Testpassport完整CCNA考题分享

以下是 testpassport 为你整理的 640-802 考题 希望对你的学习考试有所帮助,

需要详细考题的请登录 www.testpassport.cn  查询

1. You are a network administrator at TestInside.com, in order to improve the security of TestInside's switching network , refer to the following options. Which two methods are examples of implementing Layer 2 security on a Cisco switch? (Choose two.)

A. disable trunk negotiation on the switch

B. use only protected Telnet sessions to connect to the Cisco device

C. configure a switch port host where appropriate

D. enable HTTP access to the switch for security troubleshooting

Answer: AC

2. A single 802.11g access point has been configured and installed in the center of a square shaped TestInside office. A few wireless TestInside users are experiencing slow performance and drops while most users are operating at peak efficiency. From the list below, what are three likely causes of this problem? (Choose three)

A. mismatched TKIP encryption

B. null SSID

C. cordless phones

D. mismatched SSID

E. metal file cabinets

F. antenna type or direction

Answer: CEF

3. Refer to the exhibit. The two connected ports on the TIS-S are not turning orange or green. What would be the most effective steps to troubleshoot this physical layer problem? (Choose three.)

 

A. Ensure that the Ethernet encapsulations match on the interconnected TIS-R and TIS-S ports.

B. Ensure that cables A and B are straight-through cables.

C. Reseat all cables.

D. Ensure the TIS-S has power.

Answer: BCD

4. An administrator is configuring a router that will act as the hub in a Frame Relay hub-and-spoke topology. What is the advantage of using point-to-point subinterfaces instead of a multipoint interface on this router?

A. It avoids split-horizon issues with distance vector routing protocols.

B. Only one IP network address needs to be used to communicate with all the spoke devices.

C. Only a single physical interface is needed with point-to-point subinterfaces, whereas a multipoint interface logically combines multiple physical interfaces.

D. Point-to-point subinterfaces offer greater security compared to a multipoint interface configuration.

Answer: A

5. Refer to the exhibit. What two facts can be determined from the WLAN diagram? (Choose two.)

 

A. Access points in each cell must be configured to use channel 1.

B. The network diagram represents an extended service set (ESS).

C. The area of overlap of the two cells represents a basic service set (BSS).

D. The area of overlap must be less than 10% of the area to ensure connectivity.

E. The two APs should be configured to operate on different channels.

Answer: BE

6. Refer to the graphic. It has been decided that TIS-workstation1 should be denied access to Server1. Which of the following commands are required to prevent only TIS-workstation1 from accessing Server1 while allowing all other traffic to flow normally? (Choose two.)

 

A. TIS-RA(config)# interface fa0/0

TIS-RA(config-if)# ip access-group 101 out

B. TIS-RA(config)# interface fa0/0

TIS-RA(config-if)# ip access-group 101 in

C. TIS-RAconfig)# access-list 101 deny ip host 172.16.161.150 host 172.16.162.163

TIS-RA(config)# access-list 101 permit ip any any

D. TIS-RA(config)# access-list 101 deny ip 172.16.161.150 0.0.0.255 172.16.162.163 0.0.0.0

TIS-RA(config)# access-list 101 permit ip any any

Answer: BC

7. If you are a security administrator of the enterprise network ,you will see many different types of attacks that threaten the security of network. Which type of attack is characterized by a flood of packets that are requesting a TCP connection to a server?

A. denial of service

B. Computer Virus

C. reconnaissance

D. Trojan horse

Answer: A

8. How many subnets can be gained by subnetting 172.17.32.0/23 into a /27 mask, and how many usable host addresses will there be per subnet?

A. 8 subnets, 31 hosts

B. 8 subnets, 32 hosts

C. 16 subnets, 30 hosts

D. A Class B address can't be subnetted into the fourth octet.

Answer: C

9. Part of the TestInside WAN is shown below:

 

TestInside2 configuration exhibit:

TestInside2#show ip route

     C  192.168.1.0/24 is directly connected to Fa0/1.1

     C  192.168.2.0/24 is directly connected to Fa0/1.2

TestInside network administrator has created a new VLAN on TestInside1 and added host TISC and host TISD. This administrator has properly configured switch interfaces FastEthernet0/13 through FastEthernet0/14 to be members of the new VLAN. However, after the network administrator completed the configuration, host TISA could communicate with host TISB, but host TISA could not communicate with host TISC or host TISD. Which commands are required to resolve this problem?

A. TestInside2(config)# interface fastethernet 0/1.3

TestInside2(config-if)# encapsulation dot1q 3

TestInside2(config-if)# ip address 192.168.3.1 255.255.255.0

B. TestInside2 (config)# router rip

TestInside2 (config-router)# network 192.168.5.0

TestInside2 (config-router)# network 192.168.3.0

TestInside2 (config-router)# network 192.168.8.0

C. TestInside1# vlan database

TestInside1 (vlan)# vtp v2-mode

TestInside1 (vlan)# vtp password TestInside

TestInside1 (vlan)# vtp server

D. TestInside1 (config)# interface fastethernet 0/15

TestInside1 (config-if)# switchport mode trunk

TestInside1 (config-if)# switchport trunk encapsulation dot1q

Answer: A

10. Given the partial router configuration in the graphic, why does the TIS-PC1 and TIS-PC2 with the IP address 192.168.1.153/28 fail to access the Internet? (Choose two.)

 

A. The NAT inside interfaces are not configured properly.

B. The NAT outside interface is not configured properly.

C. The router is not properly configured to use the access control list for NAT.

D. The NAT pool is not properly configured to use routable outside addresses.

Answer: AC

11. A TestInside network administrator wants to add a line to an access list that will block only Telnet access by the hosts on subnet 192.168.1.128/28 to the server at 192.168.1.5. What command should be issued to accomplish this task?

A. access-list 101 deny tcp 192.168.1.128 0.0.0.15 192.168.1.5 0.0.0.0 eq 23

access-list 101 permit ip any any

B. access-list 101 deny tcp 192.168.1.128 0.0.0.240 192.168.1.5 0.0.0.0 eq 23

access-list 101 permit ip any any

C. access-list 1 deny tcp 192.168.1.128 0.0.0.255 192.168.1.5 0.0.0.0 eq 21

access-list 1 permit ip any any

D. access-list 1 deny tcp 192.168.1.128 0.0.0.15 host 192.168.1.5 eq 23

access-list 1 permit ip any any

Answer: A

12. Part of the TestInside network is shown below:

 

In this TestInside network segment,the following ACL was configured on the S0/0 interface of router TestInside2 in the outbound direction:

access-list 101 deny tcp 192.168.15.32 0.0.0.15 any eq telnet

access-list 101 permit ip any any

Which two packets, if routed to the interface, will be denied?(Choose two)

A. source ip address:, 192.168.15.49 destination port: 23

B. source ip address:, 192.168.15.41 destination port: 21

C. source ip address:, 192.168.15.37 destination port: 21

D. source ip address:, 192.168.15.36 destination port: 23

E. source ip address: 192.168.15.46; destination port: 23

Answer: DE

13. What functions do routers perform in a network? (Choose two.)

A. packet switching

B. microsegmentation of broadcast domains

C. path selection

D. VLAN membership assignment

Answer: AC

14. On a network of one TestInside department,there are four PCs connected to a switch,as shown in the following figure:

 

After the switch TestInside1 restarts,  TestInsideA ( the host on the left ) sends the first frame to TestInsideC (the host on the right ).what the first thing should the switch do ?

A. TestInside1 will add 192.168.23.12 to the switching table.

B. TestInside1 will add 192.168.23.4 to the switching table.

C. TestInside1 will add 000A.8A47.E612 to the switching table.

D. TestInside1 will add 000B.DB95.2EE9 to the switching table.

Answer: C

15. Network topology exhibit:

 

Output exhibit:

C:/arp -a

Interface:192.168.1.95 --- 0x2

  Internet Address    Phycical Address      Type

  192.168.1.254       00-60-0f-2e-14-c6      dynamic

You work as a network technician at TestInside and you issued the arp -a command from a host named TestInsideA as shown above.

The user of host TestInsideA wants to ping the DSL modem/router at 192.168.1.254. Based on the Host TestInsideA ARP table that is shown in the exhibit, what will host TestInsideA do?

A. send a unicast ARP packet to the DSL modem/router

B. send unicast ICMP packets to the DSL modem/router

C. send Layer 3 broadcast packets to which the DSL modem/router responds

D. send a Layer 2 broadcast that is received by TestInside2, the switch, and the DSL modem/router

Answer: B

16. Study the exhibit carefully. Each of these four TestInside switches has been configured with a hostname, as well as being configured to run RSTP. No other configuration changes have been made. Which switch will have only one forwarding interface?

 

A. TIS-SA

B. TIS-SB

C. TIS-SC

D. TIS-SD

Answer: B

17. 802.1b is being utilized in the TestInside wireless network. Which spread spectrum technology does the 802.1b standard define for operation in this network?

A. IR

B. DSSS

C. FHSS

D. DSSS and FHSS

E. IR, FHSS, and DSSS

Answer: B

18. Part of the TestInside OSPF network is shown below:

 

Configuration exhibit:

TestInside1 Routing Commands:

ip route 0.0.0.0 0.0.0.0 serial0/0

router ospf 1

network 172.16.100.0 0.0.0.3 area 0

network 172.16.100.64 0.0.0.63 area 0

network 172.16.100.128 0.0.0.31 area 0

default-information originate 

You work as a network technician at TestInside.com. Study the exhibits carefully.

Assume that all router interfaces are operational and correctly configured. In

addition, assume that OSPF has been correctly configured on Router TestInside2.

How will the default route configured on TestInside1 affect the operation of

TestInside2?

A. Any packet destined for a network that is not directly connected to router TestInside2 will be dropped immediately.

B. Any packet destined for a network that is not directly connected to router TestInside1 will be dropped.

C. Any packet destined for a network that is not directly connected to router TestInside2 will be dropped immediately because of the lack of a gateway on TestInside1.

D. The network directly connected to a router TestInside2 will not be able to communicate with the 172.16.100.0, 172.16.100.28,and 172.16.100.64 subnetworks.

E. Any packet destined for a network that is not referenced in the routing table of router TestInside2 will be directed to TestInside1. TestInside1 will then send that packet back to TestInside2 and a routing loop will occur.

Answer: E

19. Refer to the graphic. Workstation A in the Sales location is communicating with the server in the Production location. What will be the source MAC address of the frames received by workstation A from the server?

 

A. the MAC address of router interface e0

B. the MAC address of router interface e1

C. the MAC address of the server network interface

D. the MAC address of host A

Answer: A

20. Which one of the following statements is the media access method that Gigabit Ethernet uses?

A. CSMA/CD

B. CSMA/CA

C. token passing

D. point-to-point

Answer: A

21. Part of the TestInside network is shown below:

 

A host on the LAN is accessing an FTP server across the Internet. Which of the following addresses could appear as a source address for the packets forwarded by the router to the destination server?

A. 10.10.0.1

B. 199.99.9.33

C. 199.99.9.57

D. 200.2.2.17

Answer: C

22. Refer to the topology and configuration information shown in the graphic. The TIS-R1 has been configured to provide communication between the VLANs. Which IOS commands are required to configure switch port fa0/1 to establish a link with router TIS-R1 using the IEEE standard protocol? (Choose three.)

 

A. Switch(config)# interface fastethernet 0/1

B. Switch(config-if)# switchport trunk encapsulation dot1q

C. Switch(config-if)# switchport mode trunk

D. Switch(config-if)# switchport access vlan 1

Answer: ABC

你可能感兴趣的:(Testpassport完整CCNA考题分享)