CCNA 2 Chapter 6 Quiz Study

management VLAN Refer to curriculum topic: 6.1.1 A management VLAN is used to remotely access and configure a switch. Data VLANs are used to separate a network into groups of users or devices. The default VLAN is the initial VLAN all switch ports are placed in when loading the default configuration on a switch. The 802.1Q trunk port places untagged traffic on the native VLAN.
Explanation: The administrator VLAN is a type of VLAN that is used to access and configure a switch. This VLAN is typically used for management purposes and is not assigned to any specific user or device.

the VLAN ID Refer to curriculum topic: 6.3.3 The administrator can use the encapsulation command to specify the encapsulation type (IEEE 802.1Q or ISL), the VLAN ID, and optionally the native VLAN.
Explanation: The 10" in the "encapsulation dot1Q 10 native" command specifies the VLAN ID of the traffic on that particular subinterface. In this case, traffic on VLAN 10 will be untagged, or "native", meaning it will not be tagged with a VLAN ID. All other traffic on other VLANs will be tagged."

A separate VLAN is needed for voice traffic. Refer to curriculum topic: 6.1.2 A PC commonly connects to an IP phone and the IP phone, in turn, connects to a switch. The phone does not require a separate port. Because voice traffic cannot tolerate much packet delay, it needs to be in a separate VLAN. The voice VLAN can be configured to provide quality of service (QoS), which will ensure that the voice traffic has a higher priority than data traffic.
Explanation: If an organization is changing to include Cisco IP phones in its network, the design feature that must be considered to ensure voice quality is Quality of Service (QoS). QoS can be implemented in a network to give priority to certain types of traffic, such as voice traffic, over other types of traffic. This ensures that voice traffic is not delayed or dropped when there is congestion in the network.

router on a stick Refer to curriculum topic: 6.3.1 With router on a stick, subinterfaces are used on one physical router interface. One subinterface per VLAN is used in this design. When multiple interfaces are used on a router, each physical interface such as Gi0/0 and Gi0/1 is assigned one IP address. Each VLAN would require a physical interface. When routing via a multilayer switch, one SVI is assigned an IP address for each VLAN. Interdomain routing does not affect inter-VLAN communication.
Explanation: The topology in the exhibit uses router-on-a-stick inter-VLAN routing. This implementation uses a single router with multiple subinterfaces, one for each VLAN. The router uses a Layer 2 trunk link to connect to a switch, which in turn connects to the devices in each VLAN. The router performs all inter-VLAN routing.

flash memory Refer to curriculum topic: 6.2.1 Normal range VLANs are stored in a file called vlan.dat and located in the flash memory.
Explanation: The normal range VLANs are stored on a Cisco switch by default in the VLAN database.

ping 192.168.2.3 Refer to curriculum topic: 6.3.3 Configure Router0 as follows: interface FastEthernet0/0 no shutdown interface FastEthernet0/0.10 encapsulation dot1Q 10 ip address 192.168.1.1 255.255.255.0 interface FastEthernet0/0.20 encapsulation dot1Q 20 ip address 192.168.2.1 255.255.255.0
Explanation: The ping command from PC0 to PC1 completes successfully because the two devices are on the same subnet.

The encapsulation dot1Q 20 command has not been configured.​ Refer to curriculum topic: 6.3.3 The steps to configure inter-VLAN routing must be completed in a specific order. Before configuring an IP address on a subinterface, the encapsulation dot1q VLAN_id command must be specified first.
Explanation: The error that is displayed in the configuration of inter-VLAN routing on router CiscoVille is caused by the fact that the router has been configured with the wrong IP address. The correct IP address for the router should be 172.16.1.1.

assigns VLAN 10 for untagged traffic -> Switch(config-if)# switchport trunk native vlan 10 activates the current interface as trunk -> Switch(config-if)# switchport mode trunk prohibits VLAN 10 on the trunk interface -> Switch(config-if)# switchport trunk allowed vlan remove 10 Refer to curriculum topic: 6.2.2
Explanation: 1. Select the text2. Cut the text3. Copy the text4. Paste the text1. Command + A2. Command + X3. Command + C4. Command + V

to assign the port to a particular VLAN Refer to curriculum topic: 6.2.1
Explanation: The switch command switchport access vlan 99 is used to set the virtual LAN that a port belongs to. In this case, the port will belong to virtual LAN 99.

to view the native VLAN Refer to curriculum topic: 6.2.3 The show interfaces trunk command displays the ports that are trunk ports, the trunking mode, the encapsulation type, the trunk status, the native VLAN, and the allowed VLANs on the link.
Explanation: The show interfaces trunk command is used to display information about the switchports on the switch that have been configured as trunk ports. This information includes the status of the trunk port, the encapsulation type, the native VLAN, and the allowed VLANs. This command is useful for troubleshooting trunk port issues.

Reassign all VLAN member ports to a different VLAN. Refer to curriculum topic: 6.2.1 Before deleting an active VLAN, it is recommended that all ports currently assigned as a member of that VLAN be reassigned. Any port that is a member of a VLAN that is deleted will become unusable.
Explanation:The show interfaces trunk command is used to display information about the switchports on the switch that have been configured as trunk ports. This information includes the status of the trunk port, the encapsulation type, the native VLAN, and the allowed VLANs. This command is useful for troubleshooting trunk port issues.

5 or five Refer to curriculum topic: 6.3.2 Legacy inter-VLAN routing requires that each VLAN be assigned to a different physical router interface. So, if there are 5 VLANs to be configured, it is necessary to have 5 physical router interfaces, one for each VLAN.​
Explanation: If using legacy inter-VLAN routing, then 5 physical router interfaces would have to be configured to support 5 VLANs. This is because each VLAN would need its own physical router interface in order to communicate with other VLANs.

Allow VLAN 20 on the trunk link. Refer to curriculum topic: 6.2.2 Enabling DTP on both switches simply allows negotiation of trunking. The "Negotiation of Trunking" line in the graphic shows that DTP is already enabled. The graphic also shows how the native VLAN is 1, and the default VLAN for any Cisco switch is 1. The graphic shows the PCs are to be in VLAN 20.
Explanation: The problem is that the switch SW1 is not configured correctly. It should be configured to allow traffic from VLAN 20 to pass through.

VLANs improve network security by isolating users that have access to sensitive data and applications. VLANs divide a network into smaller logical networks, resulting in lower susceptibility to broadcast storms.
Explanation: VLANs provide a number of benefits over traditional networking, including:1. VLANs can increase security by isolating traffic on a network.2. VLANs can improve network performance by segmenting traffic.3. VLANs can simplify network administration by logically grouping devices.4. VLANs can provide greater flexibility in network design.

VLAN hopping attack
Explanation: The attacker is likely trying to exploit a flaw in the DTP protocol to gain access to the switch or to disrupt network traffic.

Switches from other vendors do not support DTP
Explanation: One possible cause for this issue is that the ports on the two switches are not configured for trunking. In order for two switches to successfully negotiate a trunk, the ports on both switches must be configured for trunking. If one or both of the ports is not configured for trunking, the negotiation will fail and the trunk will not be established.

DTP is a Cisco proprietary protocol. DTP supports IEEE 802.1Q.
Explanation: DTP is a protocol that allows different computer systems to communicate with each other. It is also a software application that helps you create documents.

Disable DTP negotiation on all ports.
Explanation: ?There are two ways to prevent the VLAN hopping attack:1. Use a switch that supports port security.2. Use a VLAN access control list (ACL) on the switch.