Reading...
Play button
Play button
Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
154 Cards in this Set
- Front
- Back
|
Network traffic pattern where 20 percent of traffic stays in a local area, while 80 percent travels to or from a remote resource.
|
20/80 Rule
|
|
|
The layer of the network where end users are connected.
|
Access Layer
|
|
|
The GLBP router that answers all ARP requests for the virtual router address and assigns virtual MAC addresses to each router in the GLBP group.
|
Active Virtual Gateway (AVG)
|
|
|
In RSTP, a port other than the root port that has an alternative path to the root bridge.
|
Alternate Port
|
|
|
A method of passing frames and their VLAN associations over a trunk link, based on the IEEE 802.1Q standard.
|
802.1Q
|
|
|
A GLBP router that takes on a virtual MAC address and forwards traffic received on that address.
|
Active Virtual Forwarder (AVF)
|
|
|
A table used by CEF to collect the MAC address of nodes that can be reached in a single Layer 2 hop.
|
Adjacency Table
|
|
|
Also known as ARP spoofing. An attack whereby an attacker sends specially crafted ARP replies so that its own MAC address appears as the gateway or some other targeted host. From that time on, unsuspecting clients unknowingly send traffic to the attacker.
|
ARP Poisoning
|
|
|
An automated method to configure complex QoS parameters with a simple IOS macro command.
|
Auto-QoS
|
|
|
An access point that operates in a standalone mode, such that it is autonomous and can offer a functioning WLAN cell itself.
|
Autonomous Mode AP
|
|
|
In RSTP, a port that provides a redundant (but less desirable) connection to a segment where another switch port already connects.
|
Backup Port
|
|
|
The data message exchanged by switches participating in the Spanning Tree Protocol.
|
Bridge Protocol Data Unit / BPDU
|
|
|
A mechanism used by a device and a switch port to automatically negotiate the link speed and duplex mode.
|
Autonegotiation
|
|
|
An STP feature that can detect an indirect link failure and shorten the STP convergence time to 30 seconds by bypassing the Max Age timeout period.
|
BackboneFast
|
|
|
Packets are forwarded in the order in which they are received, regardless of any policy or the packet contents.
|
Best Effort Delivery
|
|
|
Prevents BPDUs from being sent or processed on a switch port.
|
BPDU Filtering
|
|
|
An STP feature that disables a switch port if any BPDU is received there.
|
BPDU Guard
|
|
|
The Extent of a network where a single broadcast frame or packet will be seen.
|
Broadcast Domain
|
|
|
An efficient topology-based system for forwarding IP packets.
|
Cisco Express Forwarding / CEF
|
|
|
The extent within a network that an Ethernet collision will be noticed or experienced.
|
Collision Domain
|
|
|
A condition where Ethernet frames are forwarded endlessly around a Layer 2 loop formed between switches.
|
Bridging Loop
|
|
|
The high-performance table used by a switch to correlate MAC addresses with the switch interfaces where they can be found.
|
Content-addressable Memory / CAM
|
|
|
A network design where the core and distribution layers are collapsed or combined into a single layer of switches.
|
Collapsed Core
|
|
|
A single instance of STP defined in the IEEE 802.1Q standard.
|
Common Spanning Tree (CST)
|
|
|
A type of secondary private VLAN; switch ports associated with a community VLAN can communicate with each other.
|
Community VLAN
|
|
|
Network traffic pattern where 20 percent of traffic stays in a local area, while 80 percent travels to or from a remote resource.
|
20/80 Rule
|
|
|
The layer of the network where end users are connected.
|
Access Layer
|
|
|
The GLBP router that answers all ARP requests for the virtual router address and assigns virtual MAC addresses to each router in the GLBP group.
|
Active Virtual Gateway (AVG)
|
|
|
In RSTP, a port other than the root port that has an alternative path to the root bridge.
|
Alternate Port
|
|
|
A method of passing frames and their VLAN associations over a trunk link, based on the IEEE 802.1Q standard.
|
802.1Q
|
|
|
A GLBP router that takes on a virtual MAC address and forwards traffic received on that address.
|
Active Virtual Forwarder (AVF)
|
|
|
A table used by CEF to collect the MAC address of nodes that can be reached in a single Layer 2 hop.
|
Adjacency Table
|
|
|
Also known as ARP spoofing. An attack whereby an attacker sends specially crafted ARP replies so that its own MAC address appears as the gateway or some other targeted host. From that time on, unsuspecting clients unknowingly send traffic to the attacker.
|
ARP Poisoning
|
|
|
An automated method to configure complex QoS parameters with a simple IOS macro command.
|
Auto-QoS
|
|
|
An access point that operates in a standalone mode, such that it is autonomous and can offer a functioning WLAN cell itself.
|
Autonomous Mode AP
|
|
|
In RSTP, a port that provides a redundant (but less desirable) connection to a segment where another switch port already connects.
|
Backup Port
|
|
|
The data message exchanged by switches participating in the Spanning Tree Protocol.
|
Bridge Protocol Data Unit / BPDU
|
|
|
A mechanism used by a device and a switch port to automatically negotiate the link speed and duplex mode.
|
Autonegotiation
|
|
|
An STP feature that can detect an indirect link failure and shorten the STP convergence time to 30 seconds by bypassing the Max Age timeout period.
|
BackboneFast
|
|
|
Packets are forwarded in the order in which they are received, regardless of any policy or the packet contents.
|
Best Effort Delivery
|
|
|
Prevents BPDUs from being sent or processed on a switch port.
|
BPDU Filtering
|
|
|
An STP feature that disables a switch port if any BPDU is received there.
|
BPDU Guard
|
|
|
The Extent of a network where a single broadcast frame or packet will be seen.
|
Broadcast Domain
|
|
|
An efficient topology-based system for forwarding IP packets.
|
Cisco Express Forwarding / CEF
|
|
|
The extent within a network that an Ethernet collision will be noticed or experienced.
|
Collision Domain
|
|
|
A condition where Ethernet frames are forwarded endlessly around a Layer 2 loop formed between switches.
|
Bridging Loop
|
|
|
The high-performance table used by a switch to correlate MAC addresses with the switch interfaces where they can be found.
|
Content-addressable Memory / CAM
|
|
|
A network design where the core and distribution layers are collapsed or combined into a single layer of switches.
|
Collapsed Core
|
|
|
A single instance of STP defined in the IEEE 802.1Q standard.
|
Common Spanning Tree (CST)
|
|
|
A type of secondary private VLAN; switch ports associated with a community VLAN can communicate with each other.
|
Community VLAN
|
|
|
The “backbone” layer of the network where all distribution layer switches are aggregated.
|
Core Layer
|
|
|
The mechanism used in 802.11 WLANs by which clients attempt to avoid collisions.
|
Carrier Sense Multiple Access Collision Avoidance (CSMA/CA)
|
|
|
The amount of time required for a packet to be forwarded across a network.
|
Delay
|
|
|
A standards-based tunneling protocol used to transport control messages and data packets between a WLC and an LAP. CAPWAP is defined in RFC 4118.
|
Control and Provisioning Wireless Access Point (CAPWAP)
|
|
|
A method of marking frames with a QoS value as they cross a trunk link between two switches.
|
CoS Marking
|
|
|
A mechanism used on Ethernet networks to detect collisions and cause transmitting devices to back off for a random time.
|
Carrier Sense Multiple Access Collision Detect (CSMA/CD)
|
|
|
One nonroot port selected on a network segment, such that only one switch forwards traffic to and from that segment.
|
Designated Port
|
|
|
A protocol used to negotiate IP address assignment between a client and a server. The client and server must reside on the same VLAN.
|
Dynamic Host Configuration Protocol / DHCP
|
|
|
A security feature that enables a switch to intercept all DHCP requests coming from untrusted switch ports before they are flooded to unsuspecting users.
|
DHCP Snooping
|
|
|
In RSTP, incoming frames are dropped and no MAC addresses are learned.
|
Discarding State
|
|
|
A Cisco-proprietary method of negotiating a trunk link between two switches.
|
Dynamic Trunking Protocol / DTP
|
|
|
A multilayer switch that intercepts and relays DHCP negotiation messages between a client and a DHCP server, even if they exist on different VLANs.
|
DHCP Relay
|
|
|
Packet forwarding is handled according to local QoS policies on a per-device or per-hop basis.
|
Differentiated Services (DiffServ) Model
|
|
|
The layer of the network where access layer switches are aggregated and routing is performed.
|
Distribution Layer
|
|
|
A network design that has a distinct core layer made up of a redundant pair of switches.
|
Dual Core
|
|
|
A condition where the devices on each end of a link use conflicting duplex modes.
|
Duplex Mismatch
|
|
|
A security feature that can mitigate ARP-based attacks. ARP replies received on untrusted switch ports are checked against known, good values contained in the DHCP snooping database.
|
Dynamic ARP Inspection (DAI)
|
|
|
A single VLAN that spans the entire switched network, from one end to the other.
|
End-to-End VLAN
|
|
|
The DSCP value used to mark time-critical packets for premium QoS handling. EF is usually reserved for voice bearer traffic.
|
Expedited Forwarding (EF)
|
|
|
The Ethernet mode that governs how devices can transmit over a connection – half-duplex mode forces only one device to transmit at a time, as all devices share the same media; full-duplex mode is used when only two devices share the media, such that both devices can transmit simultaneously.
|
Duplex Mode
|
|
|
In RSTP, a port at the “edge” of the network, where only a single host connects.
|
Edge Port
|
|
|
A logical link made up of bundled or aggregated physical links.
|
EtherChannel
|
|
|
A CEP database that contains the current routing table.
|
Forwarding Information Base / FIB
|
|
|
An Ethernet frame is replicated and sent out every available switch port.
|
Flooding
|
|
|
The time interval between configuration BPDUs sent by the root bridge; defaults to 2 seconds.
|
Hello Time
|
|
|
A switch port mapped to a private VLAN such that a connected device can communicate with only a promiscuous port or ports within the same community VLAN.
|
Host Port
|
|
|
A router in an HSRP group that waits until the active router fails before taking over that role.
|
HSRP Standby Router
|
|
|
The time interval that a switch spends in the Listening and Learning states; default 15 seconds.
|
Forward Delay
|
|
|
A campus network that is usually organized into an access layer, a distribution layer, and a core layer.
|
Hierarchical Network Design
|
|
|
The router in an HSRP group that forwards traffic sent to the virtual gateway IP and MAC address.
|
HSRP Active Router
|
|
|
A special mode where an LAP at a remote site can take on characteristics of a lightweight AP, as long as the LAP can reach the WLC, or an autonomous AP, when the WLC is unreachable.
|
Hybrid Remote Edge Access Point (HREAP)
|
|
|
The standard that defines port-based authentication between a network device and a client device.
|
IEEE 802.1x
|
|
|
The function performed by a Layer 3 device that connects and forwards packets between multiple VLANs.
|
InterVLAN Routing
|
|
|
A type of secondary private VLAN; switch ports associated with an isolated VLAN are effectively isolated from each other.
|
Isolated VLAN
|
|
|
The variation in packet delivery delay times.
|
Jitter
|
|
|
The standard upon which all generations of Ethernet (Ethernet, Fast Ethernet Gigabit Ethernet, 10 Gigabit Ethernet) are based.
|
IEEE 802.3
|
|
|
A Cisco-proprietary method of tagging frames passing over a trunk link.
|
Inter-Switch Link / ISL
|
|
|
Internal spanning-tree instance; used by MST to represent an entire region as a single virtual bridge to a common spanning tree.
|
IST Instance
|
|
|
A standards-based method for negotiating EtherChannels automatically.
|
Link Aggregation Control Protocol / LACP
|
|
|
Movement of a WLAN client from one AP to another, while keeping its same I address.
|
Layer 2 Roaming
|
|
|
An access point that runs a lightweight code image that performs real-time 802.11 operations. An LAP cannot offer a fully functioning WAN cell by itself; instead, it must coexist with a wireless LAN controller.
|
Lightweight Access Point (LAP)
|
|
|
A single VLAN that is bounded by a small area of the network, situated locally with a group of member devices.
|
Local VLAN
|
|
|
The time interval that a switch stores a BPDU before discarding it or aging it out; the default is 20 seconds.
|
Max Age Time
|
|
|
Movement of a WLAN client from one AP to another, where the APs are located across IP subnet boundaries.
|
Layer 3 Roaming
|
|
|
The tunneling protocol developed by Cisco that is used to transport control messages and data packets between a WLC and an LAP.
|
Lightweight Access Point Protocol (LWAPP)
|
|
|
An STP feature that disables a switch port if expected BPDUs suddenly go missing.
|
Loop Guard
|
|
|
Multiple Spanning-Tree protocol, used to map one or more VLANs to a single STP instance, reducing the total number of STP instances.
|
Multiple Spanning-Tree Protocol / MST
|
|
|
A single instance of STP running within an MST region; multiple VLAs can be mapped to the MST instance.
|
MST Instance (MSTI)
|
|
|
On an 802.1Q trunk link, frames associated with the native VLAN are not tagged at all.
|
Native VLAN
|
|
|
Packets are simply dropped without delivery for some reason.
|
Packet Loss
|
|
|
A Cisco-developed method for negotiating EtherChannels automatically.
|
Port Aggregation Protocol / PAgP
|
|
|
A group of switches running compatible MST configurations.
|
MST Region
|
|
|
A redundancy method that quickly rebuilds routing information after a redundant Catalyst switch supervisor takes over.
|
Non-Stop Forwarding (NSF)
|
|
|
Just before forwarding a packet, a multilayer switch has to change several fields in the packet to reflect the Layer 3 forwarding operation.
|
Packet Rewrite
|
|
|
In the Cisco implementation of RSTP, a full-duplex port that connects to another switch and becomes a designated port.
|
Point-to-Point Port
|
|
|
An STP feature used on a host port, where a single host is connected, that shortens the Listening and Learning states so that the host can gain quick access to the network.
|
PortFast
|
|
|
Electrical power supplied to a networked device over the network cabling itself.
|
Power Over Ethernet (PoE)
|
|
|
A special purpose VLAN, designated as either primary or secondary, which can restrict or isolate traffic flow with other private VLANs.
|
Private VLAN
|
|
|
A Cisco-proprietary version of STP where one instance of STP runs on each VLAN present in a Layer 2 switch.
|
Per-VLAN Spanning Tree / PVST
|
|
|
Categories of PoE devices based on the maximum amount of power required; power classes range from 0 to 4.
|
Power Class
|
|
|
A normal Layer 2 VLAN used as the basis for a private VLAN when it is associated with one or more secondary VLANs.
|
Primary VLAN
|
|
|
A switch port mapped to a private VLAN such that a connected device can communicate with any other switch port in the private VLAN.
|
Promiscuous Port
|
|
|
A Cisco-proprietary version of PVST that enables PVST, PVST+, and CST to interoperate on a switch.
|
Per-VLAN Spanning Tree Plus / PVST+
|
|
|
The overall method used in a network to protect and prioritize time-critical or important traffic.
|
Quality of Service (QoS)
|
|
|
An STP feature that controls where candidate root bridges can be found.
|
Root Guard
|
|
|
Each switch selects one port that has the lowest root path cost leading toward the root bridge.
|
Root Port
|
|
|
A redundancy mode where a redundant supervisor boots up and waits to begin Layer 2 or Layer 3 functions.
|
Route Processor Redundancy Plus (RPR+)
|
|
|
The single STP device that is elected as a common frame of reference for working out a loop-free topology.
|
Root Bridge
|
|
|
The cumulative cost of all the links leading to the root bridge.
|
Root Path Cost
|
|
|
A redundancy mode where a redundant supervisor partially boots and waits to become active after the primary supervisor fails.
|
Route Processor Redundancy (RPR)
|
|
|
Where RSTP is used on a per-VLAN basis; in effect, RSTP replaces traditional 802.1D STP in the PVST+ operation.
|
"RPVST+
|
|
|
The rapid Spanning-Tree Protocol, based on the IEEE 802.1w standard.
|
RSTP
|
|
|
A protocol communicated between Layer 2 switches that attempts to detect a loop in the topology before it forms, thus preventing a bridging loop from occurring.
|
Spanning Tree Protocol (STP)
|
|
|
A text string that identifies a service set, or a group of WLAN devices, that can communicate with each other.
|
Service Set Identifier / SSID
|
|
|
MAC addresses dynamically learned by the port security feature are remembered and expected to appear on the same switch ports.
|
Sticky MAC Address
|
|
|
A unidirectional VLAN that can pass traffic to and from its associated primary VLAN, but not with any other secondary VLAN.
|
Secondary VLAN
|
|
|
Normal Media Access Control (MAC) operations are divided into two distinct locations – the LAP and the WLC, such that the two form a completely functioning WLAN cell.
|
Split-MAC Architecture
|
|
|
A redundancy mode where a redundant supervisor fully boots and initializes, allowing configurations and Layer 2 tables to be synchronized between an active supervisor and a redundant one.
|
Stateful Switchover (SSO)
|
|
|
A received BPDU that contains a better bridge D than the current root bridge.
|
Superior BPDU
|
|
|
A logical interface used to assign a layer 3 address to an entire VLAN.
|
Switched Virtual Interface / SVI
|
|
|
A malicious host uses DTP to masquerade as a switch, with the goal of negotiating a trunk link and gaining access to additional VLANs.
|
Switch Spoofing
|
|
|
A switching table fond in Catalyst switches that is used to evaluate packet forwarding decisions based on policies or access list. TCAM evaluation is performed simultaneously with the Layer 2 or Layer 3 forwarding decisions.
|
Ternary Content-addressable Memory / TCAM
|
|
|
A network device that isolates two physical LANs but forwards Ethernet frames between them.
|
Transparent Bridge
|
|
|
A network module or building block that contains a group of access layer switches, together with the pair of distribution switches that connect them.
|
Switch Block
|
|
|
In RSTP, the process by which two switches exchange a proposal-agreement handshake to make sure neither will introduce a bridging loop.
|
Synchronization
|
|
|
A message sent out the root port of a switch when it detects a port moving into the Forwarding state or back into the Blocking state. The TCN is sent toward the root bridge, where it is reflected and propagated to every other switch in the Layer 2 network.
|
Topology Change Notification / TCN
|
|
|
A perimeter in a network, formed by switches and routers, where QoS decisions take place. QoS information found inside incoming traffic is evaluated at the trust boundary; either it is trusted or it is not trusted. In the latter case, the QoS information can be altered or overridden. All devices inside the trust boundary can assume that QoS information is correct and trusted, such that the QoS information already conforms to enterprise policies.
|
Trust Boundary
|
|
|
A feature that enables a switch to confirm that a link is operating bidirectionally. If not, the port can be disabled automatically.
|
Unidirectional Link Detection / UDLD
|
|
|
An STP feature that enables access layer switches to unblock a redundant uplink when the primary root port fails.
|
UplinkFast
|
|
|
A logical network existing on one or more Layer 2 switches, forming a single broadcast domain.
|
Virtual LAN / VLAN
|
|
|
A unique index number given to a VLAN on a switch, differentiating it from other VLANs on the switch.
|
VLAN Number
|
|
|
The action taken by a switch when the destination MAC address cannot be found; the frame is flooded or replicated out all switch ports except the receiving port.
|
Unknown Unicast Flooding
|
|
|
A filter that can control traffic passing within a VLAN.
|
VLAN Access Control List / VACL
|
|
|
A malicious host sends specially crafted frames that contain extra, spoofed 802.1Q trunking tags into an access port, while the packet payloads appear on a totally different VLAN.
|
VLAN Hopping
|
|
|
A physical link that can carry traffic on more than one VLN through logical tagging.
|
VLAN Trunk
|
|
|
The VLAN used between a Cisco IP Phone and a Catalyst switch to carry voice traffic.
|
Voice VLAN
|
|
|
The router in a VRRP group that forwards traffic sent to the virtual gateway IP and MAC address.
|
VRRP Master Router
|
|
|
An index that indicates the current version of VLAN information used in the VTP domain; a higher number is more preferable.
|
VTP Configuration Revision Number
|
|
|
VTP reduces unnecessary flooded traffic by pruning or removing VLANs from a trunk link, only when there are no active hosts associated with the VLANs.
|
VTP Pruning
|
|
|
A router in a VRRP group that waits until the master router fails before taking over that role.
|
VRRP Backup Router
|
|
|
Used to communicate VLAN configuration information among a group of switches.
|
VLAN Trunking Protocol / VTP
|
|
|
A logical grouping of switches that share a common set of VLAN requirements.
|
VTP Domain
|
|
|
An unexpected VTP advertisement with a higher configuration revision number is received, overriding valid information in a VTP domain.
|
VTP Synchronization Problem
|
|
|
A Cisco device that provides management functions to lightweight access points and aggregate all traffic to and from the LAPs.
|
Wireless LAN Controller (WLC)
|
