CCNA 3 Chapter 2 Version 4.0
- 1.
What type of connection point is a point of presence (POP)?
- A.
Between a client and host
- B.
Between two local networks
- C.
Between a computer and a switch
- D.
Between an ISP and an Enterprise network
Correct Answer
D. Between an ISP and an Enterprise network -
- 2.
A network administrator needs to configure Telnet access to a router. Which group of commands enable Telnet access to the router?
- A.
Router(config)# enable password class Router(config)# line con 0 Router(config-line)# login Router(config-line)# password cisco
- B.
Router(config)# ip host 192.168.1.1 NewYork Router(config)# enable password cisco
- C.
Router(config)# line aux 0 Router(config-line)# login Router(config-line)# password cisco
- D.
Router(config)# enable password class Router(config)# line vty 0 4 Router(config-line)# login Router(config-line)# password cisco
Correct Answer
D. Router(config)# enable password class Router(config)# line vty 0 4 Router(config-line)# login Router(config-line)# password cisco -
- 3.
Which two types of information should be included in a business continuity plan? (Choose two.)
- A.
Maintenance time periods
- B.
Intrusion monitoring records
- C.
Offsite data storage procedures
- D.
Alternate IT processing locations
- E.
Problem resolution escalation steps
Correct Answer(s)
D. Alternate IT processing locations
E. Problem resolution escalation steps -
- 4.
Which two router parameters can be set from interface configuration mode? (Choose two.)
- A.
IP address
- B.
Telnet password
- C.
Hostname
- D.
Console password
- E.
Subnet mask
- F.
Enable secret password
Correct Answer(s)
A. IP address
E. Subnet mask -
- 5.
Which two devices protect a corporate network against malicious attacks at the enterprise edge ?(Choose two.)
- A.
Demarc
- B.
IP security (IPSec)
- C.
Data Service Unit (DSU)
- D.
Intrusion Prevention System (IPS)
- E.
Intrusion Detection System (IDS)
Correct Answer(s)
D. Intrusion Prevention System (IPS)
E. Intrusion Detection System (IDS) -
- 6.
Which three steps must be performed to remove all VLAN information from a switch but retain the rest of the configuration? (Choose three.)
- A.
Remove all VLAN associations from the interfaces
- B.
Remove the 802.1q encapsulation from the interface.
- C.
Issue the command copy start run
- D.
Issue the command delete flash:vlan.dat
- E.
Issue the command erase start
- F.
Reload the switch
Correct Answer(s)
D. Issue the command delete flash:vlan.dat
E. Issue the command erase start
F. Reload the switch -
- 7.
What is the demarcation?
- A.
Physical point where the ISP responsibilty ends and the customer responsibilty begins
- B.
Physical location where all server farm connections meet before being distributed into the Core
- C.
point of entry for outside attacks and is often vulnerable
- D.
Point of entry for all Access Layer connections from the Distribution Layer devices
Correct Answer
A. Physical point where the ISP responsibilty ends and the customer responsibilty begins -
- 8.
Which device is responsible for moving packets between multiple network segments?
- A.
Router
- B.
Switch
- C.
CSU/DSU
- D.
IDS Device
Correct Answer
A. Router -
- 9.
What information can an administrator learn using the show version command?
- A.
Cisco IOS filename
- B.
Configured routing protocol
- C.
Status of each interface
- D.
IP addresses of all interfaces
Correct Answer
A. Cisco IOS filename -
- 10.
Which two situations require a network administrator to use out-of-band management to change a router configuration? (Choose two.)
- A.
Network links to the router are down.
- B.
No Telnet password has been configured on the router
- C.
The administrator can only connect to the router using SSH
- D.
The network interfaces of the router are not configured with IP addresses
- E.
Company security policy requires that only HTTPS be used to connect to routers
Correct Answer(s)
A. Network links to the router are down.
D. The network interfaces of the router are not configured with IP addresses -
- 11.
It is crucial that network administrators be able to examine and configure network devices from their homes. Which two approaches allow this connectivity without increasing vulnerability to external attacks? (Choose two.)
- A.
Configure a special link at the POP to allow external entry from the home computer.
- B.
Set up VPN access between the home computer and the network
- C.
Install a cable modem in the home to link to the network.
- D.
Configure ACLs on the edge routers that allow only authorized users to access management ports on network devices
- E.
Configure a server in the DMZ with a special username and password to allow external access.
Correct Answer(s)
B. Set up VPN access between the home computer and the network
D. Configure ACLs on the edge routers that allow only authorized users to access management ports on network devices -
- 12.
A network administrator must define specific business processes to implement if a catastrophic disaster prevents a company from performing daily business routines. Which portion of the network documentation is the administrator defining?
- A.
Business security plan
- B.
Business continuity plan
- C.
Network solvency plan
- D.
Service level agreement
- E.
Network maintenance plan
Correct Answer
B. Business continuity plan -
- 13.
A DoS attack crippled the daily operations of a large company for 8 hours. Which two options could be implemented by the network administrator to possibly prevent such an attack in the future? (Choose two.)
- A.
Install security devices with IDS and IPS at the enterprise edge
- B.
Reset all user passwords every 30 days
- C.
Filter packets based on IP address, traffic pattern, and protocol
- D.
Deny external workers VPN access to internal resources
- E.
Ensure critical devices are physically secure and placed behind the demarc
Correct Answer(s)
A. Install security devices with IDS and IPS at the enterprise edge
C. Filter packets based on IP address, traffic pattern, and protocol -
- 14.
A network manager wants to have processes in place to ensure that network upgrades do not affect business operations. What will the network manager create for this purpose?
- A.
Business security plan
- B.
Business continuity plan
- C.
Service level agreement
- D.
Network maintenance plan
Correct Answer
D. Network maintenance plan -
- 15.
An investment company has multiple servers that hold mission critical data. They are worried that if something happens to these servers, they will lose this valuable information. Which type of plan is needed for this company to help minimize loss in the event of a server crash?
- A.
Business security plan
- B.
Business continuity plan
- C.
Network maintenance plan
- D.
Service level agreement
Correct Answer
A. Business security plan -
- 16.
When searching for information about authentication methods and usernames of company personnel, where can a network administrator look?
- A.
Business continuity plan
- B.
Business security plan
- C.
Network maintenance plan
- D.
Service level agreement
Correct Answer
B. Business security plan -
- 17.
Refer to the exhibit. Which statement is true about port Fa5/1?
- A.
When a violation is detected, the port will log the information to a syslog server
- B.
When a violation is detected, the port will go into err-disable mode
- C.
There have been 11 security violations since the last reload
- D.
The port is currently in a shutdown state
Correct Answer
D. The port is currently in a shutdown state -
Quiz Review Timeline +
Our quizzes are rigorously reviewed, monitored and continuously updated by our expert board to maintain accuracy, relevance, and timeliness.
-
Current Version
-
Mar 17, 2022Quiz Edited by
ProProfs Editorial Team -
Jan 22, 2012Quiz Created by
E2d34christ
Back to top