Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
52 Cards in this Set
- Front
- Back
|
Define Cut-Through Switching, and when it is ideally used? |
Starts forwarding a frame before the whole frame has been received, normally as soon as the destination address has been processed. Ideally used when transmission delay is needed to be avoided and no priority is needed. |
|
|
Define store-and-forward switching, and when it is ideally used? |
Waits until the entire frame has arrived, checks destination and source, and CRC, if no errors then forwards the packet. Ideal when bad frames need to be discard, and prioritising of certain protocols. |
|
|
Define Symmetric switching |
Provides switched connection between all ports with the same bandwidth. |
|
|
Define Asymmetric switching |
Enables more bandwidth to be dedicated to one switch port to prevent bottle neck. |
|
|
Give 3 reasons why a single subnet is easier to manage |
Only need to configure one DHCP scope Some older protocols require all devices to be in a single subnet Only need to configure one firewall, especially when basing it on IP address rules. |
|
|
Are broadcasts transmitted across VLANs on the same switch? |
No, they still behave if they are physically seperated. |
|
|
How many VLANs can one physical switch be divided into? |
VLAN ID field is 12 bits, giving a maximum of 4096 VLANs. |
|
|
How VLANs can an access port belong too? |
Only one |
|
|
How many bytes is a Trunk Tag? |
Four |
|
|
What does Trunking do to a frame? |
Adds a tag that contains the VLAN ID, and is used to prioritise frames. |
|
|
When a single NIC has multiple subinterfaces configured using 802.1Q VLAN tags, does it require the VLANS be on the same IP Subnet? |
The VLANs can be on multiple different IP Subnets. |
|
|
What happens to untagged frames that are sent out on a trunk port and received on a trunk link? |
They are assumed to belong to the Native VLAN. |
|
|
What is the default Native VLAN on a trunk port? |
VLAN 1 |
|
|
What happens when 2 Cisco devices are connected and do not share the same native VLAN? |
"Native VLAN Mismatch" warning will show. |
|
|
Do you always a Crossover Cable to connect two switches? Explain your answer. |
No, modern equipment can use Auto Sensing to work with crossover or straight-through cables. |
|
|
How is a broadcast address at the physical layer written? |
All F's (FF:FF:FF:FF:FF:FF) |
|
|
What is latency a measure of? |
Latency is the measure of delay that information is subject to when transmitted. |
|
|
What do you use to connect VLANs? |
Routers |
|
|
Define: Half-duplex mode |
A port will either transmit or receive data cannot do both at the same time. |
|
|
Define: Full-duplex mode |
A port can transmit and receive data at the same time. |
|
|
How many broadcast and collision domains does a hub have? Explain your answer. |
1 Broadcast and 1 Collision domain. Packets are broadcast to all ports to hit the right destination, so all other ports cannot send at the same time or collision will occur. |
|
|
How may broadcast and collision domains does a switch have? Explain your answer. |
1 Collision domain for each port. 1 Broadcast domain per VLAN. If a switch receives a packet for MAC address not its ARP table, it will broadcast to all ports in the VLAN. |
|
|
How many broadcast and collision domains does a router have? |
1 Broadcast domain and 1 collision domain per port. |
|
|
What is fast forward switching? |
Packet if forwarded as soon as the destination MAC is known. |
|
|
What is fragment free switching? |
Waits until the minimum frame of 64 bytes has been received. |
|
|
How many VLANs can a Cisco ACCESS switchport be assigned to? |
Only assigned to 1 VLAN, but can by dynamically assigned. |
|
|
How many ports are needed to route all VLANs on a switch to the internet? |
One port needed, 802.1Q trunking can be used, traffic from all VLANs can be tagged with a VLAN ID. |
|
|
When two switches are connected together without VLANs, what two things will happen? |
Broadcasts will be forwarded between the switches. MAC addresses for all devices on one switch will appear in the MAC table of the other switch. |
|
|
Which layer does a Hub, a Switch and a Router operate on? |
Hub - Layer 1 (Physical layer) Switch - Layer 2 ( Data link layer) Router - Layer 3 ( Network Layer) |
|
|
True or False: Microsoft's DHCP service can be clustered? |
True |
|
|
Can two DHCP servers offering the same range of IP addresses check IP's have been leased already? |
They normally do not check so clashes can happen. |
|
|
How does Static NAT work? |
Maps a private IP address to a static public IP address without referencing ports. |
|
|
How does Dynamic NAT work? |
Private IP addresses are mapped to a pool of public IP addresses. Helps mask the internal configuration of a private network. |
|
|
How does RIP routing work? |
Uses hop count as a routing metric, the maximum hops allowed is 15. |
|
|
How does Link-State routing work? |
Every router will independently calculate the best next logical path from itself, to every other possible destination on the network. Sends routing information to other routers as soon as change happens. Requires more resources and overhead. |
|
|
How does Distance-Vector routing work? Name three types. |
Each router shares its routing table and topology changes with its neighbours periodically. Requires less resources and overhead. RIP, IGRP and Babel |
|
|
What does OSPF stand for, its type of routing protocol and how does it work? |
Open Shortest Path First Type of Link-state protocol Gathers information from other routers, constructs a topology of the network and passes it to the Internet layer. |
|
|
Which type of routing protocol is effected by the count-to-infinity problem? |
Distance Vector protocols. |
|
|
Define "Administrative distance" |
Which protocol to use if more than one protocol has provided route information. The reliability of the source of information about the route. |
|
|
Define Iterative DNS query |
Returns a referral to another DNS server. |
|
|
Define Authoritative DNS query |
The answer is retrieved directly from the DNS database |
|
|
Define DNS zone |
Refers to an administrative space within the global Domain Name System. Each zone represents a boundary of authority which is managed by an legal entity, such as a country code. |
|
|
What are entries in a DNS database known as? |
Resource Records |
|
|
What does CHAP (authentication) stand for? What does it protect against and how does it work? |
Challenge Handshake Authentication Protocol Protects against replay attacks Sends a challenge message, peer responds with a calculated hash, CHAP checks hash. At random intervals this is repeated. |
|
|
What kind of authentication is Keberos |
Certificate-based |
|
|
What does NTLM stand for, and what does it provide for authentication security? |
Adds unique information to the attempt, checks if the Nonce is its own, which helps prevent reflection attacks. |
|
|
How does Microsoft Active Directory use authentication? |
All machines in a domain trust each other as hold tickets signed by Domain Controllers, which are issued using Kerberos. |
|
|
How does double tagging work? |
Attacker adds trunk tags, first tag gets removed, when frame reaches switch, second tag is seen and forwards to the switch. |
|
|
How to mitigate double tagging? |
Keep the native VLAN of the trunk ports different. Authenticate trunks. |
|
|
What does OCSP and CRL stand for, and what are they? |
Online Certificate Status Protocol Certificate Revocation List
|
|
|
What happens when a station detect a collision? |
Ceases transmission, waits a random amount of time, then attempts to transmit again. |
|
|
What is a replay attack? |
An attacker snoops the password/hash and the attacker sends the hash providing access to the victims session. |
