.62 (Note that 192.168.1.63 is
broadcast address and can’t be used. 192.168.1.1 is the IP address of default gateway, and
192.168.1.2 is statically assigned to DHCP Server).
3. Ping to default gateway should success.

Scenario Lab2:Design a Home Network with a Router, Access Point, and Wireless
Work Stations. –II

Please refer network diagram of Scenario Lab1

Copyright © 2002-2015 CertExams.com


A network administration has made a few changes to the Access Point and saved the
configuration. However, after the changes had been made, that none of the wireless
workstations are able to ping the Router R1’s E0 interface (Default Gateway). The technician
had checked all the physical connections are found them to be in order. The configurations of
various network components are given above for reference. What is the most likely problem?

The network is configured as below:


Server Configuration:
IP address: 192.168.1.66
Subnet mask: 255.255.255.192

DHCP Range on Server:


Start IP: 192.168.1.67
Stop IP: 192.168.1.126
Subnet mask: 255.255.255.192
Default Gateway: 192.168.1.65

Router R1 configuration:
E0: 192.168.1.65
255.255.255.192
S0: 202.100.15.10
Subnet mask: 255.255.255.64
Access Point (AP1):
SSID:CertExams
WEP:Cert1
Client Configurations:
All workstations have been configured to obtain the IP settings from DHCP server.
Solution:
Since the wired clients are able to ping the default gateway, it is likely that there is some
configuration problem with wireless Access Point (AP1). Check to make sure that the SSID
and WEP are configured properly, and fix the same if required.
Instructions:
1. Open Access Point AP1 properties.
2. Check SSID and WEP. You will find SSID was wrongly configured as certexams.
Reconfigure SSID to CertExams (Note that SSID and WEP are case sensitive).
3.Now ping default gateway from wireless workstations. It should succeed.

Copyright © 2002-2015 CertExams.com


Scenario Lab3:Design a Home Network with a Router, Access Point, and Wireless
Work Stations. –III

DHCP Server not configured with a static IP address.


A network administration has configured various components of the small office network.
However, none of the workstations are able to obtain the IP settings from the DHCP server.
What is the likely problem?
Server Configuration:
IP address: 192.168.1.66
Subnet mask: 255.255.255.192

DHCP Range on Server:


Start IP: 192.168.1.67
Stop IP: 192.168.1.126
Subnet mask: 255.255.255.192
Default Gateway: 192.168.1.65
Router R1 configuration:
E0: 192.168.1.65
255.255.255.192
S0: 202.100.15.10
Subnet mask: 255.255.255.64

Access Point (AP1):


SSID:CertExams
WEP:Cert1

Client Configurations:
All workstations have been configured to obtain the IP settings from DHCP server.
Solution:
Since it was reported that none of the work stations are able to obtain DHCP settings, it is
likely to be a problem with DHCP server. In this case, DHCP server IP address and subnet
mask are not assigned, because of which, the DHCP server was not able to pass the IP
settings to client workstations. By assigning IP address and subnet mask to DHCP server, the
problem could be solved.

Copyright © 2002-2015 CertExams.com


Instructions:
Step1: On WS1 issue command ipconfig /all. You will see that IP address, subnet mask, and
default gateway are not assigned.
Step1: Open DHCP server properties window.
Step2: Verify whether the DHCP server is configured with appropriate settings. In this case,
you find that the static IP address and subnet mask have not been set on the DHCP server.
Step3: Set the IP address to 192.168.1.66 and subnet mask to 255.255.255.192
Step4: Now, you should be able to obtain the IP settings from the DHCP server.

Scenario Lab4: VLANs Scenario

Description : This lab exercise helps to get familiar with the benefits of a VLAN and also in
understanding the process to configure a router and a switch to support VLANs.

Instructions :

1. Connect to R1 and configure the IP address of 192.168.200.1 255.255.255.0 on the


fastethernet interface and set the interface up by issuing no shutdown command
2. Connect to workstation WS1 and set its IP address to 192.168.200.3 255.255.255.0 and
default-gateway to 192.168.200.1, and then connect to WS2 and set its IP address to
192.168.200.4 255.255.255.0 and default-gateway to 192.168.200.1
3. Ping R1 and WS1 from WS2 and see that the ping is successful
4. Connect to Switch SW1 and set up the VLANs. Start by creating VLAN 20 to set up a
separate VLAN for the WRS (workstations)
5. Now assign ports to the new VLAN , assign port 1 for WS1 to VLAN 20
6. Connect to WS2 again and try to ping R1 and WS1
( Ping is success from WS2 to R1 but not from WS2 to WS1, this is because on the switch,
VLAN 20 is set to cover only port 1)
7. Connect to SW1 again and now configure port 2 wherein WS2 is connected, to be
included in VLAN 20

Copyright © 2002-2015 CertExams.com


8. Repeat the pings from WS2 to R1 and WS1.This time ping to WS1 would be successful
but not to R1 (This is because when the ping packets came in, they were tagged with
VLAN 20. Consequently, the packets could only travel out port 1 to WS1)
9. Connect to SW1 again and issue appropriate show commands to view the VLAN port
assignments
10. Now on SW1, assign fastethernet 0/12 to VLAN 20 . This would allow to ping all of
the devices
11. Issue pings from R1 to WS1 and WS2 and from WS1 and WS2 to R1 and check the
connectivity

R1>enable
R1#configure terminal
R1(config)#interface e 0
R1(config-if)#ip address 192.168.200.1 255.255.255.0
R1(config-if)#no shutdown

WS1:ip address 192.168.200.3 255.255.255.0


WS1:ip default-gateway 192.168.200.1

WS2:ip address 192.168.200.4 255.255.255.0


WS2:ip default-gateway 192.168.200.1
WS2:ping 192.168.200.1
WS2:ping 192.168.200.3

SW1>enable
SW1#vlan database
SW1(vlan)#vlan 20 name wrs
SW1(vlan)#exit
SW1#
SW1#con ter
SW1(config)#int fa 0/1
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 20

WS2:ping 192.168.200.1
WS2:ping 192.168.200.3

SW1>enable
SW1#configure terminal
SW1(config)#int fa 0/2
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 20
SW1(config-if)#end

WS2:ping 192.168.200.1
WS2:ping 192.168.200.3

SW1>enable

Copyright © 2002-2015 CertExams.com


SW1#show vlan
SW1#show vlan-membership
SW1#configure terminal
SW1(config)#interface fastethernet 0/12
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 20

R1>enable
R1#ping 192.168.200.3
R1#ping 192.168.200.4

WS1:ping 192.168.200.1
WS2:ping 192.168.200.1

Note: In the above lab, a switch will not forward frames between two access ports unless
they belong to the same VLAN. By default, all switch ports will be in VLAN1. However,by
configuring one of the switch ports as VLAN20, the switch can only forward packets toother
switch ports that belong to VLAN20. Switchport mode "dynamic auto" is the defaultmode
for all the switches. The interface becomes a trunk port if the neighbouring port is
configured as trunk or Desirable mode.

Scenario Lab5 : VTP (VLAN Trunking Protocol) Scenario

Description : This lab exercise helps to understand the configuration process of VLAN
Trunking Protocol (VTP) to establish a server and client connection , assigning VLANs to
multiple ports, creating a trunk line between switches to carry VLANs

Instructions :

1. Assign IP address 192.168.100.1 255.255.255.0 to SW1 on its interface and IP address


of 192.168.100.2 255.255.255.0 to SW2 on its vlan interface
2. Add vlan 30 and 40 to SW1 and assign ports 2 through 5 to vlan 30 and assign ports 6
through 10 to vlan 40
3. To verify the configuration, issue show vlan command on SW1
4. Configure SW1 as a VTP Server and SW2 as a VTP Client and change the VTP domain
to certexams and assign a VTP password of ccna
5. To create the trunk link that will transport the VLAN configurations from SW1 to SW2,
enable trunking on the port that links between the two switches
6. After this configuration, you should be able to view the VLANs from SW1 on SW2.
Use show vlan command to verify the VLAN configurations, and show vtp status
command to display VTP specific information

SW1>enable

Copyright © 2002-2015 CertExams.com


SW1#configure terminal
SW1(config)#interface vlan 1
SW1(config-if)#ip address 192.168.100.1 255.255.255.0
SW1(config-if)#no shutdown
SW1(config-if)#end
SW1#

SW2>enable
SW2#configure terminal
SW2(config)#interface vlan 1
SW2(config-if)#ip address 192.168.100.2 255.255.255.0
SW2(config-if)#no shutdown
SW2(config-if)#end
SW2#

SW1>enable
SW1#vlan database
SW1(vlan)#vlan 30
SW1(vlan)#vlan 40
SW1(vlan)#exit
SW1#configure terminal
SW1(config)#interface range fast 0/2 - 5
SW1(config-if-range)#switchport access vlan 30
SW1(config-if-range)#exit
SW1(config)#interface range fast 0/6 – 10
SW1(config-if-range)#switchport access vlan 40
SW1(config-if-range)#exit
SW1(config)#exit
SW1#
SW1#show vlan
SW1#vlan database
SW1(vlan)#vtp server
SW1(vlan)#vtp domain certexams
SW1(vlan)#vtp password ccna
SW1(vlan)#exit
SW1#

SW2>enable
SW2#vlan database
SW2(vlan)#vtp client
SW2(vlan)#vtp domain certexams
SW2(vlan)#vtp password ccna
SW2(vlan)#exit
SW2#

SW1>enable
SW1#configure terminal
SW1(config)#interface fast 0/12

Copyright © 2002-2015 CertExams.com


SW1(config-if)#switchport mode trunk
SW1(config-if)#end

SW2>enable
SW2#configure terminal
SW2(config)#interface fast 0/12
SW2(config-if)#switchport mode trunk
SW2(config-if)#end
SW2#show vlan
SW2#show vtp status

Scenario Lab6 : VLANs and Trunking

Description : This lab demonstrates setting up VLAN’s on two switches namely SW1 and
SW2 and test them by pinging between Router R1 and Workstation WS1 as shown in the
figure below.

Instructions :

1. Configure workstation WS1 with an IP Address of 192.168.100.2/24 and a defaultgateway


of 192.168.100.1
2. Configure R1 with an IP Address of 192.168.100.1/24 on Ethernet 0 interface and
enable the interface
3. Verify ping between R1 and WS1. Because R1, WS1 and switch-to-switch link are all in
VLAN 1, the ping should be successful
4. Issue show vlan command on SW1 and SW2 and note that by default all switch ports are
in VLAN 1
5. Enter into database mode on SW1 and SW2 and set up a vtp domain by name certexams
and verify the same by issuing show vtp status command
6. Create VLAN 30 and name it switchvlan on SW1 and SW2, verify the same by issuing
show vlan command
7. Next assign fa 0/1 port to the new VLAN created on SW1 and SW2. R1 and WS1 are
attached to these ports. Issue show vlan command on SW1 and SW2 to verify if the ports
have been moved to VLAN 30
8. Ping from WS1 to R1 and see that it fails because now both R1 and WS1 are in VLAN
30 and there is no trunk line enabled to carry the traffic for any VLAN
9. Configure trunk line between SW1 and SW2 and issue show interface fa 0/12 switchport
command to verify that trunking is enabled on the port
10. Now ping from WS1 to R1 and check that ping is successful because both devices are
in the same vlan and the inter-switch link is a trunk line

WS1:ip address 192.168.100.2 255.255.255.0

Copyright © 2002-2015 CertExams.com


WS1:ip default-gateway 192.168.100.1

R1>enable
R1#con ter
R1(config)#int e 0
R1(config-if)#ip address 192.168.100.1 255.255.255.0
R1(config-if)#no shutdown
R1(config-if)#end
R1#

WS1:ping 192.168.100.1

SW1#show vlan
SW2#show vlan
SW1#vlan database
SW1(vlan)#vtp domain certexams
SW1(vlan)#exit
SW1#show vtp status

SW2#vlan database
SW2(vlan)#vtp domain certexams
SW2(vlan)#exit
SW2#show vtp status

SW1#vlan database
SW1(vlan)#vlan 30 name switchvlan
SW1(vlan)#exit
SW1#show vlan

SW2#vlan database
SW2(vlan)#vlan 30 name switchvlan
SW2(vlan)#exit
SW2#show vlan

SW1#con ter
SW1(config)#int fa 0/1
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 30
SW1(config-if)#end
SW1#show vlan

SW2#con ter
SW2(config)#int fa 0/1
SW2(config-if)#switchport mode access
SW2(config-if)#switchport access vlan 30
SW2(config-if)#end
SW2#show vlan

Copyright © 2002-2015 CertExams.com


WS1:ping 192.168.100.1

SW1#con ter
SW1(config)#int fa 0/12
SW1(config-if)#switchport mode trunk
SW1(config-if)#end
SW1#show interface fa 0/12 switchport

SW2#con ter
SW2(config)#int fa 0/12
SW2(config-if)#switchport mode trunk
SW2(config-if)#end
SW2#show interface fa 0/12 switchport

WS1:ping 192.168.100.1

Scenario Lab7 : Routing between VLANs(Router on a Stick)

Description : This exercise demonstrates the concept of Router on a stick.

Instructions

1. Configure R1 with sub-interface fastethernet 0/0.10 with IP Address 192.168.100.2


255.255.255.0 and set the encapsulation to dot1q 2 and sub-interface fastethernet 0/0.20
with IP Address 192.168.200.2 255.255.255.0 and set its encapsulation to dot1q 3
2. Check the routing table on R1 by issuing show ip route command
3. Connect to switch SW1 and create VLANs 2 and 3
4. Add the SW1 port fa 0/1 to VLAN 2 using “switchport access vlan <num>” command
5. Add the SW1 port fa 0/2 to VLAN 3 using “switchport access vlan <num>” command
6. Configure the workstation WS1 with IP Address 192.168.100.1 255.255.255.0 and a

Copyright © 2002-2015 CertExams.com


default-gateway of 192.168.100.2
7. Configure the workstation WS2 with IP Address 192.168.200.1 255.255.255.0 and a
default-gateway of 192.168.200.2
8. Ping R1 from WS1 and WS2 and Ping WS2 from WS1 and see that it fails
9. Configure the trunk link between R1 and SW1 by issuing switchport mode trunk
command on SW1. Also specify “switchport trunk encapsulation dot1q” on SW1 in
interface configuration mode
10. Check the trunk information using show interfaces trunk command
11. Ping R1 from WS1 and WS2 and Ping WS2 from WS1 and see that it is successful as
there is a trunk line now created on SW1

R1>enable
R1#configure terminal
R1(config)#
R1(config)#interface fastethernet 0/0
R1(config-if)#no ip address
R1(config-if)#no shutdown
R1(config-if)#exit
R1(config)#interface fastethernet 0/0.10
R1(config-subif)#encapsulation dot1q 2
R1(config-subif)#ip address 192.168.100.2 255.255.255.0
R1(config-subif)#exit
R1(config)#interface fastethernet 0/0.20
R1(config-subif)#encapsulation dot1q 3
R1(config-subif)#ip address 192.168.200.2 255.255.255.0
R1(config-subif)#exit
R1(config)#exit
R1#show ip route

SW1>enable
SW1#vlan database
SW1(vlan)#vlan 2
SW1(vlan)#vlan 3
SW(vlan)#exit
SW1#configure terminal
SW1(config)#int fa 0/1
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 2
SW1(config-if)#exit
SW1(config)#int fa 0/2
SW1(config-if)#switchport mode access
SW1(config-if)#switchport access vlan 3
SW1(config-if)#exit

WS1:ip address 192.168.100.1 255.255.255.0


WS1:ip default-gateway 192.168.100.2

WS2:ip address 192.168.200.1 255.255.255.0

Copyright © 2002-2015 CertExams.com


WS2:ip default-gateway 192.168.200.2

WS1:ping 192.168.100.2
WS2:ping 192.168.200.2
WS1:ping 192.168.200.1

SW1>enable
SW1#configure terminal
SW1(config)#interface fast 0/12
SW1(config-if)#switchport trunk encapsulation dot1q
SW1(config-if)#switchport mode trunk
SW1(config-if)#exit
SW1#
SW1#show interfaces trunk

WS1:ping 192.168.100.2
WS2:ping 192.168.200.2
WS1:ping 192.168.200.1

Note:The default trunk encapsulation type for 2950 switch is dot1q and it doesn’t support isl
trunking encapsulation whereas 1900 series switches support isl trunking encapsulation type
and doesn’t support dot1q trunking encapsulation.So it is not possible to establish a trunk
connection between a 1900 switch and a 2950 switch.

F. Questions & Answers - Final


1. One of the most frequent configurations on a router involves setting up of a static route.
Consider the following command given on a router running Cisco IOS:
“ip route 165.44.34.0 255.255.255.0 165.44.56.5”.
Which one of the following is true?

a) 165.44.56.5 is the default gateway address


b) 165.44.56.5 is the destination IP address
c) 165.44.34.0 is the default gateway address
d) The command sets a dynamic route.

2. A branch office is connected to the ISP as shown in the figure. Which router is most likely
to be configured with a static route?
a) R1
b) R2
c) R3
d) ISP Router

3. You are a network admin at ABC Corp., and you recently added a Cisco IOS router to your
local office. You need to configure a static route on the router (say, RouterA) to network

Copyright © 2002-2015 CertExams.com


192.204.1.64. What is the command that you need to give? Assume that the router is running
Cisco IOS.

a) RouterA(config)#ip route 192.204.1.64 255.255.255.240 192.204.1.2


b) RouterB(config)#ip route 192.204.1.64 255.255.255.240 192.204.1.2
c) RouterA(config)#ip route 192.204.1.2 255.255.255.252 192.204.1.64
d) RouterB(config)#ip route 192.204.1.2 255.255.255.252 192.204.1.64

4. A branch office is connected to the Internet using a network device as shown in the figure.
Which network device fulfills the requirement?
a) Switch with two Ethernet interface
b) Router with one Ethernet and one Serial interfaces
c) Modem with two serial interfaces
d) Router with two Ethernet interfaces

Copyright © 2002-2015 CertExams.com


5. You have configured RIP on your IOS router connected to your Corporate IP network.
Now you want to remove RIP entries. What is the command used for this?

a) stop ip rip
b) stop router rip
c) no router rip
d) no rip

6. RIP uses ____________ algorithm


a) Link state
b) Distance vector
c) IS-IS
d) AS

7. Please refer to the figure below. HostA needs to access SwichA management interface
(VLAN1). HostA is able to ping fa0/0, but unable to access the Switch management interface.
Which of the following needs to be done for enabling access to SwitchA management
interface?

a) Configure default gateway on SwitchA


b) Configure VLAN2 on the Switch
c) Use roll-over cable instead of Ethernet cable from router to switch
d) Change SwitchA VLAN1 ip address

Copyright © 2002-2015 CertExams.com


8. The network shown below is experiencing connectivity problems. Which of the given
below options will correct the problems?

a) Configure the gateway on Host A as 192.168.2.1


b) Configure the gateway on Host B as 192.168.2.1
c) Configure the IP address of Host A as 192.168.2.10.
d) Configure the IP address of Host B as 192.168.2.129
e) Configure the masks on both hosts to be 255.255.255.128

9. Refer to the figure below, hosts on the same VLAN can communicate with each other but
are unable to communicate with hosts on different VLANs. What is needed to allow
communication between VLANs?

Copyright © 2002-2015 CertExams.com


a) a switch with a trunk link that is configured between the switches
b) a router with an IP address on the physical interface that is connected
to the switch
c) a switch with an access link that is configured between the switches
d) a router with sub-interfaces configured on the physical interface that is
connected to the switch

10. Please refer to the figure below. HostA was not able to ping HostB. A trace route
command issued a HostA has the following output displayed:
--------------------------------------------------------------------------
C:>tracert 192.200.2.7
Tracing route to 192.200.2.7 over a maximum of 30 hops 1
Destination host unreachable Trace complete
-------------------------------------------------------------------------------
a) The router RTA S0/0 is not configured properly
b) The subnet mask between routers RTB and RTC is incorrect
c) The gateway address on Host A is not configured properly
d) The Host B is not configured properly.

Copyright © 2002-2015 CertExams.com


11. A branch office is connected to the ISP as shown in the figure. Which router is most
appropriate for configuring default route?
a) R1
b) R2
c) R3
d) ISP Router

12. The routers A and B are configured as shown in the figure. Host A and Host B are
configured properly. A ping from host A is able to get a successful response from S0 of
RouterB, but failed to get any response from Host B. What is the likely problem?

Copyright © 2002-2015 CertExams.com


a) The serial interfaces on Routers A and B are not configured properly.
b) The subnet mask on network 192.204.1.64 /28 is not correct.
c) Router A is bad
d) Router A doesn’t have route to network 192.204.1.64/28

13.Which of the following addresses represent the 128-bit loopback address in IPv6?
(Choose two)
a) 00:00:00:00::127
b)::1
c) 127.0.0.1
d) 0:0:0:0:0:0:0:1

14. The feature of IPv6 which allows a client to receive an IP address without the use of
DHCP server is which of the following?
a) Stateful DHCP
b) IPsec
c) Stateless autoconfiguration
d) QOS

15. Which of the following is NOT a wireless security standard?


a. WEP
b. 802.11i
c. WPA
d. SSID

16. Your network has 120 computers running Windows Operating System. You have decided
to connect your network to the Internet using a T1 line. You want every workstation to be
able to browse the web. However, you are given only one IP address to access the Internet.
What device can be used to allow all work stations access the Internet?

Copyright © 2002-2015 CertExams.com


a. Bridge
b. Repeater
c. Switch
d. Proxy Server

17. Which one of the following is the shortest valid abbreviation for the Ipv6 address
3001:0000:0000:0100:0000:0000:0000:0345 ?
a) 3001::100::345
b) 3001::1::345
c) 3001::100:0:0:0:345:4567
d) 3001:0:0:100::345

PLEASE REFER THE ANSWERS BELOW

1. Ans. a
Explanation: There are three ways a router learns how to forward a packet:
1. Static Routes - Configured by the administrator manually. The Administrator must also
update the table manually every time a change to the network takes place. Static routes are
commonly used when routing from a network to a stub (a network with a single route)
network. The command is ip route network mask address/interface [distance]
Ex: ip route 165.44.34.0 255.255.255.0 165.44.56.5
Here, 165.44.34.0 is the destination network or subnet
255.255.255.0 is the subnet mask
165.44.56.5 is the default gateway.
2. Default Routes - The default route (gateway of last resort) is used when a route is not
known or is infeasible. The command is
ip route 0.0.0.0 0.0.0.0 165.44.56.5
The default gateway is set to 165.44.56.5
3. Dynamic Routes - As soon as dynamic routing is enabled, the routing tables are
automatically updated. Dynamic routing uses broadcasts and multicasts to communicate with
other routers. Each route entry includes a subnet number, the interface out to that subnet, and
the IP address of the next router that should receive the packet. The commands to enable rip
are: router rip network <major network number>.
2. Ans. d
Explanation: ISP router is normally configured with static route.
3. Ans. a
Explanation: The syntax for configuring a static route on a router running IOS is:
ip route network-address subnet-mask {ip address | exit interface}The network address is the
destination network or the remote address that will be added in the routing table.

Copyright © 2002-2015 CertExams.com


The subnet mask is the subnet mask of the remote network that will be added in the routing
table. The ip-address in the syntax is usually called the next-hop router’s IP address The
command to configure a static route to network 192.204.1.64/28 from RouterA is ip route
192.204.1.64 255.255.255.240 192.204.1.2
4. Ans. b
Explanation: Internet connectivity is normally achieved using a WAN connection. Therefore,
you need a serial port for connecting to the Internet. On The other hand, a switch normally
requires an Ethernet port for connectivity.
5. Ans. c
Explanation: The command "no router rip" is used for removing all rip entries from the
router.
6. Ans. b
Explanation: RIP and IGRP are examples of routing protocols that use distance vector. In RIP,
the maximum hop count allowed is 15 hops. A hop count of 16 is considered as unreachable.
An RIP router determines the path to the destination based on the amount of hops it takes to
reach the destination. If it had two different ways to reach the destination, it will simply send
the packet via the shortest path (minimum hop count), regardless of the connection speed.
This is commonly known as pinhole congestion.
7. Ans. a
Explanation: For accessing a switch over IP network, you need to do some minimum
configuration tasks using Console port on the switch. In the given question, the default
gateway needs to be configured on the switch for accessing the management interface
(VLAN1) from HostA.
8. Ans. b and d
Explanation: Basically, each VLAN should be on its own subnet/network. A router is required
to route frames from one VLAN to another. In the given network diagram, the hosts on
VLAN10 and VLAN20 are configured with the same default gateway. For HostA, the IP and
default gateway address are correct, whereas for HostB both are incorrect. You need to
configure IP address and gateway on HostB properly for the VLANs to work as expected.
9.Ans d
Explanation: To switch traffic between VLANs, you need a layer-3 device. This device is
typically a router, though a layer-3 switch may also work as router. If the VLANs are not
configured with a router in between to switch traffic, it is not possible to communicate
between different VLANs.
10. Ans. c
Explanation: This is a tricky question. You need to arrive at the answer by the process of
eliminating incorrect answers. If you look at the tracert command issued on Host A, the first
destination itself is not reachable. Therefore, it is very likely that the default gateway on Host
A is not configured properly.
11.Ans. a

Copyright © 2002-2015 CertExams.com


Explanation: R1, R2, R3 form RIP routing network. The router R1 interfaces with the ISP
router, and hence most appropriate to be configured with a default route.
12. Ans. d
Explanation: There is no route to the network 192.204.1.64 /28 from Router A. You can
configure a static route or a dynamic route. An example of configuring static route is given
below:RouterA(config)#ip route 192.204.1.64 255.255.255.240 192.204.1.2
13. Ans. b and d
Explanation: The loopback address in IPv6 is represented as ::1/128 or as 0:0:0:0:0:0:0:1 and
is used to refer to the local host. In IPv4 the loopback address is 127.0.0.1
14. Ans. c
Explanation: Stateless autoconfiguration is an important feature offered by IPv6 protocol. It
automates the IP address configuration of individual network devices without requiring any
intermediate IP support in the form of Dynamic Host Configuration Protocol (DHCP) server
to do the same.
15. Ans.d
Explanation: Wired Equivalent Privacy (WEP) is a protocol used to secure IEEE 802.11
wireless networks. It is part of the IEEE 802.11 wireless networking standard. Wireless
networks broadcast messages using radio, and therefore more susceptible to eavesdropping
than wired networks. WEP was intended to provide confidentiality comparable to that of a
traditional wired network.
Wi-Fi Protected Access (WPA and WPA2) is a class of systems to secure wireless (Wi-Fi)
computer networks. WPA is forward compatible with the IEEE 802.11i standard, and was
intended as an intermediate measure to take the place of WEP while 802.11i was prepared.
802.11i includes dynamic key exchange, stronger encryption, and user authentication. It is not
backward compatible with WPA. The 802.11i standard is widely known as WPA2.
16. Ans.d
Explanation: A Proxy Server can be used to connect all the work stations on the local network
to the Internet. In this case, the proxy does Many-to-One address mapping. i.e. it maps
several local IP address to one public IP address for enabling Internet access.
17. Ans. d
Explanation: IPv6 addresses can be represented in compressed format by two steps
i. Continuous groups of zero's can be represented as : but only once allowed
ii. Leading zeros in any group may be removed for brevity.

Copyright © 2002-2015 CertExams.com

You might also like