I passed yesterday 10/26/2011 934/1000. Thanks to Nonentity and Viao (I owe you two).

Got 3 Labs (AAA, MLS EIGRP, LACP), 6 DND (ALL in nonentity s Cisco.ActualTes ts.642-813.v7.6.by.nonentity.346Q.Rev3), 2- voice and 1- wireless MCQ. Below are the questions encountered regarding voice and wireless. Life is Peachy Folks !! ! TSHOOT here I come :-) ==================Voice=========================================== QUESTION NO: 292 Which statement is true about voice VLANs? A. The voice VLAN feature is enabled by default. B. When the voice VLAN feature is enabled, all untagged voice and data traffic i s sent through the voice VLAN. C. The default CoS value is 1 for incoming voice and data traffic. D. The IP phone overrides the priority of all incoming data traffic (tagged and untagged) and sets the CoS value to 0. Answer: D QUESTION NO: 312 During voice implementation, which two required items are configured at an acces s layer switch connected to an IP phone to provide VoIP communication? (Choose two.) A. allowed codecs B. native VLAN C. auxiliary VLAN D. Cisco Unified Communications Manager IP address E. RSTP Answer: B,C =========Wireless============================================ QUESTION NO: 309 A standalone wireless AP solution is being installed into the campus infrastruct ure. The access points appear to boot correctly, however, wireless clients are not obtaining cor rect access. You verify that the local switch configuration connected to the access point appears as the following: interface ethernet 0/1 switchport access vlan 10 switchport mode access spanning-tree portfast mls qos trust dscp What is the most likely issue causing the problem? A. QoS trust should not be configured on a port attached to a standalone AP. B. QoS trust for switchport mode access should be defined as cos . C. switchport mode should be defined as trunk with respective QoS. D. switchport access vlan should be defined as 1?. Answer: C ================Other MCQ I remember (same on Byrant Post)================ QUESTION NO: 421 Which of the following will generate an RSTP topology change notification? (Sele ct the best answer.) A. an edge port that transitions to the forwarding state B. a non-edge port that transitions to the blocking state

Root and alternative ports transition immediately to the forwarding state.D QUESTION NO: 338 What are three results of issuing the switchport host command? (Choose three.) A. B. RSTP is enabled globally and uses existing STP configuration. an edge port that transitions to the blocking state E. enables PortFast E. PortFast. C. B. NSF combined with SSO enables supervisor engine load balancing C. Convergence is improved by using sub-second timers for the blocking. Client mode cannot forward received VTP advertisements. E. prevents route flapping F. C. disables trunking F. and EIGRP D.D. Client mode synchronizes its VLAN database from VTP advertisements. enables loopguard Answer: A. supported by RIPv2. Transparent mode always has a configuration revision number of 0. BPDU guard is only configured globally and the BPDU filter is required for po rt-level configuration. The access port ignores any received BPDU. Transparent mode cannot modify a VLAN database. the port transmits 10 BPDUs. If the port receives a BPDU. and forwarding port states. it is placed into the error-disable state.F QUESTION NO: 381 Which statement correctly describes enabling BPDU guard on an access port that i s also enabled for PortFast? A. D. Server mode can synchronize across VTP domains. Upon startup. C.E QUESTION NO: 333 hostname Switch1 interface Vlan10 . OSPF. Answer: C QUESTION NO: 383 Which statement correctly describes the Cisco implementation of RSTP? A. Answer: A. IS-IS. If the port receives a BPDU. B. UplinkFast. any port that transitions to the forwarding state Answer: C QUESTION NO: 248 Which two characteristics apply to Cisco Catalyst 6500 Series Switch supervisor redundancy using NSF? (Choose two. D.) A. enables port security C.) A. listenin g. disables EtherChannel B. disables Cisco Discovery Protocol D. supports IPv4 and IPv6 multicast E. D. any port that transitions to the blocking state F. dependent on FIB tables Answer: E.C. independent of SSO B. a non-edge port that transitions to the forwarding state D. learning. Answer: B QUESTION NO: 377 Which two statements correctly describe VTP? (Choose two. and BackboneFast specific configurations are ignored in Rapid PVST mode. PortF ast and BPDU guard are disabled on that port and it assumes normal STP operation.

Routing may be performed at all layers but is most commonly done at the core and distribution layers C.16. Otherwi se. VLANs should be local to a switch E. Configure a dynamic routing protocol.) A. D. B.10. Document the MAC addresses of the switch ports. you issue th e show interfaces vlan 20 command at the CLI prompt.10. you notice via show commands tha t Switch2 is the HSRP active router. VLANs should be localized to a single switch unless voice VLANs are being uti lized Answer: B.110 standby 1 timers 1 5 standby 1 priority 130 hostname Switch2 interface Vlan10 ip address 172. Routing should occur at the access layer if voice VLANs are utilized.32 255. Configure SVI interfaces with IP addresses and subnet masks. Configure switch ports with network addresses.10.110 standby 1 timers 1 5 standby 1 priority 120 HSRP was implemented and configured on two switches while scheduled network main tenance was performed.33 255. Answer: A. To check the status of the SVI.0 no ip redirects standby 1 ip 172.D QUESTION NO: 490 Which two statements are true about recommended practices in VLAN design? (Choos e two) A.10.16. routing should occur at the distribution Layer.D QUESTION NO: 375 Which two of the following steps are necessary to configure inter-VLAN routing b etween multilayer switches? (Choose two. premption is disabled E. C.16. Configure switch ports with the autostate exclude command.B QUESTION NO: 352 You have configured a Cisco Catalyst switch to perform Layer 3 routing via an SV I and have assigned that interface to VLAN 20. Which two items are most likely the cause of Switch1 not bec oming the active router? (Choose two.) A. IP addressing is incorrect D.255. standby group number does not match VLAN number C. incorrect standby timers F.255. booting delays B.255.0 no ip redirects standby 1 ip 172. E. After the two switches have finished rebooting. You see from the output display that the inte rface is in an up/up state.16.255. B. Routing should not be performed between VLANs located on separate switches D. IP redirect is disabled Answer: A. What must be true in an SVI configuration to bring the VLAN and line protocol up? .ip address 172.

E. PortFast can also be configured on trunk ports. C.0c63. jitter. however. Answer: B.A. wireless clients are not obtaining cor rect access.D QUESTION NO: 347 Which statement best describes first-hop redundancy protocol status. HSRP is configured for group 11.19-0000. packet loss.f892ARPAVlan10 Internet172. PortFast is required to enable port-based BPDU guard. and voice quality D.0c07. B. Answer: C . VRRP is configured for group 11. PortFast is used for both STP and RSTP host ports. PortFast is used for STP-only host ports. C. VRRP is configured for group 10. switchport mode should be defined as trunk with respective QoS. B. HSRP is configured for group 10. B.) A. measures delay. only implemented between Cisco source and destination-capable devices B.16. At least one port in VLAN 20 must be active. You verify that the local switch configuration connected to the access point appears as the following: interface ethernet 0/1 switchport access vlan 10 switchport mode access spanning-tree portfast mls qos trust dscp What is the most likely issue causing the problem? A.E QUESTION NO: 309 A standalone wireless AP solution is being installed into the campus infrastruct ure.0c59. the operational status will always be in an up/up state. STP will be disabled on the port.16.) A. CLI.ac0bARPAVlan10 A.233. Because this is a virtual interface. Answer: C QUESTION NO: 317 Which two statements best describe Cisco IOS IP SLA? (Choose two. The Layer 3 routing protocol must be operational and receiving routing update s from neighboring peer devices. The access points appear to boot correctly. only monitors VoIP traffic flows E. B. E. The first-hop redundancy protocol is not configured for this interface. provides active monitoring F. given the c ommand output in the exhibit? Switch# show ip arp ProtocolAddressAge(min)Hardware AddrTypeInterface Internet172. statistics provided by syslog. D. QoS trust should not be configured on a port attached to a standalone AP. QoS trust for switchport mode access should be defined as cos . D. F. C. GLBP is configured with a single AVF.2180000.233.16. The port must be physically connected to another Layer 3 device. D. switchport access vlan should be defined as 1?. D.233. Answer: B QUESTION NO: 380 Which two statements correctly describe characteristics of the PortFast feature? (Choose two. provides passive monitoring Answer: C. C.2290000. and SNMP C.1300ARPAVlan10 Internet172.

Based on the output of the show command. Ports Fa2/1 and Fa2/2 respond to DHCP requests only.with TBA05071417(Cat6K-B) 0/4 (half duplex). Ports Fa2/1 and Fa2/2 source DHCP requests only. what can you dete rmine regarding EIGRP routing being performed by the switch? A. The switch has not established any neighbor relationships. enables LACP unconditionally B. The interfaces between switches SW_A and SW_B will transition to a blocking s tate. D. enables PAgP only if a PAgP device is detected C. with SW_A FastEthernet0/4 (half duplex) . Ports Fa2/1 and Fa2/2 are eligible to source all DHCP messages and respond to DHCP requests. The command show ip eigrp topology would d etermine the routing protocol status. enables PAgP unconditionally D. What would be the possible outcome of the problem? A. The root port on switch SW_B will fallback to full-duplex mode. B. There are 20 neighbors in the EIGRP neigbor table. From the configuration shown. what can you determine about . Port Fa3/1 is eligible t o source all DHCP messages. B. The root port on switch SW_A will automatically transition to full-duplex mod e. EIGRP is running normally and receiving IPv4 routing updates. Answer: D QUESTION NO: 295 Screenshot Refer to the exhibit. D. Answer: C QUESTION NO: 461 Screenshot Refer to the exhibit. Interface Fa 0/6 on switch SW_B will transition to a forwarding state and cre ate a bridging loop.How do the switch ports handle the DHCP messages? A. Further network te sting and troubleshooting must be performed to determine the cause of the problem. and Fa3/1. are eligible to source all DHCP mes sages and respond to DHCP requests.QUESTION NO: 457 ScreenShot Refer to the exhibit and the partial configuration of switch SW_A and SW_B. Fa2/1. enables LACP only if a LACP device is detected Answer: C QUESTION NO: 341 Screenshot Refer to the exhibit. D. Fa2/2. DHCP snooping is enabled for selected VLANs to provide sec urity on the network. B. Port Fa3/1 is eligible to so urce all DHCP messages and respond to DHCP requests. enables Etherchannel only E. C. Answer: D QUESTION NO: 359 ScreenShot Refer to the exhibit. What does the command channel-group 1 mode desirable do? A. EIGRP status cannot be determined. All three ports. C. STP is configured on all switches in the network. SW_B receives this error message on the console por t: 00:06:34: %CDP-4-DUPLEX_MISMATCH: duplex mismatch discovered on FastEthernet0/5 (not half duplex). Port Fa3/1 can source DHCP request only. C.

1Q trunking can only be configured on a Layer 2 port. C. When globally enabled. Test the design on a pilot network for expected results prior to implementing on the production network. B. When a BPDU is received on a BPDU filtering enabled port. except the native VLAN. Users of VLANs 501 and 503 will be able to communicate.1Q trunking? A. F. Answer: C ============================================================ QUESTION NO: 329 What is an important step to take when verifying a newly proposed network securi ty solution? A. In 802. When globally enabled.) A. E. When a BPDU is received on a BPDU filtering enabled port. whereas BPDU filtering must be enabl ed on a perinterface basis.the private VLAN configuration? A. 802. BPDU port-guard and BPDU filtering apply only to PortF ast enabled ports.1Q trunking. disables Cisco Discovery Protocol D. D. B. C. D. Launch campus updates into the production network and monitor impact to see i f configuration changes are needed. The native VLAN on both ends of the trunk must be VLAN 1. all VLAN packets are tagged on the trunk link. E. the interface goes into the errdisabled state. Run a network audit to determine types of traffic in use on the network. the interface goes into the errdisabled state. Answer: E QUESTION NO: 338 What are three results of issuing the switchport host command? (Choose three. Only VLAN 503 will be the community PVLAN because multiple community PVLANs a re not allowed.) A. BPDU port-guard can be enabled globally.D QUESTION NO: 396 Which statement is correct about 802. When a BPDU is received on a BPDU port-guard enabled port. VLAN 502 is a secondary VLAN. B. Create an interruption of data flow to determine test back-door access methods. B. Answer: B. the interface goes into the STP blocking state. enables port security C. C. VLAN 502 will be a standalone VLAN because it is not associated with any othe r VLANs. BPDU port-guard and BPDU filtering apply only to trunk ing-enabled ports. D. Answer: A QUESTION NO: 456 Which two statements are true about BPDU port-guard and BPDU filtering? (Choose two. C. The encapsulation type on both ends of the trunk does not have to match. D. enables PortFast . disables EtherChannel B. Both switches must be in the same VTP domain.

Encapsulation on the switch is wrong. D. Answer: D QUESTION NO: 299 Refer to the exhibit. native VLAN C. Router B will forward packets sent to the vi rtual MAC address of Router A.D.E. Trunking needs to be enabled on Fa0/1. Which three statements accurately describe this GLBP topology? (Choose three. VLAN 1 needs the no shutdown command. The voice VLAN feature is enabled by default.) A. When the voice VLAN feature is enabled.E QUESTION NO: 292 Which statement is true about voice VLANs? A. the port will transi tion to forwarding state. D. C. C. Why are users from VLAN 100 unable to ping users on VLAN 2 00? A. C. IP routing needs to be enabled on the switch. The IP phone overrides the priority of all incoming data traffic (tagged and untagged) and sets the CoS value to 0. The native VLAN is wrong. E. D. enables loopguard Answer: A. allowed codecs B. B. Answer: A QUESTION NO: 267 Refer to the exhibit. C. B. which two required items are configured at an acces s layer switch connected to an IP phone to provide VoIP communication? (Choose two. Router A alternately responds to ARP requests with different virtual MAC addr esses. Cisco Unified Communications Manager IP address E. disables trunking F. RSTP Answer: B. If BPDUs are received by a port configured for Portfast. Router A is responsible for answering ARP requests sent to the virtual IP add ress. Router B will transition from blocking state to forwarding state when it beco mes the AVG. If Router A becomes unavailable. If BPDUs are received by a port configured for PortFast. all untagged voice and data traffic i s sent through the voice VLAN.C QUESTION NO: 400 What is the effect of configuring the following command on a switch? Switch(config) # spanning-tree portfast bpdufilter default A. D. then PortFast is dis abled and the BPDUs are processed normally.) A. B. If BPDUs are received by a port configured for PortFast. . B. The default CoS value is 1 for incoming voice and data traffic. The command will enable BPDU filtering on all ports regardless of whether the y are configured for BPDU filtering at the interface level. they are ignored and none are sent. Answer: B QUESTION NO: 312 During voice implementation. auxiliary VLAN D.

Which statement is true? A. Enable IP routing on the switch D-SW1.1. F. F. F. DSw1 will reply with the MAC address of the next AVF.1 on each host. E. C. DHCP snooping sends unauthorized replies to DHCP queries. C. ) A. . MAC spoofing. E.B. which configuration solution coul d rectify the problem? A.2 on each host. Configure the D-SW2 switch as the standby HSRP router and backup STP root for al l VLANs. D. Configure default gateways to IP address 10.1.0). F. MAC spoofing attacks allow an attacking device to receive frames intended for a different network host. Dynamic ARP inspection in conjunction with ARP spoofing can be used to counte r DHCP snooping attacks. B. If another router were added to this GLBP group.1. in conjunction with ARP snooping. C.0/24. Hosts are able to ping each other but are unable to reach the servers. Host computers are on VLAN 2 (10. Assign an IP address of 10.1.1. Configure default gateways to IP address 200. On the basis of the information provided in the exhibit. DSw1 will reply with the IP address of the next AVF. B. servers are on VLAN 3 (10. DSw1 will not reply. Configure default gateways to IP address 10.1.1.1. is the most effective counter -measure against reconnaissance attacks that use dynamic ARP inspection (DAI) to determin e vulnerable attack points. D.10. and VLAN10 are configured on the switch D-SW 1. E.3. ARP spoofing can be used to redirect traffic to counter dynamic ARP inspectio n. Port scanners are the most effective defense against dynamic ARP inspection. Configure the D-SW1 switch as the active HSRP router and the STP root for all VLANs. Host A has sent an ARP message to the default gateway IP a ddress 10.E.1.10. VLAN2. VLAN3.10.1.1.2. Because of the invalid timers that are configured.C QUESTION NO: 261 Refer to the exhibit.0). None of the other alternatives apply. w hich two sets of procedures are best practices for Layer 2 and 3 failover alignment? (Choose two. On the basis of the exhibited output. DSw2 will reply with the MAC address of the next AVF. there would be two backup AV Gs. Answer: A QUESTION NO: 3 Refer to the exhibit. B. Answer: A QUESTION NO: 93 Which statement is true about Layer 2 security threats? A.0).2.1/24 to VLAN3.10. D. DSw2 will reply with the IP address of the next AVF. DSw2 will not reply.3. Because of the invalid timers that are configured. Answer: A. Configure a default route that points toward network 200. G.1 on each host. Router B is in GLBP listen state. and the ma nagement VLAN is on VLAN10 (10. Answer: F QUESTION NO: 120 Refer to the exhibit.

Configure the D-SW1 switch as the standby HSRP router and the backup STP root for VLANs 12 and 120. F. Configure the D-SW2 switch as the standby HSRP router and the backup STP root for VLANs 11 and 110. Configure the D-SW2 switch as the active HSRP router and the backup STP root for VLANs 12 and 120. Native VLAN mismatch. D. Configure the D-SW2 switch as the active HSRP router and the STP root for all VLANs. F. Configure the D-SW1 switch as the standby HSRP router and backup STP root for al l VLANs. Answer: F . D. E. Configure the D-SW2 switch as the standby HSRP router and the STP root for VLANs 12 and 120. Configure the D-SW1 switch as the active HSRP router and the backup STP root for VLANs 11 and 110. What problem is preventing users on VLAN 100 from pinging addresses on VLAN 200? A.F QUESTION NO: 300 Refer to the exhibit. Configure the D-SW1 switch as the active HSRP router and the STP root for VLA Ns 11 and 110. E. C.B. B. C. Answer: C. Configure the D-SW2 switch as the active HSRP router and the STP root for V LANs 12 and 120. Subinterfaces should be created on Fa0/7 and Fa0/8 on DLS1. The ip routing command is missing on DLS1. Encapsulation mismatch between switches. Trunking needs to be enabled. Configure the D-SW1 switch as the standby HSRP router and the STP root for VL ANs 11 and 110. No default route on DLS1.