CCNA Discovery 3 Module 3

     1.

           

Refer to the exhibit. What two statements can be concluded from the information that is shown in the exhibit? (Choose two.)
• All ports that are listed in the exhibit are access ports.
• ARP requests from Host1 will be forwarded to Host2.
• Attaching Host1 to port 3 will automatically allow communication between both hosts.
• The default gateway for each host must be changed to 192.168.3.250/28 to allow communication between both hosts.
• A router connected to the switch is needed to forward traffic between the hosts.

2.     

A router is configured to connect to a trunked uplink as shown in the exhibit. A packet is received on the FastEthernet 0/1 physical interface from VLAN 10. The packet destination address is 192.168.1.120. What will the router do with this packet?
• The router will forward the packet out interface FastEthernet 0/1.1 tagged for VLAN 10.
• The router will forward the packet out interface FastEthernet 0/1.2 tagged for VLAN 60.
• The router will forward the packet out interface FastEthernet 0/1.3 tagged for VLAN 60.
• The router will forward the packet out interface FastEthernet 0/1.3 tagged for VLAN 120.
• The router will not process the packet since the source and destination are on the same subnet.
• The router will drop the packet since no network that includes the source address is attached to the router.

3.      The information contained in a BPDU is used for which two purposes? (Choose two.)
• to prevent loops by sharing bridging tables between connected switches
• to set the duplex mode of a redundant link
• to determine the shortest path to the root bridge
• to determine which ports will forward frames as part of the spanning tree
• to activate looped paths throughout the network

4.      A router has two serial interfaces and two Fast Ethernet interfaces. This router must be connected to a WAN link and to a switch that supports four VLANs. How can this be accomplished in the most efficient and cost-effective manner to support inter-VLAN routing between the four VLANs?
• Connect a smaller router to the serial interface to handle the inter-VLAN traffic.
• Add two additional Fast Ethernet interfaces to the router to allow one VLAN per interface.
• Connect a trunked uplink from the switch to one Fast Ethernet interface on the router and create logical subinterfaces for each VLAN.
• Use serial-to-Fast Ethernet transceivers to connect two of the VLANs to the serial ports on the router. Support the other two VLANs directly to the available FastEthernet ports.

5.      When are MAC addresses removed from the CAM table?
• at regular 30 second intervals
• when a broadcast packet is received
• when the IP Address of a host is changed
• after they have been idle for a certain period of time

6.     


Refer to the exhibit. Switch1 is not participating in the VTP management process with the other switches. Which two are possible reasons for this? (Choose two.)
• Switch2 is in transparent mode.
• Switch1 is in client mode.
• Switch1 is using VTP version 1 and Switch2 is using VTP version 2.
• Switch2 is in server mode.
• Switch1 is in a different management domain.
• Switch1 has no VLANs.

7.      Which three must be used when a router interface is configured for VLAN trunking? (Choose three.)
• one subinterface per VLAN
• one physical interface for each subinterface
• one IP network or subnetwork for each subinterface
• one trunked link per VLAN
• a management domain for each subinterface
• a compatible trunking protocol encapsulation for each subinterface

8.     

 
Refer to the exhibit. The switches are connected with trunks within the same VTP management domain. Each switch is labeled with its VTP mode. A new VLAN is added to Switch3. This VLAN does not show up on the other switches. What is the reason for this?
• VLANs cannot be created on transparent mode switches.
• Server mode switches neither listen to nor forward VTP messages from transparent mode switches.
• VLANs created on transparent mode switches are not included in VTP advertisements.
• There are no ports assigned to the new VLAN on the other switches.
• Transparent mode switches do not forward VTP advertisements.

9.      Which two criteria are used by STP to select a root bridge? (Choose two.)
• memory size
• bridge priority
• switching speed
• number of ports
• base MAC address
• switch location

10.  Which three steps should be taken before moving a Catalyst switch to a new VTP management domain? (Choose three.)
• Reboot the switch.
• Reset the VTP counters to allow the switch to synchronize with the other switches in the domain.
• Download the VTP database from the VTP server in the new domain.
• Configure the VTP server in the domain to recognize the BID of the new switch.
• Select the correct VTP mode and version.
• Configure the switch with the name of the new management domain.

11.  Which two items will prevent broadcasts from being sent throughout the network? (Choose two.)
• bridges
• routers
• switches
• VLANs
• hubs

12.  Which two characteristics describe a port in the STP blocking state? (Choose two.)
• provides port security
• displays a steady green light
• learns MAC addresses as BPDUs are processed
• discards data frames received from the attached segment
• receives BPDUs and directs them to the system module

13.  What is the first step in the process of convergence in a spanning tree topology?
• election of the root bridge
• determination of the designated port for each segment
• blocking of the non-designated ports
• selection of the designated trunk port
• activation of the root port for each segment

14.  In which STP state does a switch port transmit user data and learn MAC addresses?
• blocking
• learning
• disabling
• listening
• forwarding

15.  What is the purpose of VTP?
• maintaining consistency in VLAN configuration across the network
• routing frames from one VLAN to another
• routing the frames along the best path between switches
• tagging user data frames with VLAN membership information
• distributing BPDUs to maintain loop-free switched paths

16.  Which statement best describes adaptive cut-through switching?
• The switch initially forwards all traffic using cut-through switching and then changes to store-and-forward switching if errors exceed a threshold value.
• The switch initially forwards all traffic using cut-through switching and then changes to fast-forward switching if errors exceed a threshold value.
• The switch initially forwards all traffic using cut-through switching and then temporarily disables the port if errors exceed a threshold value.
• The switch initially forwards all traffic using store-and-forward switching and then changes to cut-through switching if errors exceed a threshold value.

17.  Using STP, how long does it take for a switch port to go from the blocking state to the forwarding state?
• 2 seconds
• 15 seconds
• 20 seconds
• 50 seconds

18.   

Refer to the exhibit. The switches are interconnected by trunked links and are configured for VTP as shown. A new VLAN is added to Switch1. Which three actions will occur? (Choose three.)
• Switch1 will not add the VLAN to its database and will pass the update to Switch 2.
• Switch2 will add the VLAN to its database and pass the update to Switch3.
• Switch3 will pass the VTP update to Switch4.
• Switch3 will add the VLAN to its database.
• Switch4 will add the VLAN to its database.
• Switch4 will not receive the update.

19.  Which Catalyst feature causes a switch port to enter the spanning-tree forwarding state immediately?
• backbonefast
• uplinkfast
• portfast
• rapid spanning tree

20.   

Refer to the exhibit. Which set of commands would be used on the router to provide communication between the two hosts connected to the switch?
• Router(config)# interface vlan 2
Router(config-if)# ip address 192.168.2.1 255.255.255.0
Router(config-if)# no shutdown
Router(config)# interface vlan 3
Router(config-if)# ip address 192.168.3.1 255.255.255.0
Router(config-if)# no shutdown
• Router(config)# interface fastethernet 0/0
Router(config-if)# no shutdown
Router(config-if)# interface fastethernet 0/0.2
Router(config-subif)# encapsulation dot1q 2
Router(config-subif)# ip address 192.168.2.1 255.255.255.0
Router(config-if)# interface fastethernet 0/0.3
Router(config-subif)# encapsulation dot1q 3
Router(config-subif)# ip address 192.168.3.1 255.255.255.0
• Router(config)# interface vlan 2
Router(config-if)# switchport mode trunk dot1q
Router(config)# interface vlan 3
Router(config-if)# switchport mode trunk dot1q
• Router(config)# interface fastethernet 0/0
Router(config-if)# mode trunk dot1q 2 3
Router(config-if)# ip address 192.168.2.1 255.255.255.0v

Read more...

CCNA2 Chapter 8

Lab 8.1.3 Security local data and transmitted data

Part 1

Step 1: secure bobs files folder

Step 2: test joes access to bobs files

Part 2

Step 1: identify a secure web page

Step 2: examine secure access to an untrusted source warming

Lab 8.2.1 planning for access lists and port filters

Step 1: Restrict Client A to one subnet

You are asked to restrict client A to only the subnet to which it is currently attached. Client A needs to be able to access server A. but it does not need to accsess the internet or server B. where would you place the access list?

Router	Interface	Allow or Deny?	Input or output filter?	Why?
Router 2	0/0 dan 0/1	deny	input	Karena hanya untuk mengekses server yang berada di internal jaringan dan tidak bisa untuk eksternal jaringan atau jaringan luar

Step 2: Restrict client A access to server A but allow access to server B the internet

You are asked to restrict client B from accessing server B needs internet access and access to server B. where would you place the access list?

Router	Interface	Allow or Derry?	Input or output filter?	Why?
Router 1 dan 3	0/0 dan 0/1	allow	output	Karena diizinkan untu mengakses jaringan internal dan eksternal

Step 3: Allow only client A to access the routers using only SSH

You have been asked to secure access to the routers for only client A. which will be the management PC for those routers. You want to limit access to only SSH from Client A and prevent telnet access. Where would you place the access list?

Router	Interface	Input or output filter?	Port	Allow or Deny?	Why?
Router 1	0/0 dan 0/1	input	0	deny	Jaringan internal
Router 2	0/0 dan 0/1	output	0	allow	Jaringan eksternal
Router3	0/0 dan 0/1	output	0	allow	Jaringan eksternal

Lab 8.2.5 Researching an Anti-X Software Product

Step 1: identify three products

Company	Product
smadav	Smadav
morphic	Morposh
Avira	Avira

Step 2: Compare pricing

Company	Product	Price
microsoft	Windows	Rp.1.500.000
	Linux	free
aple	machintosh	Rp.5.000.000

Lab 8.3.1 Interpreting a service level agreement

Step 1: review typical customer needs

Step 2: Analyze a sample SLA and identify key components

a.       Read over the sample SLA that follows and answer these questions regarding content, ISP responsibilities, and customer requirements.

b.      According to this agreement, can the ISP be held liable for damage to equipment owned by the customer [Client] or data loss that occurs due to accidental actions by ISP vendor staff or other persons? bisa

c.       What are some examples of One Time Services included in the SLA? E-mail service, electronic interchange, online accounting, secure remote workerr support, remote indtrumentation and control system, and backup and recovery service.

d.      What are some examples of On going Services included in the SLA? E-mail service, online acounting

e.       When will regular downtime maintenance be scheduled and how many business days notice must the ISP give of any scheduled downtime? Banyak jam dalam satu hari dan banyak hari dalam senulan.What does the ISP’s network monitoring system do when an error condition is detected? What is the stated availability of the Systems Administrators in the event of a system failure? What is “usage monitoring” and how does the ISP provide this service? Dengan memantau kerja sistem

f.        Regarding problem severity and ISP response time, what is the difference in response between “Level 1 – normal business hours” and “Level 3 – normal business hours”? pada level satu baru mendeteksi problem dan pada level 3 sudah ada pengontrolan

g.      On what factors are the penalties for service outages based?  Provides an estimate for the cost to the customer for a service outage for each of the services the customer wants covered by an SLA.

Lab 8.3.2 conducting a Network capture with wireshark

Step 1: install and launch Wireshark

Step 2: select an interface to  use for capturing pakets

Step 3 : Analysyze web trafict information (optional)

a.       The conection to the google server with a query to the DNS server to lookup the server IP address. The destination server IP address will most likely start with 64.x.x.x what is the source and destination of the first packet sent to the google server?

Source: 192.168.1.103

Destination: 65.24.7.3

b.      Open another browser window and go to the ARIN who is database http://www.arin .net/whois/ or use another whois lookup tool and enter thr IP address of the destination server. To what organization is this IP address assigned? 192.168.1.103

c.       What are the protocols is used to establish the connection to the web server and deliver the web page to your local host? TCP

d.      What is the color used to establish the connection to the server and deliver the web page to your local host? hijau

e.       What is the color used to highlight the traffic between your host and the google web server? gray

Step 5: filter a network capture

a.       Open a command prompt window by clicking start > all programs > run and typing cmd.

b.      Ping a host IP address on your local network and observer? ICMP

c.       When icmp is typed in the filter text box what kind of raffic is was displayed? Ketika kita menge-ping host IP address yang ada di jaringan local kita

d.      Click the filter: Expression button on the wireshark eindow. Scroll down the list and view the filter possibilities there. Are TCP, HTTP,ARP and other protocols listed? Ya ada

Step 6:reflection

a.       There are hundreads of filters listed in the filter: expression option. It may be possible that, in a large network , there would be enormounts and many different types of traffic. Which three filters in the long list do you think might be most useful to a network administrator

b.      Is wreshark a tool for out of band or in band network monitoring

Explain your answare

Lab 8.4.2 planning a backup solution

step 1: choose the media and backup hardware

Equipment / media	price	quality
USB and solid-state drives	$30-$90	medium
fireWire drives	$180	best
CD-RW and DVD+RW/-RW drives	$100	medium

Step 2: design a backup plan and procedure

a.       Describe the equipment recommended and explain why you selected this equipment

Saya memilih media di atas Karena saya melihat dari segi kapasitas dan segi ekonomis

b.      Describe location of the equipment in the network and the network link speeds to the equipment

c.       Describe the backup media to be used and also explain why you selected this media

d.      Describe the backup schedule

e.       Describe the backup and restore procedure, including what kind of backup (Normal, differential, incremental), how it will be tested what kind of maintenance the equipment requires. How tapes will be labeled and where tapes that have been backed up will be stored. When backups need to be restored, what is the procedure for a file a folder a driver (use extra sheets it necessary)

Read more...

CCNA2 Chapter 7

Lab 7.3.1 Editing the HOSTS file in windows

Step 4: reflection

a.       Which other files are located in the \ETC folder with the HOSTS file?

·         Pemetaan IP

·         Host name

·         Pemetaan web server

b.      Which character is used to comment out description text in the HOSTS file? Menggunakan tanda ‘#’ untuk membuat komentar deskripsi

Lab 7.3.3 a Examining Cached DNS information on a windows DNS server

Step 4: reflection

a.       The DNS server had to do a query to the cisco.com domain name servers to resolve name (www.cisco.com) to an IP address what do you think would happen the next time this website is visited again a few minutes? Maka aka nada ns3 karena alamat www.cisco.com diakses untuk yang ketiga kalinya

b.      What would happen if there are no requests for this website for a longer period of time? Tidak akan terjadi apa-apa record-nya tidak akan bertambah.

Lab 7.3.3.b Creating Primari and secondary forward lookup zones

Step 4: reflection

            What is the major benefit of having a primary and secondary DNS server in a zone?

            Primary DNS server: computer menjalankan fungsi name server baerdasarkan data base yang dimilikinya .

Secondary DNS server: computer menjalankan fungsi name server berdasarkan database yang diambil dari ptimary server

Read more...

CCNA2 Chapter 6

Lab 6.1.2 Creating a Network Diagram From Routing Tables

Step 1:Examine the routing table entries for the router R1

a.       Examine show ip route output from router R1 shown below

b.      How many networks does router R1 know about? Lima networks

c.       How many networks are directly connected to this router? Tiga networks

d.      How many networks have been learned from another router? Dua network

e.       Using the codes at the beginning of the show ip route output what does the ‘R’ mean? R adalah router

f.       In the routers learned via RIP to which device does the ip address 172.17.0.2 belong? Ya ada

Step 2: Examine the routing table entries for the router R2

a.       In the routers learned via RIP to which device is serial 0/0 referring and what does it mean? 0/0 adalah interfacenya yaitu menampilkan informasi khusus hardware interface. Perintah ini harus di-set termasuk nomor port/slot dari interface serial.

b.      Examine show ip route output from router R2 shown below

c.       How many networks does router R2 know about? Lima networks

d.      How many networks are directly connected to this router? Tiga networks

e.       How many networks have been learned from another router? Dua networks

f.       Using the codes at the beginning of the show ip route output what does the ‘R’ mean? R adalah router

g.      In the routers learned via RIP to which device does the ip address 172.17.0.2 belong? Ya ada

h.      In the routers learned via RIP to which device is serial 0/0 referring and what does it mean? Serial 0/0 adalah interface –nya yaitu menampilkan informasi khusus hardware interface. Perintah ini harus di-set termasuk nomor port/slot dari interface serial.

Step 3: document router interfaces and IP addresses

a.       Based on the shown ip router output from R1 and R2

Device	interface	IP Address	Subnet mask (dotted decimal and/xx)
R1	0/0	172.17.0.0	255.255.0.0/16
R1	0/0	192.168.1.0	255.255.255.0/24
R1	0/1	192.168.2.0	255.255.255.0/24
R2	0/0	172.17.0.0	255.255.0.0/16
R2	0/0	192.168.3.0	255.255.255.0/24
R2		192.168.4.0	255.255.255.0/24

b.      In this example can the exact IP address of all router interface be determined by looking at the routing tables? Ya bisa

c.       Which router interface IP address can be determined from the routing tables? Interface 0/0 dan 0/1

Step 5: reflection

a.       What do you think would happen to the entries in the routing table on R1 if one of the enthernet networks on R2 was disconnected? Maka pemrosesan sinyal untuk data jaringan computer akan terputus atau tidak akan terjadi.

b.      What do you think would happen to the entries in the routing tables on R1 and R2 if the serial interface on R2 was shut down?

Lab 6.1.5 Configure and Verify RIP

Step 2: Check the routing table entries

a.       View the IP routing table for R1 using the show ip route command:

b.      What is the significance of the “C” to the left of the 172.16.0.0 and 172.17.0.0 network entries in the routing table?  Pada IP 172.16.0.0 menggunakan interface type DCE sedangkan pada IP 172.17.0.0 menggunakan interface type DTE.

Step 4: Configure the hosts with the proper IP address, subnet mask, and default gateway

a.       Configure the host attached to R1 with an IP address, subnet mask and default gateway that is compatible with the IP address of the Fast Ethernet interface (172.16.0.0).

b.       Configure the host attached to R2 with an IP address, subnet mask and default gateway that is compatible with the IP address of the Fast Ethernet interface (172.18.0.0).

c.        Verify that the internetwork is functioning by pinging the Fast Ethernet interface of the other router.

d.       From the host attached to R1, is it possible to ping the R2 router Fast Ethernet interface? Ya mungkin  karena sudah menggunakan gateway yang akan menghubungkan dua buah jaringan yang berbeda.

e.        From the host attached to R2, is it possible to ping the R1 router Fast Ethernet interface? Ya mungkin  karena sudah menggunakan gateway yang akan menghubungkan dua buah jaringan yang berbeda.

f.        If the answer is no for either question, troubleshoot the router configurations to find the error. Then do the pings again until the answer to both questions is yes. Be sure to check physical cabling for problems and bad connections and make sure that you are using the correct cable types.

Step 5: Show the routing tables for each router

a.        In enable or privileged EXEC mode, examine the routing table entries using the show ip route command on router R1.

b.       What are the entries in the R1 routing table? R1 terkoneksi pada jaringan 172.17.0.0/16 dan 172.16.0.0/16

c.        What is the significance of the “R” to the left of the 172.18.0.0 network entry in the routing table? 172.18.0.0 terhubung ke jaringan melalui 172.17.0.2

d.       What does “via 172.17.0.2” mean for this network route? Router mempelajari melalui RIP dengan device 172.17.0.2

e.        What does “Serial0/0” mean for this network route? Serial interfacenya atau port/slot

f.        Examine the routing table entries using the show ip route command on router R1.

g.        What are the entries in the R2 routing table? 172.16.0.0/16

Step 6: Use debug to observe RIP communications

a.       On router R1, enter the debug ip rip command from privileged EXEC mode. Examine the exchange of routes between the two routers. The output should look similar to that shown here.

b.       Enter the command undebug all to stop all debugging activity

c.        What interface does router R1 send and receive updates through? R1 mengirim ke alamat 224.0.0.9 dan R1 menerima dari 172.17.0.2

d.       Why does the route to 172.17.0.0 have metric of 1 and the route to 172.18.0.0 have a metric of 2? Karena pada ruter ke 172.17.0.0 memiliki satu lompatan atau terkoneksi langsung sehingga disebut 1 metric sedangkan 172.18.0.0 memiliki dua lompatan karena tidak terkoneksi secara langsung melainkan melalui router lain.

e.        Log off by typing exit and turn off the router.

Step 7: Reflection

a.       What do you think would happen to the routing table on router R1 if the Ethernet network on router R2 went down? Koneksi antara R1 dan R2 akan terputus

b.      What do you think would happen if router R1 was configured to run RIPv1, and R2 was configured to run RIPv2? Maka router dapat berkomunikasi dengan router lain sehingga dapat menetukan jalan yng terbaik dalam pengiriman paket data  tanpa memperhatikan subnet, konfigurasi ini di butuh kan untuk proses routing untuk menentukan interface mana yang akan mengirim data atau menerima.

 Lab 6.2.5 Configuring BGP with Default Routing

Step 4: View the Routing Tables

a.    ISP2#show ip route

1)         Is network 192.168.1.0 in the routing table of ISP2? Ya ada

2)         What letter is at the left of the entry for 192.168.1.0? ‘B’

3)         What does the letter mean?

4)         Is network 192.168.100.0 in the routing table? Ya ada

5)         Which router advertised network 192.168.1.0? 172.16.1.1

b.    ISP1#show ip route

1)         What network(s) did ISP1 learn from ISP2? 172.16.1.2

2)         How did ISP1 learn about network 192.168.1.0? melalui 10.10.10.1

3)         Will ISP1 advertise any networks to the customer router? Ya akan

c.    CR#show ip route

1)         Why are networks 192.168.100.0 and 192.168.200.0 not in CRs routing table? Karena semua lalu lintas dari jaringan 192.168.100.0 dan 192.168.200.0 akan menggunakan ISP1 sehingga kedua jaingan ini tidak terdapat di routing table ISP2

Step 7: Reflection

Why doesn’t ISP1 advertise any networks to the customer router? Karena setiap jaringan sudah di atur menggunakan ISP yang mana, jadi tidak semua jaringan ynag ada di ISP1 di izinkan untuk menggunakan pelayanan router lainnya.

Read more...