Share your ICND2 v3.0 Experience
The new ICND2 200-105 exam has come to replace the old ICND2 200-101 exam. We create the “Share your ICND2 v3.0 Experience” for everyone to share their experience after taking this exam.
Note for ICND2: There are no VRRP, GLBP, NetFlow and NAT questions (and they are not technologies learned in this exam).
Please share with us your experience after taking the ICND2 200-105 exam, your materials, the way you learned, your recommendations… But please DO NOT share any information about the detail of the exam or your personal information, your score, exam date and location, your email…
@Frustrated I found it thank you!
@ Frustrated,
Drop me your email address, I will share the link with you so you can get it. Thanks
Here’s another example of a bad (in my opinion) question:
Which type of topology is required by DMVPN?
A. ring
B. full mesh
C. hub-and-spoke
D. partial mesh
C is the “right” answer, according to the dumps I have seen, and I assume this is what Cisco expects in this case. However, while the hub/client sites are controlled through an artificial hub-and-spoke overlay, this whole arrangement relies on a full mesh solution from the provider–which is why client sites can then establish dynamic GRE tunnels to each other. Sigh. Maybe I’m over-thinking this, but there are so many questions like this that it makes me mad at Cisco.
I’m going to step out on a ledge and disagree with the dumps on this one. They say that E is the correct answer, but if you read their own explanation for their answer, they include:
“Slow InterVLAN Connectivity (Slow Forwarding Between VLANs) Slow interVLAN connectivity (slow forwarding between VLANs) occurs when there is no slowness on the local VLAN, but traffic needs to be forwarded to an alternate VLAN, and it is not forwarded at the expected rate.”
So, instead of E, I think C is actually the correct answer. Any thoughts?
Which statement about slow inter VLAN forwarding is true?
A. The VLAN is experiencing slowness in the point-to-point collisionless connection.
B. The VLANs are experiencing slowness because multiple devices are connected to the same hub.
C. The local VLAN is working normally, but traffic to the alternate VLAN is forwarded slower than expected.
D. The entire VLAN is experiencing slowness.
E. The VLANs are experiencing slowness due to a duplex mismatch.
@ Frustrated –> C is the right answer
DMVPN stands for Dynamic Multipoint VPN and it is an effective solution for dynamic secure overlay networks. In short, DMVPN is combination of the following technologies:
1) Multipoint GRE (mGRE)
2) Next-Hop Resolution Protocol (NHRP)
4) Dynamic Routing Protocol (EIGRP, RIP, OSPF, BGP)
3) Dynamic IPsec encryption
5) Cisco Express Forwarding (CEF)
Assuming that reader has a general understanding of what DMVPN is and a solid understanding of IPsec/CEF, we are going to describe the role and function of each component in details. In this post we are going to illustrate two major phases of DMVPN evolution:
1) Phase 1 – Hub and Spoke (mGRE hub, p2p GRE spokes)
2) Phase 2 – Hub and Spoke with Spoke-to-Spoke tunnels (mGRE everywhere)
I may be wrong, but I think you changed the question. The one I got on my test was talking IntraVlan which is completely difference from the InterVLan.
-Now, Here what I did find on the cisco website about caused of slowness
Troubleshoot Slow IntraVLAN (Broadcast Domain)
After verifying there are no duplex mismatch or collision domain issues as explained in the above section, you can now troubleshoot IntraVLAN slowness. The next step in isolating the location of the slowness is to perform a data transfer between hosts on the same VLAN (but on different ports; that is, on different collision domains), and compare the performance with the same tests in alternate VLANs.
The following may cause slow VLANs:
traffic loop
overloaded or oversubscribed VLAN
congestion on the switch inband path
switch management processor high CPU utilization
ingress errors on a cut-through switch
1 software or hardware misconfiguration
1 software bugs
1 hardware problems
Regarding this question…
Which Cisco platform can verify ACLs?
A. Cisco Prime Infrastructure
B. Cisco Wireless LAN Controller
C. Cisco APIC-EM
D. Cisco IOS-XE
Answer: B ??? (according to the dumps I saw)
However, I think the answer should be C since the APIC-EM Path Trace ACL Analysis tool verifies ACLs, and I don’t think the Wireless LAN controllers are even part of the ICND2 anyway. Perhaps one can verify ACLs applied to a Wireless LAN controllers itself, but I think that is less relevant than the APIC-EM Path Trace ACL Analysis tool, which verifies ACLs end-to-end throughout the network.
Kevin Wallace even has a video about that:
http://kwallaceccie.com/apic-em/
So, by the way, I found Kevin Wallace’s public stuff easily enough, at: http://kwallaceccie.com
So I will take a look at that. Thanks for the tip.
Mark24, Thank you. I copied and pasted the question from a dump, but maybe they changed it, or it was different from the one you had. What you are saying is right for IntraVLAN, but they may ask about either Inter or Intra VLAN I guess.
I found a Cisco web site that seems very relevant to the Collision Domain questions, which may be the same as what you are referring to:
http://www.cisco.com/c/en/us/support/docs/lan-switching/virtual-lans-vlan-trunking-protocol-vlans-vtp/23637-slow-int-vlan-connect.html#troublesht_collision
Mark24, Thank you for your input on the DMVPN question. I believe you that Cisco thinks of it as hub and spoke, as they refer to hub and spoke incessantly in their DMVPN documentation. I was just saying that the underlying infrastructure necessary to support DMVPN is actually a full-mesh WAN service, so a reasonable person might guess that a “requirement” for DMVPN is full-mesh. I’m not sure if Cisco is intentionally trying to trick people, or whether they just failed to consider this other valid point of view. My point was that it was a poor choice for a question. But thanks again for your comment. I will select “hub and spoke” on the test.
@Frustratred about this question :
Which Cisco platform can verify ACLs?
A. Cisco Prime Infrastructure
B. Cisco Wireless LAN Controller
C. Cisco APIC-EM
D. Cisco IOS-XE
Cisco has put this in to new Apendix( I think was Apendix- B) and the correct answer is C- APIC-EM.
And be aware that in PassLeader’s PDF has a few incorrect answers.
@Vince,
Thank you for confirming that APIC-EM is a better answer, regarding verifying ACLs.
I only got through the first 100 questions in PassLeader so far, but (sadly) I already saw several dubious answers and Frame-Relay questions, which means that I can’t be overly reliant on this type of information. And this is the same for all three dumps I looked at so far. However, I guess viewing the dumps is still an essential part of a well-balanced study plan. My initial mistake was to go solely by the book alone. I think I need to also go through each subject Cisco lists and search the Internet till I understand it. Books are OK, but not enough.
@ Frustrated
Please stay away for any Frame-Relay questions (It is no longer part of the CCNA)
Also from Drag and Drop..I think they remove them too.
Had my exam this morning. There are a few questions that I have seen that are the same. I can’t really remember a lot right now. Please know your stuff, studying the questions won’t help. The Sims were ospf,eigrp and GRE. The questions are not the same for the sims, they are slightly different. I got no drag and drop. I do however know for a fact that some of the questions that others are posting like passleader etc contains incorrect answer. I did 8 months studying on my own, read the book twice, practiced sims, watched multiple videos from sources and researched questions. You don’t have to use the same strategy but just studying the questions won’t help.
It was a nerve wrecking exam, I am proud of myself. All the best for the new year. And good luck to those waiting to do the exam.
@JJ Good job. If you remember some of your questions , please share with us.
Congratulations JJ, and thanks for the tips. Yeah, many of the questions from the dumps are useless–probably worse than usual since the test was recently updated. And yes, its a nerve-wracking test, so we will really have to know our stuff no matter what, and should be proud once we pass this hurdle.
Oh, I just started looking back at the older comments and now I see that the 270 questions from the PassLeader dump Roy shared isn’t the same as the (presumably newer) 346 questions, which I guess no one has shared. Oh well. But I bet even the 346 one is full of incorrect questions and answers. Sigh.
OK, I broke down and bought the latest PassLeader dump… seems to be identical to Roy’s share up to question 271, then has more questions up to 346–but those additional questions are often old (including Frame-Relay). So, if you are on a tight budget, don’t bother. Maybe someone else can share the full PassLeader dump, but I don’t dare to myself.
@Frustrated could you please send it to me? I wrote you my e-maill before few days. I can give you back Dave’s stuff…
You enter the show ipv6 route command on an OSPF device and the device displays a route. Which conclusion can you draw about the environment?
A. OSPF is distributing IPv6 routes to BGP.
B. The router is designated as an ABR.
C. The router is designated as totally stubby.
D. OSPFv3 is in use.
Answer: A ???? (but why? why not D?)
Can anyone please make sense of this question/answer? I found a Cisco web site which shows that the ‘show ip route’ command does return OSPF routes in an OSPFv3 environment:
http://www.cisco.com/c/en/us/support/docs/ip/ip-version-6-ipv6/112100-ospfv3-config-guide.html#veri
My book just says that ‘show ipv6 route’ lists all routes, whereas ‘show ipv6 route ospf’ limits it to just the OSPF routes. I think that either something is missing on the dumps, which would make this answer correct, or else its just another bad question from Cisco.
Anyway, none of the answers are correct really. If you type ‘show ipv6 route’, it might display ‘a route’ that is neither OSPF nor BGP, like a link-local route, right?
I just give up on this one, unless someone can make sense of it. At least I won’t waste time debating it while I am taking the test, if it comes up.
In every dumps and information about this question I do not found an expalnation. Just marked A. I have this question on my exam and I have checked A but D also works and i think next time I will choose D.
Ipv6 support OSPFv3 and It seems the closer answer for me….
@ Frustrated
A-> This does not make sense at all
B->ABR has nothing to do with this.
C–> Stub OSPF are not part of the ICND2
D–> Correct and OSPF speaking (configured with dual stack) will give you both IPv4 and IPv6 route
The answer is D
hi guys! can someone share with me icnd2 dump (e.g. 346q full dump)? I would like to take an exam and it would be a great support for me. thx in advance
mail: jogyulas @ gmail . com
hi guys! can someone share with me icnd2 dump (e.g. 346q full dump)? I would like to take an exam and it would be a great support for me. thx in advance
mail: jogyulas @ gmail . com
Here what I have got so far:
1. Got 24 new Questions, we need the answers, so lets help to get the answers please.
Question: 1
After you configure a new router to connect to a host through the GigabitEthernet0/0 port of the router, you log in to the router and observe that the new link is down Which action corrects the Problem?
A. Use a crossover cable between the host and R1.
B. Use a straight through cable between the host and R1.
C. Configure the host to use R1 as the default gateway.
D. Use a rollover cable between the host and R1.
Answer: C
Question: 2
Which two statements about the spanning-tree bridge ID are true? (Choose two)
A. It is composed of a 4-bit bridge priority and a 12-bit system ID extension.
B. The bridge ID is transmitted in the IP header to elect the root bridge.
C. The system ID extension is a value between 1 and 4095.
D. It is composed of an 8-bit bridge priority and a 16-bit system ID extension.
E. The bridge priority must be incremented in blocks of 4096.
Answer: C,E
Question: 3
Refer to the exhibit. Which switch in this configuration becomes the root bridge?
A. SW1
B. SW2
C. SW3
D. SW4
Answer:
Question: 4
Which identification number is valid for an extended ACL?
A. 1
B. 64
C. 99
D. 100
E. 299
F. 1099
Answer: D
Question: 5
Which VLAN bridge priority value is assigned by the set span tree root command?
A. 8192
B. 16384
C. 28672
D. 32768
Answer: A
1. Explanations: The set spantree priority command provides a third method to specify the root switch: Source Cisco Website
2. Switch-15> (enable)set spantree priority 8192
3. Spantree 1 bridge priority set to 8192.
Question: 6
Which purpose of the network command in OSPF configuration mode is true?
A. It defines a wildcard mask to identify the size of the network.
B. It defines the area ID.
C. It defines the network by its classful entry.
D. It defines which networks are used for virtual links.
Answer:
Question: 7
Which feature can validate address requests and filter out invalid messages? O
A. IP Source Guard
B. port security
C. DHCP snooping
D. dynamic ARP inspection
Answer: C
Question: 8
Which configuration enables OSPF for network 192.168.1.0/24?
A. router ospf
router-id 192.168.1.0
B. router ospf 1
network 192.168.1.0 255.255.255.0 area 0
C. router ospf 1
neighbor 192.168.1.0
D. router ospf 1
area 0 virtual-link 192.168.1.0
Answer: B
Question: 9
Which command do you enter to view EIGRPv6 adjacencies?
A. show ipv6 eigrp 1 interface
B. show ipv6 route eigrp
C. show ipv6 eigrp neighbors
D. show running-configuration eigrp
Answer: C Per Cisco: provide the command show ipv6 eigrp neighbors to verify that an adjacency has been accomplished with their neighboring routers. Then the link local address of a neighbor router displayed in an adjacency table as follows:
Question: 10
What is the default encapsulation type for Cisco WAN serial interfaces?
A. GRE
B. PPP
C. Frame Relay
D. IEEE 802.1Q
E. HDLC
Answer: E
Question: 11
Which three checks must you perform when troubleshooting EIGRPvB adjacencies? (Choose three.)
A. Verify that IPv6 is enabled.
B. Verify that the network command has been configured.
C. Verify that auto summary is enabled.
D. Verify that the interface is up.
E. Verify that an IPv4 address has been configured.
F. Verify that the router ID has been configured.
Answer: A, D,F
Question: 12
Which statement about VLAN configuration is true?
A. The switch must be in config-vlan mode before you configure an extended VLAN.
B. Dynamic inter-VLAN routing is supported on VLAN 2 through VLAN 4064.
C. A switch in VTP transparent mode saves the VLAN database to the running configuration only.
D. The switch must be in VTP server or transparent mode before you configure a VLAN.
Answer: D
Question: 13
Routers R1 and R2 are on the same network segment, and both routers use interface Ethernet0/0. If R1 loses communication to R2, which two terns should you check as you begn GigabitEthernetO/0. If R1 lose: troubleshooting? (Choose two )
A. Verify that R2 is using 802 1q encapsulation
B. Verify that the GigabrtEthernet0/0 interfaces on R1 and R2 are configured with the same subnet mask.
C. Verify that the R1 GigabitEthernet0/0 interface is up and the line protocol is down.
D. Verify that R1 and R2 both are using HDLC encapsulation
E. that the R1 GigabitEthernet0/0 interface is up and the line protocol is up.
Answer: B and C
Question: 14
Which command do you enter to enable an interface to support PPPoE on a client?
A. Dev1(config)# bba-group pppoe bba 1.
B. Dev1(config-if)# pppoe-client dial-pool-number 1.
C. Dev1(config-if)# pppoe enable group bba1.
D. Dev1(config-if)# pppoe enable.
Answer:
Question: 15
Which three options are types of slow VI AN connectivity? (Choose three)
A. slow broadcast domain connectivity.
B. slow routing domain connectivity.
C. slow default gateway connectivity.
D. slow application domain connectivity.
E. slow collision domain connectivity.
F. slow inter VI AN connectivity.
Answer:
Question: 16
Which value can you modify to configure a specific interface as the preferred forwarding interface?
A. the VLAN priority
B. the hello time
C. the port priority
D. the interface number
Answer: A Vlan Priority is the correct answer (c also can be the correct answer if applied in port from the sending switch)
Question: 17
Which WAN technology uses labels to make decisions about data forwarding?
A. Metro Ethernet
B. Frame Relay
C. MPLS
D. ISDN
E. VSAT
Answer: C
Question: 18
Which two actions must you take to configure a PAgP EtherChannel between two switches, S1 and S2? (Choose two.)
A. Configure the channel-group 1 mode auto command on S1. Correct
B. Configure the channel-group 1 mode desirable command on S2. Correct
C. Configure the channel-group 1 mode active command on S2.
D. Configure the channel-group 1 mode on command on S2.
E. Configure the channel-group 1 mode active command on S1.
Answer: A and B
Question: 19
What command can you enter to assign an interface to the default VLAN?
A. Switch(config-if)# switchport access vlan 1
B. Switch(config-jf)# switchport trunk native vlan 1
C. Switch(config-if)# vlan 1
D. Switch(config)# int vlan 1
Answer:
Question: 20
Which statement about the IP SLAs ICMP Echo operation is true?
A. It is configured in enable mode. -> Wrong it is configure en config mode
B. It is used to determine the one-way delay between devices. Wrong because it used Icmp echo request and echo reply (meaning a two way connectivity)
C. It is used to identify the best source interface from which to send traffic to a destination.
D. The frequency of the operation is specified in milliseconds.–> Wrong default in second
Answer: C is the correct answer
Question: 21
Which feature can you use to restrict SNMP queries to a specific OID tree?
A. a server group
B. a view record This is the correct answer
C. a community
D. an access group
Answer: C Explanation: Setup SNMP View
The Setup SNMP view command can block the user with only access to limited Management Information Base (MIB). By default, there is no SNMP view entry exists. This command is configured at the global configuration mode and first introduced in Cisco IOS Software version 10.3. It works similar to access-list in that if you have any SNMP View on certain MIB trees, every other tree is denied inexplicably. However, the sequence is not important and it goes through the entire list for a match before it stops.
Question: 22
Refer to the exhibit
While you troubleshoot a connectivity issue to a PC behind R1, you enter the show access-lists command to generate this output. Which reason for the problem is most likely true?
A. The permit all ACL entry on R1 is inactive.
B. The ACL of R1 is misconfigured.
C. A deny all ACL entry is currently active on R1.
D. An implicit deny is causing R1 to block network traffic.
Answer: I remember this question This Implicite deny will be the answer
Question: 23
After you configure a GRE tunnel between two networks, the tunnel comes up normally, but workstations on each side of the tunnel cannot communicate. Which reason for the problem is most likely true?
A. The tunnel source address is incorrect.
B. The tunnel destination address is incorrect.
C. The route between the networks is undefined.
D. The IP MTU is incorrect.
E. The distance configuration is missing.
Answer: More Info will be needed on this one. ABC will apply as answers to this question
Question: 24
Which type does a port become when it receives the best BPDU on a bridge?
A. the backup port
B. the root port
C. the designated port this is the right Answer (Best BPDU dictate who is the root bridge. Root Bridge always have all its ports as designated)
D. the alternate port
@ Dan242, crack and Frusstrated here are the answers for those questions that I have:
Question: 1
After you configure a new router to connect to a host through the GigabitEthernet0/0 port of the router, you log in to the router and observe that the new link is down Which action corrects the Problem?
A. Use a crossover cable between the host and R1. <—– Correct
B. Use a straight through cable between the host and R1.
C. Configure the host to use R1 as the default gateway.
D. Use a rollover cable between the host and R1.
Answer:
Question: 2
Which two statements about the spanning-tree bridge ID are true? (Choose two)
A. It is composed of a 4-bit bridge priority and a 12-bit system ID extension. <—— Correct
B. The bridge ID is transmitted in the IP header to elect the root bridge.
C. The system ID extension is a value between 1 and 4095.
D. It is composed of an 8-bit bridge priority and a 16-bit system ID extension.
E. The bridge priority must be incremented in blocks of 4096. <—— Correct
Answer:
Question: 3
Refer to the exhibit. Which switch in this configuration becomes the root bridge?
A. SW1
B. SW2
C. SW3 <—- Correct ( But you shoud see the exhibit first)
D. SW4
Answer:
Question: 4
Which identification number is valid for an extended ACL?
A. 1
B. 64
C. 99
D. 100 <—- Correct
E. 299
F. 1099
Answer:
Question: 5
Which VLAN bridge priority value is assigned by the set span tree root command?
A. 8192 <—- Correct
B. 16384
C. 28672
D. 32768
Answer:
Question: 6
Which purpose of the network command in OSPF configuration mode is true?
A. It defines a wildcard mask to identify the size of the network. < —– Correct
B. It defines the area ID.
C. It defines the network by its classful entry.
D. It defines which networks are used for virtual links.
Answer:
Question: 7
Which feature can validate address requests and filter out invalid messages? O
A. IP Source Guard
B. port security
C. DHCP snooping
D. dynamic ARP inspection
Answer:
Question: 8
Which configuration enables OSPF for network 192.168.1.0/24?
A. router ospf
router-id 192.168.1.0
B. router ospf 1
network 192.168.1.0 255.255.255.0 area 0 <—-Correct
C. router ospf 1
neighbor 192.168.1.0
D. router ospf 1
area 0 virtual-link 192.168.1.0
Answer:
Question: 9
Which command do you enter to view EIGRPv6 adjacencies?
A. show ipv6 eigrp 1 interface
B. show ipv6 route eigrp
C. show ipv6 eigrp neighbors <— Correct
D. show running-configuration eigrp
Answer:
Question: 10
What is the default encapsulation type for Cisco WAN serial interfaces?
A. GRE
B. PPP <—- Not so sure but I think is that
C. Frame Relay
D. IEEE 802.1Q
E. HDLC
Answer:
Question: 11
Which three checks must you perform when troubleshooting EIGRPvB adjacencies? (Choose three.)
A. Verify that IPv6 is enabled.
B. Verify that the network command has been configured.
C. Verify that auto summary is enabled.
D. Verify that the interface is up.
E. Verify that an IPv4 address has been configured.
F. Verify that the router ID has been configured.
Answer:
Question: 12
Which statement about VLAN configuration is true?
A. The switch must be in config-vlan mode before you configure an extended VLAN.
B. Dynamic inter-VLAN routing is supported on VLAN 2 through VLAN 4064.
C. A switch in VTP transparent mode saves the VLAN database to the running configuration only.
D. The switch must be in VTP server or transparent mode before you configure a VLAN. <—–Correct
Answer:
Question: 13
Routers R1 and R2 are on the same network segment, and both routers use interface Ethernet0/0. If R1 loses communication to R2, which two terns should you check as you begn GigabitEthernetO/0. If R1 lose: troubleshooting? (Choose two )
A. Verify that R2 is using 802 1q encapsulation
B. Verify that the GigabrtEthernet0/0 interfaces on R1 and R2 are configured with the same subnet mask.
C. Verify that the R1 GigabitEthernet0/0 interface is up and the line protocol is down.
D. Verify that R1 and R2 both are using HDLC encapsulation
E. that the R1 GigabitEthernet0/0 interface is up and the line protocol is up.
Answer:
Question: 14
Which command do you enter to enable an interface to support PPPoE on a client?
A. Dev1(config)# bba-group pppoe bba 1.
B. Dev1(config-if)# pppoe-client dial-pool-number 1.
C. Dev1(config-if)# pppoe enable group bba1.
D. Dev1(config-if)# pppoe enable.
Answer:
Question: 15
Which three options are types of slow VI AN connectivity? (Choose three)
A. slow broadcast domain connectivity. <—– Correct
B. slow routing domain connectivity.
C. slow default gateway connectivity.
D. slow application domain connectivity.
E. slow collision domain connectivity. <—-Correct
F. slow inter VI AN connectivity. <—–Correct
Answer:
Question: 16
Which value can you modify to configure a specific interface as the preferred forwarding interface?
A. the VLAN priority
B. the hello time
C. the port priority <—– Correct
D. the interface number
Answer:
Question: 17
Which WAN technology uses labels to make decisions about data forwarding?
A. Metro Ethernet
B. Frame Relay
C. MPLS
D. ISDN
E. VSAT
Answer: I think is MPLS but I am not so sure
Question: 18
Which two actions must you take to configure a PAgP EtherChannel between two switches, S1 and S2? (Choose two.)
A. Configure the channel-group 1 mode auto command on S1.
B. Configure the channel-group 1 mode desirable command on S2.
C. Configure the channel-group 1 mode active command on S2.
D. Configure the channel-group 1 mode on command on S2.
E. Configure the channel-group 1 mode active command on S1.
Answer:
Question: 19
What command can you enter to assign an interface to the default VLAN?
A. Switch(config-if)# switchport access vlan 1
B. Switch(config-jf)# switchport trunk native vlan 1
C. Switch(config-if)# vlan 1
D. Switch(config)# int vlan 1
Answer:
Question: 20
Which statement about the IP SLAs ICMP Echo operation is true?
A. It is configured in enable mode.
B. It is used to determine the one-way delay between devices.
C. It is used to identify the best source interface from which to send traffic to a destination.
D. The frequency of the operation is specified in milliseconds.
Answer:
Question: 21
Which feature can you use to restrict SNMP queries to a specific OID tree?
A. a server group
B. a view record <—- Correct
C. a community
D. an access group
Answer:
Question: 22
Refer to the exhibit
While you troubleshoot a connectivity issue to a PC behind R1, you enter the show access-lists command to generate this output. Which reason for the problem is most likely true?
A. The permit all ACL entry on R1 is inactive.
B. The ACL of R1 is misconfigured.
C. A deny all ACL entry is currently active on R1.
D. An implicit deny is causing R1 to block network traffic.
Answer:
Question: 23
After you configure a GRE tunnel between two networks, the tunnel comes up normally, but workstations on each side of the tunnel cannot communicate. Which reason for the problem is most likely true?
A. The tunnel source address is incorrect.
B. The tunnel destination address is incorrect.
C. The route between the networks is undefined.
D. The IP MTU is incorrect.
E. The distance configuration is missing.
Answer:
Question: 24
Which type does a port become when it receives the best BPDU on a bridge?
A. the backup port
B. the root port <—– Correct
C. the designated port
D. the alternate port
Please check my answers and complete all other questions.
Hi Vince Thanks for posting your answer. Can you elaborate on Question 2 (I know this question came through my second test, I don’t wanna miss it again). Here what cisco said part of it. Tell me if this make sense.
The Bridge Priority value and the Extended System ID extension together make up a 16 bit (2-byte) value. The Bridge Priority making up the left most bits, is a value of 0 to 61440. The Extended System ID is a value of 1 to 4095 corresponding to the respective VLAN participating in STP. The Bridge Priority increments in blocks of 4096 to allow the System ID Extension to squeeze in between each increment. This is clearly shown in the below analysis:
I Got 24 wrong: I find it on cisco website:
Root Port Roles
•The port that receives the best BPDU on a bridge is the root port. This is the port that is the closest to the root bridge in terms of path cost. The STA elects a single root bridge in the whole bridged network (per-VLAN). The root bridge sends BPDUs that are more useful than the ones any other bridge sends. The root bridge is the only bridge in the network that does not have a root port. All other bridges receive BPDUs on at least one port.
@Dan242 Thank you also for your answers and explanations.
Here what I found in the book:
The STP bridge ID (BID) is an 8-byte value unique to each switch. The bridge ID consists
of a 2-byte priority field and a 6-byte system ID, with the system ID being based on a universal
(burned-in) MAC address in each switch. Using a burned-in MAC address ensures that
each switch’s bridge ID will be unique.
So in that case one of the correct answers will be D I think.
I will doublecheck second one
Here is one more information that I think is usefull:
As shown in Table 17-1 , the 2 bytes previously used for the switch priority are reallocated into a 4-bit priority value and a 12-bit extended system ID value equal to the VLAN ID.
Table 17-1 Switch Priority Value and Extended System ID
Switch Priority Value
Extended System ID (Set Equal to the VLAN ID)
Bit 16
Bit 15
Bit 14
Bit 13
Bit 12
Bit 11
Bit 10
Bit 9
Bit 8
Bit 7
Bit 6
Bit 5
Bit 4
Bit 3
Bit 2
Bit 1
32768
16384
8192
4096
2048
1024
512
256
128
64
32
16
8
4
2
1
Sorry that was a table. Just compareeach bity with value:( bit 1 – 1, bit 2 – 2, bit 3 – 4…..)
So, I found the answer for number 10. What is the default encapsulation type for Cisco WAN serial interfaces.
Apparently, The answer seems like to be HDLC…
Cisco HDLC Encapsulation
Cisco High-Level Data Link Controller (HDLC) is the Cisco proprietary protocol for sending data over
synchronous serial links using HDLC. Cisco HDLC also provides a simple control protocol calledSerial Line
Address Resolution Protocol (SLARP) to maintain serial link keepalives. Cisco HDLC is the default for data
encapsulation at Layer 2 (data link) of the Open System Interconnection (OSI) stack for efficient packet
delineation and error control.
Note Cisco HDLC is the default encapsulation type for the serial interfaces.
When the encapsulation on a serial interface is changed from HDLC to any other encapsulation type, the
configured serial subinterfaces on the main interface inherit the newly changed encapsulation and they do not
get deleted.
Cisco HDLC uses keepalives to monitor the link state, as described in the Keepalive Timer, on page 5.
Here is the website: http://www.cisco.com/c/en/us/td/docs/routers/access/800/software/configuration/guide/SCG800Guide/SCG800_Guide_BookMap_chapter_01000.pdf
Hi Guys! can someone share the latest updated and valid ICND2 dumps like 346q full dump or any other valid dumps.
Thanks
Question: 19
What command can you enter to assign an interface to the default VLAN?
A. Switch(config-if)# switchport access vlan 1
B. Switch(config-jf)# switchport trunk native vlan 1
C. Switch(config-if)# vlan 1
D. Switch(config)# int vlan 1
answer: A
I passed with an 860. This test is no joke. I’d say about 50-60% of the questions were valid but they definitely changed the options for your answers. There were more SNMP and SDN questions then what is on the dumps. The sims were EIGRP, OSPF and GRE/MLPPP. Know your K values. The sims in the dump are somewhat valid but a few of the questions have completely different answers. Know your stuff. Don’t just go off of the dumps. You can tell they are putting in an effort to try to invalidate the dumps as much as possible. I watched all the videos from Kevin Wallace and read the book as well as did research on Google.
***************************************************************************Can someone please provide me links of dumps or some quiz. THANK YOU ***************************************************************************Please Reply
***************************************************************************
@Dan242 Your answer for question 7 is correct ( DHCP snooping).
Question 14 : Correct Ansewr is D – Dev1(config-if)# pppoe enable
Device(config-if)# pppoe enable Enables a PPPoE session on the Gigabit Ethernet interface
Explanation is from Cisco website: http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/bbdsl/configuration/xe-3s/bba-pppoe-client.html#GUID-B1DB9A75-76E3-4553-B3C3-A73046F5A505
@Dan about Q24: Please check it again. Correct answer should be B-Root Port.
Explanation frem Cisco website:
The port that receives the best BPDU on a bridge is the root port. This is the port that is the closest to the root bridge in terms of path cost. The STA elects a single root bridge in the whole bridged network (per-VLAN). The root bridge sends BPDUs that are more useful than the ones any other bridge sends. The root bridge is the only bridge in the network that does not have a root port. All other bridges receive BPDUs on at least one port
Source: http://www.cisco.com/c/en/us/support/docs/lan-switching/spanning-tree-protocol/24062-146.html
@ Vince
I did post a message after correcting that question 24. Yes the right answer is “Root Port”
@Semen
Any questions you can remember among the new ones? Please post anything that comes to mind (Much appreciated)
I am now reading to find an answer about Q23.
It seems to be Layer3 issue. In the question is says that ” GRE tunnel comes up normally”.
So in that case source and destination addresses are configured properly (up/up).
I am thinking that answer C might be the correct one.
@Dan this will be very helpfull to you for understanding Question 2
http://www.firewall.cx/networking-topics/protocols/spanning-tree-protocol/1054-spanning-tree-protocol-root-bridge-election.html
@Vince,
Q23
Question: 23
After you configure a GRE tunnel between two networks, the tunnel comes up normally, but workstations on each side of the tunnel cannot communicate. Which reason for the problem is most likely true?
A. The tunnel source address is incorrect.
B. The tunnel destination address is incorrect.
C. The route between the networks is undefined. <- Correct
D. The IP MTU is incorrect.
E. The distance configuration is missing.
You are correct. This same issue is one of the questions on this site : https://www.9tut.net/icnd2/icnd2-labsim/gre-multilink-sim#more-880
It shows how it is possible for the tunnel to be up/up, but the devices are not able to communicate. The resolution is that the routing is misconfigured or missing.
Wow, thanks for the questions guys.. You probably know this already, but I saw that one can buy questions from EBAY for about $5. I don’t know what the quality is, but I’ll try that for my next test, rather than paying $45 for a direct download from some random internet person.
I’ll look at the questions you posted and will try to provide feedback.
Thanks (Mark24) for your answers.
@ Frustrated.
Please do not waste your money. I did buy it and was disappointed. Let me know if you need it, but I can ensure you there is nothing new that what we already have
Which PPP show commands are required for the sim?
Here are my thoughts on questions 1-12.
Question: 1
After you configure a new router to connect to a host through the GigabitEthernet0/0 port of the router, you log in to the router and observe that the new link is down Which action corrects the Problem?
A. Use a crossover cable between the host and R1.
B. Use a straight through cable between the host and R1.
C. Configure the host to use R1 as the default gateway.
D. Use a rollover cable between the host and R1.
Answer: A
Explanation: PC’s and Routers have the same pin-out (let’s call it DTE) and Hub/Switch ports use the opposite pin-out (DCE). For a standard connection from a DTE to a DCE device (like a PC to a switch), one would use a straight-through cable. But if you are connecting two similar types of devices together (DTE to DTE) or (DCE to DCE), then you would need a crossover cable. In this example, a PC and a Router are both DTE, so you would need a crossover cable between them. Also, note that since the question mentions that the “link is down”, this is a layer 1 problem–so answer C cannot be correct since that addresses a layer 3 configuration issue. A rollover cable is used for console connections, not Ethernet, so D also cannot be correct.
Question: 2
Which two statements about the spanning-tree bridge ID are true? (Choose two)
A. It is composed of a 4-bit bridge priority and a 12-bit system ID extension.
B. The bridge ID is transmitted in the IP header to elect the root bridge.
C. The system ID extension is a value between 1 and 4095.
D. It is composed of an 8-bit bridge priority and a 16-bit system ID extension.
E. The bridge priority must be incremented in blocks of 4096.
Answer: A, E
The Bridge-ID format has a 2-Byte Priority field and a 6 Byte MAC address. The 16 bits of the 2-Byte Priority field are broken into two parts: a 4-bit priority and a 12-bit System-ID Extension. The 12-bit System-ID is used by Cisco for the VLAN-ID—no exceptions. Only the 4-bit Priority field can be configured. The default priority is 32,768. Cisco adds the system-id extension (VLAN) to that. For example, if you if you type ‘show spanning-tree vlan 1’ on an unconfigured switch, its Bridge-ID would be 32,768 + 1 = 32,769 (for VLAN 1). Lower numbers are preferred in the root bridge election. Since the 4-bit Priority field is on the left side (the higher-order bits), each additional bit represents 4096 (two to the twelfth) more. So, if we manually configure the bridge priority ‘spanning-tree vlan vlan-id priority nx4096’, we must remember to do it in multiples of 4096. To avoid doing math, many people prefer the command ‘spanning-tree vlan vlan-id root {primary | secondary}’. However, when this command is applied, the switch examines the existing Bridge-ID’s on the VLAN before deciding what number to apply. If the current root bridge has a priority higher than 24576, then ‘spanning-tree vlan vlan-id root primary’ will use 24,576. However, if the current root bridge is 24,576 or lower, that command will cause the current switch to be lower than the current root bridge (by 4096). The ‘secondary’ option gives the switch a priority of 28,672.
Question: 3
Refer to the exhibit. Which switch in this configuration becomes the root bridge?
A. SW1
B. SW2
C. SW3
D. SW4
Answer: I would have to see the diagram. Just remember that the rules for root bridge are:
1. LOWEST Priority
2. If priority is equal, then LOWEST MAC address
Question: 4
Which identification number is valid for an extended ACL?
A. 1
B. 64
C. 99
D. 100
E. 299
F. 1099
Answer: D
Standard ACL’s: 1-99 and 1300-1999
Extended ACL’s: 100-199 and 2000-2699
It helps me to think of Prince’s song 1999, so that I remember the break point is 1999, not 2000. Similarly, the lower-level break point is 99, not 100. Also, remember that the upper ranges have 700 #’s each, so it is 1300-1999 or 2000-2699 (both blocks of 700). It should be easy to remember that the lower level numbers are below and above 100. I guess Cisco initially thought 100 would be enough, but then reconsidered and added the upper blocks to provide more access list numbers.
Question: 5
Which VLAN bridge priority value is assigned by the set span tree root command?
A. 8192
B. 16384
C. 28672
D. 32768
Answer: A
Explanation: This is probably an old question, since the command ‘set spantree root vlan_id’ is a Catalyst-type command, right? It does apply 8192 though, so A is right.
Question: 6
Which purpose of the network command in OSPF configuration mode is true?
A. It defines a wildcard mask to identify the size of the network.
B. It defines the area ID.
C. It defines the network by its classful entry.
D. It defines which networks are used for virtual links.
Answer: A
Question: 7
Which feature can validate address requests and filter out invalid messages?
A. IP Source Guard
B. port security
C. DHCP snooping
D. dynamic ARP inspection
Answer: C
Overview of DHCP Snooping
DHCP snooping is a security feature that acts like a firewall between untrusted hosts and trusted DHCP servers. The DHCP snooping feature performs the following activities:
• Validates DHCP messages received from untrusted sources and filters out invalid messages.
• Rate-limits DHCP traffic from trusted and untrusted sources.
• Builds and maintains the DHCP snooping binding database, which contains information about untrusted hosts with leased IP addresses.
• Utilizes the DHCP snooping binding database to validate subsequent requests from untrusted hosts.
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/snoodhcp.html#wp1120427
Just in case anyone is curious, I also looked into IP Source Guard. It is a real option, but not the right answer here:
Overview of IP Source Guard
IP Source Guard provides source IP address filtering on a Layer 2 port to prevent a malicious host from impersonating a legitimate host by assuming the legitimate host’s IP address. The feature uses dynamic DHCP snooping and static IP source binding to match IP addresses to hosts on untrusted Layer 2 access ports.
Initially, all IP traffic on the protected port is blocked except for DHCP packets. After a client receives an IP address from the DHCP server, or after static IP source binding is configured by the administrator, all traffic with that IP source address is permitted from that client. Traffic from other hosts is denied. This filtering limits a host’s ability to attack the network by claiming a neighbor host’s IP address. IP Source Guard is a port-based feature that automatically creates an implicit port access control list (PACL).
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/ipsrcgrd.html#wp1097284
Question: 8
Which configuration enables OSPF for network 192.168.1.0/24?
A. router ospf
router-id 192.168.1.0
B. router ospf 1
network 192.168.1.0 255.255.255.0 area 0
C. router ospf 1
neighbor 192.168.1.0
D. router ospf 1
area 0 virtual-link 192.168.1.0
Answer: B
Question: 9
Which command do you enter to view EIGRPv6 adjacencies?
A. show ipv6 eigrp 1 interface
B. show ipv6 route eigrp
C. show ipv6 eigrp neighbors
D. show running-configuration eigrp
Answer: C
Question: 10
What is the default encapsulation type for Cisco WAN serial interfaces?
A. GRE
B. PPP
C. Frame Relay
D. IEEE 802.1Q
E. HDLC
Answer: E
Question: 11
Which three checks must you perform when troubleshooting EIGRPvB adjacencies? (Choose three.)
A. Verify that IPv6 is enabled.
B. Verify that the network command has been configured.
C. Verify that auto summary is enabled.
D. Verify that the interface is up.
E. Verify that an IPv4 address has been configured.
F. Verify that the router ID has been configured.
Answer: A,D,F
Explanation: EIGRP for IPv6 (my guess of what EIGRPvB means) uses link-local addresses for the neighbor relationship, so IPv6 must be enabled, so A is correct. Note, for this reason, interfaces do NOT have to be in the same subnet to be EIGRP neighbors with IPv6. You do not use the “network” command with IPv6, instead using an interface command to enable EIGRP, so B cannot be correct. From my book: “EIGRP for IPv6 does not have an autosummary concept,” so C cannot be right. The interface must be in an up/up state, of course, so D is correct. You do not need any IPv4 addresses, but with both EIGRP and OSPF for IPv6, you must explicitly set the router-id if you do not use any IPv4 addresses. Also, remember that the command is ‘router-id’ for OSPF, but ‘eigrp router-id’ for EIGRP (same for both versions). They will try to trick you with that bit of trivia. I have seen that on a question.
Question: 12
Which statement about VLAN configuration is true?
A. The switch must be in config-vlan mode before you configure an extended VLAN.
B. Dynamic inter-VLAN routing is supported on VLAN 2 through VLAN 4064.
C. A switch in VTP transparent mode saves the VLAN database to the running configuration only.
D. The switch must be in VTP server or transparent mode before you configure a VLAN.
Answer: D
Explanation: They frequently have questions to make sure that you understand the role of the Client, Server, and Transparent VTP modes. You cannot configure VLANs in the Client mode, so I think D is correct.
“You can configure extended-range VLANs only in global configuration mode. You cannot configure extended-range VLANs in VLAN database mode.” (from Cisco, see link below). Such trivia! Anyway, A is not correct. A more important point, often on tests, is that you cannot use the extended VLANs (above 1005) with VTP (client/server), so you have to use VTP transparent mode and configure them on each switch directly, if you want to use VLANs above 1005. Also, know that VLANs 1002-1005 are reserved for old protocols, so unusable. Answer B doesn’t make sense to me. Why wouldn’t routing be supported on VLANs 1 and 4065-4096? I mean, yeah, technically it is supported on 2-4064, but also on the others, so…again, another right answer from Cisco that is meant to be wrong. Anyway, Dynamic and inter-VLAN routing don’t exactly belong together very well, as far as I know, so that’s another reason to suspect this is a mumbo-jumbo answer that isn’t mean to be correct. Answer C is probably wrong. A transparent switch does save VLAN configuration settings in the running configuration, but also to the start-up configuration when you ‘copy run start’.
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/vlans.html
Question: 1
After you configure a new router to connect to a host through the GigabitEthernet0/0 port of the router, you log in to the router and observe that the new link is down Which action corrects the Problem?
A. Use a crossover cable between the host and R1.
B. Use a straight through cable between the host and R1.
C. Configure the host to use R1 as the default gateway.
D. Use a rollover cable between the host and R1.
Answer: A
Explanation: PC’s and Routers have the same pin-out (let’s call it DTE) and Hub/Switch ports use the opposite pin-out (DCE). For a standard connection from a DTE to a DCE device (like a PC to a switch), one would use a straight-through cable. But if you are connecting two similar types of devices together (DTE to DTE) or (DCE to DCE), then you would need a crossover cable. In this example, a PC and a Router are both DTE, so you would need a crossover cable between them. Also, note that since the question mentions that the “link is down”, this is a layer 1 problem–so answer C cannot be correct since that addresses a layer 3 configuration issue. A rollover cable is used for console connections, not Ethernet, so D also cannot be correct.
Question: 2
Which two statements about the spanning-tree bridge ID are true? (Choose two)
A. It is composed of a 4-bit bridge priority and a 12-bit system ID extension.
B. The bridge ID is transmitted in the IP header to elect the root bridge.
C. The system ID extension is a value between 1 and 4095.
D. It is composed of an 8-bit bridge priority and a 16-bit system ID extension.
E. The bridge priority must be incremented in blocks of 4096.
Answer: A, E
Explanation: The Bridge-ID format has a 2-Byte Priority field and a 6 Byte MAC address. The 16 bits of the 2-Byte Priority field are broken into two parts: a 4-bit priority and a 12-bit System-ID Extension. The 12-bit System-ID is used by Cisco for the VLAN-ID—no exceptions. Only the 4-bit Priority field can be configured. The default priority is 32,768. Cisco adds the system-id extension (VLAN) to that. For example, if you if you type ‘show spanning-tree vlan 1’ on an unconfigured switch, its Bridge-ID would be 32,768 + 1 = 32,769 (for VLAN 1). Lower numbers are preferred in the root bridge election. Since the 4-bit Priority field is on the left side (the higher-order bits), each additional bit represents 4096 (two to the twelfth) more. So, if we manually configure the bridge priority ‘spanning-tree vlan vlan-id priority nx4096’, we must remember to do it in multiples of 4096. To avoid doing math, many people prefer the command ‘spanning-tree vlan vlan-id root {primary | secondary}’. However, when this command is applied, the switch examines the existing Bridge-ID’s on the VLAN before deciding what number to apply. If the current root bridge has a priority higher than 24576, then ‘spanning-tree vlan vlan-id root primary’ will use 24,576. However, if the current root bridge is 24,576 or lower, that command will cause the current switch to be lower than the current root bridge (by 4096). The ‘secondary’ option gives the switch a priority of 28,672.
Question: 3
Refer to the exhibit. Which switch in this configuration becomes the root bridge?
A. SW1
B. SW2
C. SW3
D. SW4
Answer: I would have to see the diagram. Just remember that the rules for root bridge are:
1. LOWEST Priority
2. If priority is equal, then LOWEST MAC address
Question: 4
Which identification number is valid for an extended ACL?
A. 1
B. 64
C. 99
D. 100
E. 299
F. 1099
Answer: D
Standard ACL’s: 1-99 and 1300-1999
Extended ACL’s: 100-199 and 2000-2699
It helps me to think of Prince’s song 1999, so that I remember the break point is 1999, not 2000. Similarly, the lower-level break point is 99, not 100. Also, remember that the upper ranges have 700 #’s each, so it is 1300-1999 or 2000-2699 (both blocks of 700). It should be easy to remember that the lower level numbers are below and above 100. I guess Cisco initially thought 100 would be enough, but then
Question: 5
Which VLAN bridge priority value is assigned by the set span tree root command?
A. 8192
B. 16384
C. 28672
D. 32768
Answer: A
Explanation: This is probably an old question, since the command ‘set spantree root vlan_id’ is a Catalyst-type command, right? It does apply 8192 though, so A is right.
Question: 6
Which purpose of the network command in OSPF configuration mode is true?
A. It defines a wildcard mask to identify the size of the network.
B. It defines the area ID.
C. It defines the network by its classful entry.
D. It defines which networks are used for virtual links.
Answer: A
Question: 7
Which feature can validate address requests and filter out invalid messages?
A. IP Source Guard
B. port security
C. DHCP snooping
D. dynamic ARP inspection
Answer: C
Overview of DHCP Snooping
DHCP snooping is a security feature that acts like a firewall between untrusted hosts and trusted DHCP servers. The DHCP snooping feature performs the following activities:
• Validates DHCP messages received from untrusted sources and filters out invalid messages.
• Rate-limits DHCP traffic from trusted and untrusted sources.
• Builds and maintains the DHCP snooping binding database, which contains information about untrusted hosts with leased IP addresses.
• Utilizes the DHCP snooping binding database to validate subsequent requests from untrusted hosts.
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/snoodhcp.html#wp1120427
Just in case anyone is curious, I also looked into IP Source Guard. It is a real option, but not the right answer here:
Overview of IP Source Guard
IP Source Guard provides source IP address filtering on a Layer 2 port to prevent a malicious host from impersonating a legitimate host by assuming the legitimate host’s IP address. The feature uses dynamic DHCP snooping and static IP source binding to match IP addresses to hosts on untrusted Layer 2 access ports.
Initially, all IP traffic on the protected port is blocked except for DHCP packets. After a client receives an IP address from the DHCP server, or after static IP source binding is configured by the administrator, all traffic with that IP source address is permitted from that client. Traffic from other hosts is denied. This filtering limits a host’s ability to attack the network by claiming a neighbor host’s IP address. IP Source Guard is a port-based feature that automatically creates an implicit port access control list (PACL).
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/ipsrcgrd.html#wp1097284
Question: 8
Which configuration enables OSPF for network 192.168.1.0/24?
A. router ospf
router-id 192.168.1.0
B. router ospf 1
network 192.168.1.0 255.255.255.0 area 0
C. router ospf 1
neighbor 192.168.1.0
D. router ospf 1
area 0 virtual-link 192.168.1.0
Answer: B
Question: 9
Which command do you enter to view EIGRPv6 adjacencies?
A. show ipv6 eigrp 1 interface
B. show ipv6 route eigrp
C. show ipv6 eigrp neighbors
D. show running-configuration eigrp
Answer: C
Question: 10
What is the default encapsulation type for Cisco WAN serial interfaces?
A. GRE
B. PPP
C. Frame Relay
D. IEEE 802.1Q
E. HDLC
Answer: E
Question: 11
Which three checks must you perform when troubleshooting EIGRPvB adjacencies? (Choose three.)
A. Verify that IPv6 is enabled.
B. Verify that the network command has been configured.
C. Verify that auto summary is enabled.
D. Verify that the interface is up.
E. Verify that an IPv4 address has been configured.
F. Verify that the router ID has been configured.
Answer: A,D,F
Explanation: EIGRP for IPv6 (my guess of what EIGRPvB means) uses link-local addresses for the neighbor relationship, so IPv6 must be enabled, so A is correct. Note, for this reason, interfaces do NOT have to be in the same subnet to be EIGRP neighbors with IPv6. You do not use the “network” command with IPv6, instead using an interface command to enable EIGRP, so B cannot be correct. From my book: “EIGRP for IPv6 does not have an autosummary concept,” so C cannot be right. The interface must be in an up/up state, of course, so D is correct. You do not need any IPv4 addresses, but with both EIGRP and OSPF for IPv6, you must explicitly set the router-id if you do not use any IPv4 addresses. Also, remember that the command is ‘router-id’ for OSPF, but ‘eigrp router-id’ for EIGRP (same for both versions). They will try to trick you with that bit of trivia. I have seen that on a question.
Question: 12
Which statement about VLAN configuration is true?
A. The switch must be in config-vlan mode before you configure an extended VLAN.
B. Dynamic inter-VLAN routing is supported on VLAN 2 through VLAN 4064.
C. A switch in VTP transparent mode saves the VLAN database to the running configuration only.
D. The switch must be in VTP server or transparent mode before you configure a VLAN.
Answer: D
Explanation: They frequently have questions to make sure that you understand the role of the Client, Server, and Transparent VTP modes. You cannot configure VLANs in the Client mode, so I think D is correct.
“You can configure extended-range VLANs only in global configuration mode. You cannot configure extended-range VLANs in VLAN database mode.” (from Cisco, see link below). Such trivia! Anyway, A is not correct. A more important point, often on tests, is that you cannot use the extended VLANs (above 1005) with VTP (client/server), so you have to use VTP transparent mode and configure them on each switch directly, if you want to use VLANs above 1005. Also, know that VLANs 1002-1005 are reserved for old protocols, so unusable. Answer B doesn’t make sense to me. Why wouldn’t routing be supported on VLANs 1 and 4065-4096? I mean, yeah, technically it is supported on 2-4064, but also on the others, so…again, another right answer from Cisco that is meant to be wrong. Anyway, Dynamic and inter-VLAN routing don’t exactly belong together very well, as far as I know, so that’s another reason to suspect this is a mumbo-jumbo answer that isn’t mean to be correct. Answer C is probably wrong. A transparent switch does save VLAN configuration settings in the running configuration, but also to the start-up configuration when you ‘copy run start’.
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-2SX/configuration/guide/book/vlans.html
Question: 13
Routers R1 and R2 are on the same network segment, and both routers use interface Ethernet0/0. If R1 loses communication to R2, which two terns should you check as you begn GigabitEthernetO/0. If R1 lose: troubleshooting? (Choose two )
A. Verify that R2 is using 802 1q encapsulation
B. Verify that the GigabrtEthernet0/0 interfaces on R1 and R2 are configured with the same subnet mask.
C. Verify that the R1 GigabitEthernet0/0 interface is up and the line protocol is down.
D. Verify that R1 and R2 both are using HDLC encapsulation
E. that the R1 GigabitEthernet0/0 interface is up and the line protocol is up.
Answer: B,E
Explanation: You wouldn’t normally trunk between two switches, so A seems wrong. Why would you want to verify that the line protocol is “down”? So I guess C is wrong. HDLC is for serial interfaces, so D is wrong. That leaves B and E as the only reasonable answers.
Skipping question 14 for now…
Question: 15
Which three options are types of slow VI AN connectivity? (Choose three)
A. slow broadcast domain connectivity.
B. slow routing domain connectivity.
C. slow default gateway connectivity.
D. slow application domain connectivity.
E. slow collision domain connectivity.
F. slow inter VI AN connectivity.
Answer: A,E,F
Explanation (see URL below):
http://www.cisco.com/c/en/us/support/docs/lan-switching/virtual-lans-vlan-trunking-protocol-vlans-vtp/23637-slow-int-vlan-connect.html#troublesht_collision
Question: 17
Which WAN technology uses labels to make decisions about data forwarding?
A. Metro Ethernet
B. Frame Relay
C. MPLS
D. ISDN
E. VSAT
Answer: C
Explanation: MPLS is Multi-Protocol “Label” Switching, so that’s your answer.
Question: 18
Which two actions must you take to configure a PAgP EtherChannel between two switches, S1 and S2? (Choose two.)
A. Configure the channel-group 1 mode auto command on S1.
B. Configure the channel-group 1 mode desirable command on S2.
C. Configure the channel-group 1 mode active command on S2.
D. Configure the channel-group 1 mode on command on S2.
E. Configure the channel-group 1 mode active command on S1.
Answer: A,B
Explanation: The auto or desirable options are for PAgP (Port Aggregation Protocol), a Cisco-proprietary dynamic EtherChannel-negotiating protocol. The active and passive options are for LACP (Link Aggregation Control Protocol), a similar public standard. The ‘on’ uses neither PAgP nor LACP, so since the question specifically mentions using PAgP, this isn’t an option. Therefore, A and B are the correct answers.
Question: 19
What command can you enter to assign an interface to the default VLAN?
A. Switch(config-if)# switchport access vlan 1
B. Switch(config-jf)# switchport trunk native vlan 1
C. Switch(config-if)# vlan 1
D. Switch(config)# int vlan 1
Answer: A
Explanation: I guess that since they said ‘assign’ an interface and not ‘create’ a (switched virtual) interface, I’ll go with answer A. Tricky…
This is a very similar question, but with different options. D seems to make sense here, sort of…
Which statement about the IP SLAs ICMP Echo operation is true?
A. The frequency of the operation .s specified in milliseconds.
B. It is used to identify the best source interface from which to send traffic.
C. It is configured in enable mode.
D. It is used to determine the frequency of ICMP packets.
Answer: D
Explanation:
This module describes how to configure an IP Service Level Agreements (SLAs) Internet Control Message Protocol (ICMP) Echo operation to monitor end-to-end response time between a Cisco router and devices using IPv4 or IPv6. ICMP Echo is useful for troubleshooting network connectivity issues. This module also demonstrates how the results of the ICMP Echo operation can be displayed and analyzed to determine how the network IP connections are performing.
ICMP Echo Operation
The ICMP Echo operation measures end-to-end response time between a Cisco router and any devices using IP. Response time is computed by measuring the time taken between sending an ICMP Echo request message to the destination and receiving an ICMP Echo reply.
In the figure below ping is used by the ICMP Echo operation to measure the response time between the source IP SLAs device and the destination IP device. Many customers use IP SLAs ICMP-based operations, in-house ping testing, or ping-based dedicated probes for response time measurements.
The IP SLAs ICMP Echo operation conforms to the same IETF specifications for ICMP ping testing and the two methods result in the same response times.
Configuring a Basic ICMP Echo Operation on the Source Device SUMMARY STEPS
1. enable
2. configure terminal
3. ip sla operation-number
4. icmp-echo {destination-ip-address | destination-hostname} [source-ip {ip-address | hostname} | source-interface interface-name]
5. frequency seconds
6. end
Question: 21
Which feature can you use to restrict SNMP queries to a specific OID tree?
A. a server group
B. a view record
C. a community
D. an access group
Answer: B
Explanation: “You can assign views to community strings to limit which MIB objects an SNMP manager can access.”
“Router(config)# snmp-server view view-name oid-tree {included | excluded}”
Question: 23
After you configure a GRE tunnel between two networks, the tunnel comes up normally, but workstations on each side of the tunnel cannot communicate. Which reason for the problem is most likely true?
A. The tunnel source address is incorrect.
B. The tunnel destination address is incorrect.
C. The route between the networks is undefined.
D. The IP MTU is incorrect.
E. The distance configuration is missing.
Answer: B
Explanation: In order for a GRE tunnel to come up, the specified source IP address must be a valid address on the local router, and in an up/up state, so A is mostly wrong. Also, there must be a route to the destination IP address (or at least a default route), for the tunnel to come up, so they probably don’t want you to pick C. However, and this is the key, when a GRE tunnel is created, it does not check whether the remote IP address is reachable. It doesn’t do a PING test, or anything like that. So the GRE tunnel can come up even if there is no destination IP address for the tunnel. I think this is what they are getting at. You have to realize what they are trying to get from you, because the question is so badly worded.
Question: 24
Which type does a port become when it receives the best BPDU on a bridge?
A. the backup port
B. the root port
C. the designated port
D. the alternate port
Answer: B
I think Cisco has really made getting the dumps an ESSENTIAL part of anyone’s study plan. They think they are being clever, by writing questions that are vague and tricky, but in many cases, their questions are very badly written and subjective–or even technically wrong. I wish they would just stick to plain facts and maybe ask more questions (or whatever), if they want to make it harder. What they are doing is disingenuous, and really pisses me off. A basic CCNA-level test shouldn’t be this hard. I will do everything in my power to NOT buy Cisco gear in my future career, whenever I have a choice. Perhaps for those who can afford to go to their training, there will be the hints necessary to pass the tests. The rest of us have to scratch and claw our way to the top… Don’t feel bad my brothers, for doing what you have to.
I have the PassLeader Dumps from some Google Drive that was shared on here.. It has questions 1-271 as well as 12 “New” questions.. I am wondering which questions are best to study from it? Maybe a range? Also, are the answers accurate? Also is anyone aware of Dave’s whereabouts? He seemed to have a lot of good study materials but I haven’t seen him around here lately.. Thanks in advance..
@Frustrated: Here is my review for question 23
Question: 23
After you configure a GRE tunnel between two networks, the tunnel comes up normally, but workstations on each side of the tunnel cannot communicate. Which reason for the problem is most likely true?
A. The tunnel source address is incorrect.
B. The tunnel destination address is incorrect.
C. The route between the networks is undefined.
D. The IP MTU is incorrect.
E. The distance configuration is missing.
GRE involves 4 differents Ip addresses 2 internal addresses used by hosts or workstations and two public ones used by routers. Here the question says The channel comes up meaning good configuration on the public side. However, the host are not talking to each other. This means One router does not know the private address of the other end of the tunnel
ANSWER : C is the answer
Hello all, I barley failed my test. To pass you need 811. I got 790.
I’m over being pissed off. I’m retaking next week. I’ll pass this time.
Point being, everything on this site and comments are the truth.
the PDFs are ok but have old questions. What we have been posting here is everything you need to pass.
Only thing that would help is have someone consolidate all the new test questions that have been posted from the last 2 weeks or so, that would help a lot.
make it into a word or text document. good luck all.
@Frustrated May I ask where you are getting these questions from???
Hi bro GthrutH1
thank for your corporation can you give us any dums
and good look for your next exam you are so close bro
Just passed my 200-105 Exam with the help of 200-105 braindumps in the first try, thanks very much http://braindumpskey.com/exam/200-105.html for the complete pdf guide.
Do we have a Trojan in the house. I just don’t understand why a person will ask where we getting those questions from?
@Dan242 Did i ask you? what are you trying to imply? i just wanna know if they are valid. chill
@Jack yes they are valid. If you interested in some question or want to discus something please ask here. The source is us. Everyone who fail in exam ( like me) remember questions and share with all friends here.
@GTRUTH1 sorry about your exam. Next time you will pass it! Please share some of your questions and labs.
Thank you!
@Jack
Well!! Good Luck with your question. people are working their asses off to get this going. If you would read two pages back, I am pretty sure you will understand why I reacted the way I did.
-Please bear in mind this site is accessible to anybody (Including the same cisco people) . Now, you want us to disclose that info to you?
PLEASE JUST JUMP-IN AND RIDE WITH US. DON’T ASK WHERE THE BUS IS COMING FROM.
@Dan242 LOL don’t take it personally. we are on a same boat. i was just curious. Sorry 🙂
I have one question about QoS and I am not sure about the answer…
Which statement about QoS default behaivor is true?
a. Ports are untrusted by default.
b. VoIP trafic is passed without being tagged.
c. Video traffic with a well-known DSCP value of 46.
d. Packets are classified internally with an envoirment.
e. Packets that arrive with a tag are untegged at the edge of an administrative domain.
I am wondering between A and E….
@ Vince
The answer to that question is C
Here is why:
The Catalyst switch used in this example is a Catalyst 3550 running Cisco IOS. To accomplish this configuration of applying differentiated service to VoIP traffic, the switch must classify voice frames with a DSCP value sufficient for applying high priority to the VoIP frames. By default, Cisco IP Phones mark voice frames with a DSCP value of 46; as a result, trusting is a valid option applying high priority.
@Vince,
I am wrong with that answer. Now that I am really checked it. The question talks about the Video not the voice. My bad
OK, I finally find it.
all Cisco routers and switches treat traffic with a default classification. With respect to DSCP values, the default classification for ingress frames is a DSCP value of 0. The Catalyst switches listed in Table 10-1 use an internal DSCP of 0, by default, for ingress frames regardless of the value of DSCP in the ingress frame with a default QoS configuration. The terminology used to describe an interface configured for treating all ingress frames with a DSCP of 0 is untrusted. The following subsection discusses trusted and untrusted interfaces in more detail. Figure 10-6 simplistically illustrates classification and marking.
SO A was the right or correct answer
@Dan242 Thank you for explanation!
@Mark24,
Your point on the GRE tunnel seems correct to me. Both answers seem possible to me, which is my whole complaint about these tests. But anyway, you are probably right about this one. TY.
I also can’t decide between A and E on the QoS question. Cisco QoS documentation does mention both things.
I guess I’m leaning towards answer A on the QoS (see below):
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst2940/software/release/12-1_19_ea1/configuration/guide/2940scg_1/swqos.html
Default QoS Configuration
This is the default QoS configuration:
•The default port CoS value is 0.
•The default port CoS value is assigned to all incoming untagged packets. The CoS value of each tagged packet remains unaltered.
•By default, the port trust state is not configured.
•All traffic is sent through one egress queue.
And later it says: ” mls qos trust [cos] Configure the port trust state. By default, the port is not trusted.”
In questions about whether an IPv6 address is valid, watch out for:
-letters above F
-using the :: more than once in address
@Frustrated, Vince
Another question that needs to review. I need you guys to take a deep look at this. I had this question on my previous test and I am sure it is going to come again (since I failed it).
Here is the question
Question: 2
Which two statements about the spanning-tree bridge ID are true? (Choose two)
A. It is composed of a 4-bit bridge priority and a 12-bit system ID extension.
B. The bridge ID is transmitted in the IP header to elect the root bridge.
C. The system ID extension is a value between 1 and 4095.
D. It is composed of an 8-bit bridge priority and a 16-bit system ID extension.
E. The bridge priority must be incremented in blocks of 4096.
-Using my Wireshark, I was able to capture the hello packet during the root-bridge election. Here what one of my bridges sent
Root Bridge Priority: 32768
Root Bridge System ID Extension: 0
Root Bridge System ID: cc:01:14:a8:00:00 (cc:01:14:a8:00:00)
Root Path Cost: 0
Bridge Identifier: 32768 / 0 / cc:01:14:a8:00:00
Bridge Priority: 32768
Bridge System ID Extension: 0
Bridge System ID: cc:01:14:a8:00:00 (cc:01:14:a8:00:00)
Port identifier: 0x8029
Message Age: 0
Max Age: 20
Hello Time: 2
Forward Delay: 15
Now, go back to the question why we are not choosing B?
I am going to elaborate on my previous answer:
A-> Not the answer: Because a Bridge ID is made of Priority (4bits)+Extended SysID12bits (Which is the Vlan number)and finally what we’re forgetting the 6bytes of Mac-address.
BID is critical for the election process as we all know. The lower BID wins.
B-> Correct answer
C->Not the answer, because the SyS-ID = Vlan number. Switches cannot go behind 1005 vlans
D->Not Correct. Because the priority is set to 4bits and SYS-Id 12bites=16bits= 2bytes
E-> Correct answer
Here is the question
Question: 2
Which two statements about the spanning-tree bridge ID are true? (Choose two)
A. It is composed of a 4-bit bridge priority and a 12-bit system ID extension. *
B. The bridge ID is transmitted in the IP header to elect the root bridge.
C. The system ID extension is a value between 1 and 4095.
D. It is composed of an 8-bit bridge priority and a 16-bit system ID extension.
E. The bridge priority must be incremented in blocks of 4096. *
Hi Guys I choose A, E base on Wendell Odoms Book. Look on pages 73 – 74 key topic.
@Fierce,
Thanks for your reply. I just realize the keyword in the answer B. they used the word ethernet instead of bdpu or hello. that will make it incorrect. Again Thanks