VTP & VLAN Questions
Here you will find answers to VTP & VLAN Questions
If you are not sure about VTP, please read my VTP tutorial and VLAN tutorial
Question 1
A network administrator is explaining VTP configuration to a new technician.
What should the network administrator tell the new technician about VTP configuration? (Choose three)
A. A switch in the VTP client mode cannot update its local VLAN database.
B. A trunk link must be configured between the switches to forward VTP updates.
C. A switch in the VTP server mode can update a switch in the VTP transparent mode.
D. A switch in the VTP transparent mode will forward updates that it receives to other switches.
E. A switch in the VTP server mode only updates switches in the VTP client mode that have a higher VTP revision number.
F. A switch in the VTP server mode will update switches in the VTP client mode regardless of the configured VTP domain membership.
Answer: A B D
Question 2
ALSwitch1# show running-config
«output omitted»
interface FastEthernet0/24 no ip address
«output omitted»
ALSwitch1# show interfaces FastEthernet0/24 switchport
Name: Fa0/24
Switchport: Enable
Administrative Mode: static access
Operation Mode: static access
Administrative Trunking Encapsulation: dot1q
Operation Trunking Encapsulation: native
Negotiation of Trunking: Off
Access Mode VLAN: 1 (default)
Trunking Native Mode VLAN: 1 (default)
Voice VLAN: none
Administrative private-vlan host-association: none
Administrative private-vlan mapping: none
Operation private-vlan: none
Trunking VLANs Enabled: ALL
Pruning VLANs Enabled: 2-1001
Capture Mode Disabled
Capture VLANs Allowed: ALL
Protected: false
Voice VLAN: none (Inactive)
Aplliance trust: none
Switch port FastEthernet 0/24 on ALSwitch1 will be used to create an IEEE 802.1 Q-compliant trunk to another switch.
What is the reason the trunk does not form, even though the proper cabling has been attached?
A. VLANs have not been created yet.
B. An IP address must be configured for the port.
C. The port is currently configured for access mode.
D. The correct encapsulation type has not been configured.
E. The no shutdown command has not been entered for the port.
Answer: C
Question 3
Which statements describe two of the benefits of VLAN Trunking Protocol? (Choose two)
A. VTP allows routing between VLANs.
B. VTP allows a single switch port to carry information to more than one VLAN.
C. VTP allows physically redundant links while preventing switching loops.
D. VTP simplifies switch administration by allowing switches to automatically share VLAN configuration information.
E. VTP helps to limit configuration errors by keeping VLAN naming consistent across the VTP domain.
F. VTP enhances security by preventing unauthorized hosts from connecting to the VTP domain.
Answer: D E
Explanation
VLAN Trunking Protocol (VTP) is used to ensure that all switches in a given group, or VTP domain, have the same information about the VLANs that are present in that domain. When VTP is turned on, switches will automatically share its VLANs information to other switches (which are in the same domain) by VTP updates.
Question 4
Which two link protocols are used to carry multiple VLANs over a single link? (Choose two)
A. VTP
B. 802.1q
C. IGP
D. ISL
E. 802.3u
Answer: B D
Explanation
The Inter-Switch Link (ISL) and 802.1Q protocols are used to establish trunk links carrying traffic for multiple VLANs.
Question 5
Which three of these statements regarding 802.1Q trunking are correct? (Choose three)
A. 802.1Q native VLAN frames are untagged by default.
B. 802.1Q trunking ports can also be secure ports.
C. 802.1Q trunks can use 10 Mb/s Ethernet interfaces.
D. 802.1Q trunks require full-duplex, point-to-point connectivity.
E. 802.1Q trunks should have native VLANs that are the same at both ends.
Answer: A C E
Explanation
Native VLAN frames are carried over the trunk link untagged -> A is correct.
802.1Q trunking ports carry all the traffic of all VLANs so it cannot be the secure ports. A secure port should be only configured to connect with terminal devices (hosts, printers, servers…) -> B is not correct.
The Inter-Switch Link (ISL) encapsulation requires FastEthernet or greater to operate but 802.1q supports 10Mb/s Ethernet interfaces. -> C is correct.
802.1Q supports point-to-multipoint connectivity. Although in Cisco implementation, a “trunk” is considered a point-to-point link but 802.1q encapsulation can be used on an Ethernet segment shared by more than two devices. Such a configuration is seldom needed but is still possible with the disablement of DTP negotiation. -> D is not correct (Reference: http://www.cisco.com/en/US/products/hw/switches/ps700/products_tech_note09186a008012ecf3.shtml)
The native VLAN that is configured on each end of an 802.1Q trunk must be the same. This is because when a switch receives an untagged frame, it will assign that frame to the native VLAN. If one end is configured VLAN1 as the native VLAN while the other end is configured VLAN2 as the native VLAN, a frame sent in VLAN1 on one side will be received on VLAN2 on the other side -> E is correct.
Very informative website .
good
Very nice
Very acurate information
nice
in the question 3 i think the option A is also correct!!!so the answer is a,d,e !!! as i think so!!!
pls give your opinioun!!!
because vtp also allows routing between the vlans!!!!
@suraj
routers route.
if we want to do INTER VLAN ROUTING then we have to configure the vtp in the switch ? RIGHT OR WRONG!!!
If this is right then it is the benefit of vtp right!!! then in the question 3 the option A is also right!!!! what say?
VTP helps the IT staff do the VLAN naming more easily…
Scenario: you have a switch, just one switch, and it has 3 active connections:
1 – to a subnetwork, subnet1, let’s say… 10.0.0.0/25
2 – to another subnetwork, subnet2, 10.0.0.128/25
3 – to a router.
if you want traffic to pass from subnet1 to subnet2 then you need that router to do the routing (or a Layer 3 switch).
no need for VTP here.
Scenario2: you have 2 switches.
Sw1 connects to subnet1, 192.168.0.0/28
Sw1 connects to subnet2, 192.168.0.16/28
Sw1 connects to Sw2
Sw1 connects to Router1
Sw2 connects to subnet1, 192.168.0.0/28
Sw2 connects to subnet2, 192.168.0.16/28
Sw2 connects to Sw2
how does traffic from subnet1 go to subnet2?
traffic goes from PC to its directly connected switch
from the switch it goes to the router (directly or via Switch1)
from the router it gets back to Switch1
Switch1 looks at its MAC table and send the packet out the right port (be it an access port for directly connected PCs or via the trunk port that connects the 2 switches)
*if it’s the case, Switch2 send the packet out the corresponding access port.
do you need images for these 2 scenarios?
hope i’ve answered your dilemma 🙂
scenario1 conflict address..if not conflict, use router in different subinterface.scenario 2 conflict add..if not conflict, use trunk link and each subnet has different vlan.
question 1 on 9-2-11
You can route between VLANs with the switches in Transparent Mode, therefor no VTP i neccesary and answer 1, Q3 is the wrong answer
Q3 is confusing. I thought B. was correct. I guess E sounds rite too?
Passed today ICND2.
Got Q5
@9TUT, would you be able to elaborate a little further on question#2 please? Thank you.
@bigd
hey there bigd
A. VLANs have not been created yet.
how are we to tell that this is true?
B. An IP address must be configured for the port.
you don’t assign IP addresses to physical ports on switches. never ever
C. The port is currently configured for access mode.
it says “Administrative Mode: static access”
this is a result of “switchport mode access” and this disables the option to establish a trunk link on this port.
this is also a way of securing the switch.
it also says “Operation Mode: static access”. this means the port is operational (not shut down) and something is connected.
keywords: “static access”
true
D. The correct encapsulation type has not been configured.
there’s only one encapsulation type used on trunk links (remember that this port is not operating as trunk!) and that is dot1q. ISL has been retired.
we have nothing to say on this, next.
E. The no shutdown command has not been entered for the port.
if it were shut down or there were no device connected to that port it would’ve said “Operational Mode: down”
@Xallax, thank you as always for the explanation. It is always good to see you around, xallax. Keep up the good work. What letter are we teaching the kids today, letter ” F ” ? Hope to talk to you again soon..
@bigd
nope, no teaching today. today ill go to a kindergarten where a friend works because she needs a… santa 😀
im 6 ft, 130 lbs… skinniest santa ever!
@Xallax,
Merry Christmas
@bigd
thank you sir. ill be playing the fat guy this wednesday… yey
merry christmas in advance to you too
Hi, please email me the latest dump/sim for ICND2 on fareedabu@yahoo.com. I have my exam end of the month.
Thanks
1-Hot Spot frame relay sim was in my test yesterday. Someone has this sim ?
2-Subnetting (drag and drop ) with “no ip subnet-zero” . Very dificult.
3-One router conected to SwitchA and SwitchA conected to switchB . Configure in this scenario VTP .Only access to the switches .No way to know the default gateway of Switch A, as show run did not work. Someone told me to use show startup config , or show ip default gateway ?? .
Passed ICND2 today with 944!! I had question #5 on my test today
@McCormack
sh ip default-gateway
This will show you the default gateway. This isn’t ‘tab’able’ which means you have to type it in full. I’ve not taken the exam so can’t confirm this works in the exam or not.
question 3:
On cisco switches , when sharing the VLAN data is there another method aside from VTP that
“allows a single switch port to carry information to more than one VLAN”
which would allow each switch in a string access to multiple vlan data (tags)?
Am I misinterpreting this? Shouldn’t answer “B” be included?
Or is the question just worded poorly maybe?
I took the question as they were talking about the trunk port because they framed it as a VTP question. Seems the only way “b” shouldnt be included in the answer is if they are talking about an access port? Hope the test questions are a bit more clear….
Guys,
This cat and mice game will not be over for a long time. I am not good at predicting BUT before these cisco guys ´pull the noose tight´, i need to get certified QUICK!
It happened before, and it will happen again.
I have a FUNNY question¿ HOw oN eaRth did they get these questions¿ And with the highest level of cisco proficiency, security etc etc known till date,… i get a bad feeling the bubble is about to explOde!
Who cares: You are experienced without certification, they say GET CERTIFIED!
You study very hard and know stuff still, you´re screwed with tricky question during exam!
Solution: Im doing icnd 2 now, im following this thread till CCIE WRITTEN!
SUPPORT 9TUT AND DONATE TO KEEP THIS SITE UP AN RUNNING. IF GONE… IM SCREWED!
Hi guys. I desperately need your help. I have to do the following and I have absolutely no idea how to do it.. Please help me out. my e-mail is antonisbigman@yahoo.gr
Outline:
ABC is currently re-locating to a new office in the city centre of London. The IT Manager has convinced the management of the company for enough budget for a new state-of-the-art IT implementation/solution.
The new premises consist of a building with 4 floors that all 80 employees of the company will be based there. Each floor has its own ITF room and the main computer room is located in the first floor. All servers and core devices will be placed there.
Your first task is to propose the design of the network infrastructure, take into consideration that the company is willing advanced technologies to be implemented. Your proposal should cover all the necessary architectures that should be followed for a modern, expandable, easy to manage network infrastructure, including cutting-edge technologies, helpful for any organization in our days. Then your design should include the addressing scheme of the company, taking into consideration the different types of traffic that you have proposed. Finally all technologies and devices should be implemented on a virtual tool.
Your work will be presented to the senior management of the company.
Tasks:
A. Design the logical diagram of the company’s network infrastructure (visio).
B. Propose all necessary Subnets and Protocols to use (table)
C. Implement the configuration of all the protocols and the technologies that you have identified (VLANs, Interfaces, etc) on a simulator (packet tracer).
D. Analyze the network infrastructure and the benefits of your proposal.
@antonis
1) you need the department names of the company and the building plans.
create a set of diagrams in powerpoint with how you’d connect the departments to the main router and how that would connect to the ISP.
2) show a table with the addressing scheme
3) show the department slide with the addressing scheme set
4) build the topology in packettracer (this should be the easiest)
5) explain how that infrastructure would be the finest and brightest: uses vlans, nice subnets that cover the addressing space, how you’d use NAT so that they dont pay too much on the internet for normal activities, how you’d use a dedicated leased line to connect to the main office (wherever it would be) and that the investment is required to assure data safety (invoke industrial espionage), yada yada yada
good luck accomplishing this 🙂
question #3 was on my exam today. i also passed the exam. thanks.
I have passes the exam with 944 marks question #5 came into my exam.
Q. 1 in my exam
Will be sitting in for ICND2 next week. Wish me luck..
Passed with 944. Q1 was on my exam.
Passed ICND2 today with 986/1000 🙂
none of these were there
Thank you for the information>
Very good Q’s with excellent explanations.
Hope the test is similar
will be taking ICND2 next week on Monday. looking forward to pass,especially after going thru this site. thanks 9tut.net
I was so stupid not to go through the multipla choice, i failed and find my self as a biggest foo anywhere i will be ew writing in three to four weeks time
Q1 on the exam today.
Alternative C Incorrect !!!?????
Alternative D Correct !!!?????
Reference: Cisco Netacad Exploration 4.0 Mod.3 Pag: 3.2.1.1
“A trunk is a point-to-point link between two network devices that carries more than one VLAN. A VLAN trunk allows you to extend the VLANs across an entire network. Cisco supports IEEE 802.1Q for coordinating trunks on Fast Ethernet and Gigabit Ethernet interfaces.”
????!!!!
Hi Alha! I’m studying ICND2 at this moment. I assume you’re referring to the last Q. My understanding is, always believe in Cisco official answer lol…sigh. I come across this:
https://learningnetwork.cisco.com/thread/44132
Q5 is wrong. You can’t trunk on 10Mbps ether interfaces. It’s ADE, not ACE
My understanding is that Q5 answer D makes it look like “full-duplex, point-to-point connectivity” is the 802.1Q requirement, which is not the case. As the explanation above said, 802.1Q support point-to-multipoint too. Answer C is possible if software-configured, the keyword is “can”
Guess what, this Q is on the exam today! I still chose ACE. For answer D, if use “support” or “provide” instead of “require” then it makes sense. I saw other site saying that 802.1Q and “full-duplex, point-to-point connectivity” has no connection to each other.
A. A switch in the VTP client mode cannot update its local VLAN database.
I thought the client gets the update from vtp server?
@ cls- u r right when u say that the client gets the update from the vtp server-
But.. here the option says that “VTP Client cannot updates its own LOCAL VLAN DATABASE BY ITSELF”..
so..it can just update what the VTP server wants it to be updated on the client switch. You can imagine the VTP Client like a slave which cannot do updates on its own local database., it has to compulsorily listen to its Master (which is the VTP server). Hope this clears ur doubt.
Thnx
Q5 is very confusing.opt c, 802.1Q trunks can use 10 Mb/s Ethernet interfaces.
In Jeremy CBT nuggets, he explaing that vtp cannot be used on 10 mb interfaces, and instead of using e0 interface, he uses a fast ethernet interface ( 100mb ) interface, while constructing a lab .
In my opinion 802.1q trunks /links cannot use 10mb/s e interfaces, i read the explanation . But could not understand it :(.
Also in qn 3,
options A .VTP allows routing between VLANs
B. VTP allows a single switch port to carry information to more than one VLAN.
y r they not correct? can any 1 explain this pls.
router is needed for routing- ok i agree, but then what is the benefit of VTP?.
Isnt option b also one of the benefit of vtp??
anyone to reply to my queries pls
@creativeme
Q5
you can set a 10Mbps interface as trunk. it happens when the 2 switches don’t successfully negotiate the link speed and use the lowest possible value (10 Mbps, half-duplex)
Q3
a Layer 3 device (such as a router) routes traffic between networks (and VLANs)
a trunk port will send out frames destined for multiple VLANs.
VTP ensures the VLAN database is synchronized on all switches across the VTP domain
Please if any body has icnd2 questions please send to email sabih.noora@yahoo.com
I’ll have exam tomorrow
Please soon
This site is great will donate for sure, taking ICND 2 2mrw 1030gmt so really want to over dose on these questions, no cram but understand that which i dont and confirm that which i do. Gr8 site, hope 2mrw will be as happy but i know i will be. Thaks guys. ZimBobie
hie guyz i need the vce program pliz with reg key
i need vce prog @tshons@gmx.com
Q.2 & 3 on the test.
Can someone send me the most recent dowloads…sstocker@sositsolutions.com
A company has a small network,consisting of a single switch and a single router. The switch has
been configured with two vlans,and route-on-a-stick is being configured on the router for inter-vlan
routing. A trunk is configured to connect the switch to the router. What is the minimum number of
router subinterfaces that are required for all the vlans to communicate?
A. one
B. three
C. two
D. zero
Answer: C
can any one explain why c is correct?
C is correct because there are 2 vlans configured in the switch.
Question 5 from this section was on my test today.
Taking the INCD2 on March 4th…
Thanks for all the great input and this informative site… this site is well worth my donation.
If anyone has the latest/newest dumps please email them to me @ ( unvmm@yahoo.com).
Thanks in advance!
Got questions #2 and 3 today.
3/4 – passed. Questions 1, 2, 3, and 5 were on exam
Passed on the 4th April (902/1000) Q3 AND Q5 on Exam. The VTP configuration sim was also there, plus the new FR Sim and a new OSPF one where you had to look at a OSPF network layout and answer 4 questions.
Question 1 was on my exam today
Hi chris,
could you please explain a bit about the ospf layout question which you got in the exam.can i find it here?if yes please send me the link that which ospf quesyion you talking about?i say the ospf sim here and questions here but i didnt see the ospf question which has 4 ans.thanks
Question 1 was on today’s exam. April 15.
Hey guys
I would like to ask you,if questions are good grouped between ccna/icnd1/icnd2…
I will take ICND 2 exam soon,its good to review questions just from ICND 2 part?
I mean,for example VLAN questions from CCNA part and ICND 2 par seems to be almost the same…(the same for OSPF etc…)
Q3 was on my test today 930/1000
1,2 and 5 where on the exam today
usman asked:
A company has a small network,consisting of a single switch and a single router. The switch has
been configured with two vlans,and route-on-a-stick is being configured on the router for inter-vlan
routing. A trunk is configured to connect the switch to the router. What is the minimum number of
router subinterfaces that are required for all the vlans to communicate?
A. one
B. three
C. two
D. zero
Answer: C
can any one explain why c is correct?
And chubba answered: February 15th, 2013
C is correct because there are 2 vlans configured in the switch.
But, what happen with the subinterface for the administrative VLAN?
had question 5 today
Q still valid Thanks 9tut passed today with 944. i had question 1 in the exam
@ Anonymus..
The administrative VLAN does not come in place here, where ROAS is implemented.
So, you will need only 2 sub interfaces on the router’s fastethernet being created for interVLAN communication.
steps:
1. Make sure the encapsulation type (ISL, 802.1Q) on the router matches to the switch connected.
2. The switch port connected to the router must be in trunking mode on. (cross over cable).
3. On the hosts make the default gateway IP address to match the router’s sub interface IP.
4. As naturally the host connected to the switch are on the Access port.(straightthrugh cable).
5. On the router sub interface apply the IP from the hosts VLAN ID IP range.
and the last: DONT FORGET to open the physical interface itself, no need for IP address there. :))
some real-world vtp info for all of you …
You want to connect a new switch to the network so you do what every responsible Cisco guy does
you change VTP Mode to client, you specify the VTP password, you specify the VTP domain
you do the configuration that is needed AND THEN YOU WRITE THE CONFIG
Now you go, confident that VTP is set up for the new switch that will be joining the VTP Domain, and install the switch.
Guess what, your switch, when it turns on again, is now AGAIN A VTP SERVER …
we all know that we don’t actually have to specify a VTP Domain, the switch will find out about it and inherit it as long as it has the password for that VTP domain.
About the VTP Mode
there is a specific order that VTP Configuration needs to be done on a client.
1. You specify the VTP password
2. You specify the VTP Domain
3. You change the mode from Server to Client
Remember, you are actually doing these settings BEFORE you connect the switch to the network, so do config, save, switch off, move to new location, switch on.
Don’t forget to check the database revision nr !!!!!!!! If it is MORE THAN ZERO and you quickly want to reset it back to zero, change the vtp domain name (on THAT DEVICE) to another name, then change it back to what you know it will be when it’s part of your network. That resets the rev to ZERO.
Silly yet VERY IMPORTANT
VTP is a wonderful thing, IF DONE PROPERLY.
I’ve passedmy Icnd 2 today score of 930, VTP, Frame relay sim one has to use the command show running-config and to the see the password use show running-config. Security Drag and drop and I passed that with knowledge as its not on the website or on any dumps, overall this website is excellent, however keep in mind one must know his/her stuff….any questions just ask me people….Donating to this site shortly
Hi guys, I am taking test on July 31, I have a doubt in Q5’s solution. Can anyone please confirm that, the line “The Inter-Switch Link (ISL) encapsulation requires FastEthernet or greater to operate but 802.1q supports 10Mb/s Ethernet interfaces. -> C is correct.” is correct? Because, what I know is both protocols contain high amount of data (since multiple vlans) so both requires fast ethernet and above (>=100 Mbps)
Could anyone please give me confirm answer..??
Just wrote my ICND2 today, and i got 902/1000.. Question 1 was in the exam.. Thanks to the 9tut team..
Q5 above B is also correct i believe
it says “Port security supports IEEE 802.1Q tunnel ports.”
see Restrictions for Port Security at :
http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/15.0SY/configuration/guide/port_security.pdf
Please comment any 9tut (or other ) gurus?
iv my icnd2 exam in 4 days…..
thanks in advance.
what questions you see on there? im taking mine next week , hope you passed man its kinda stressful if your just a reg network guy doing a few of the things daily like turning up ports and trunks, im hoping to get this to move up and take on more work and responsiblity
Q1 was on my exam. Thanks for helping 9tut!!
Question 3
Which statements describe two of the benefits of VLAN Trunking Protocol? (Choose two)
A. VTP allows routing between VLANs.
B. VTP allows a single switch port to carry information to more than one VLAN.
C. VTP allows physically redundant links while preventing switching loops.
D. VTP simplifies switch administration by allowing switches to automatically share VLAN configuration information.
E. VTP helps to limit configuration errors by keeping VLAN naming consistent across the VTP domain.
F. VTP enhances security by preventing unauthorized hosts from connecting to the VTP domain.
Answer: D E
Why not B is not correct also?
B. VTP allows a single switch port to carry information to more than one VLAN.
VTP only shares vlan configs to other switches. Trunk links allows a single switch port to carry info to more than one VLAN
vtp and frame relay sim was on my test today ….passed with 902
@Anonymous
Thanks for your explanation. I feel ashamed of mistaking VTP with trunk links.
None of these were on the exam today. Passed with 916
Fail. Took the supposed ICND2 640-816 today and there was nothing like the material contained on this site. No VTP, No VLSM, No Drags and Drop (except 1, had Split Horizon), no ACL or NAT. It was all about SNMP and Netflow. 2 Different SIMS OSPF and EIGRP (not on this site or dump) A lot IPV6. I nailed ICND1 exam but this wasnt the test I prepared for. Please reply.
I lied to throw everyone off. I don’t know anything.
No. For some reason my exam overlapped and I got 200-100. Didnt know was there already and Fail. 640-816 next Monday.
Q5 on today’s exam. Nailed it with 888/1000. Thanks to 9tut, CBT Nuggets, CiscoPress, HeavyMod.
taking test today wish me luck
Best for ccna exam
Q5 addon
Port Security Guidelines and Restrictions
•A secure port cannot be a trunk port.
•A secure port cannot be a destination port for Switch Port Analyzer (SPAN).
•A secure port cannot belong to an EtherChannel port-channel interface.
•A secure port and static MAC address configuration are mutually exclusive.
We are several volunteers along with opening a whole new scheme in the community. Your internet site offered us with important information to work on. You have done some sort of formidable employment and our entire community will be gracious to you.
We are a small grouping of volunteers and also opening a whole new scheme within our community. Your web site offered all of us with important information to be effective on. You have done some sort of formidable task and each of our entire local community will be grateful to you.
I searched all night and finally found working passwords…
whodat6:phatbooty
boobin24:epoch24
flubba5:whinky
Much Junk In The Trunk Password Sharers – http://signup.muchjunkinthetrunk.com/track/100237:ppsnc:mjitt/
A,D,E
Cisco switches support IEEE 802.1Q for FastEthernet and GigabitEthernet interfaces. An 802.1Q trunk link provides VLAN identification by adding a 4-byte tag to an Ethernet Frame as it leaves a trunk port. Because the frame has been changed, a new frame check sequence (FCS) must also be computed and added to the frame. Figure 3-7 shows a frame entering an access port and leaving a trunk port with a tag.
http://www.ciscopress.com/articles/article.asp?p=102157&seqNum=2
Q5 ADE