多选题By default, each port in a Cisco Catalyst switch is assigned to VLAN1. Which two recommendations are key to avoid unauthorized management access?()ACreate an additional ACL to block the access to VLAN 1.BMove the management VLAN to something other than default.CMove all ports to another VLAN and deactivate the default VLAN.DLimit the access in the switch using port security configuration.EUse static VLAN in trunks and access ports to restrict connections.FShutdown all unused ports in the Catalyst switch.
多选题
By default, each port in a Cisco Catalyst switch is assigned to VLAN1. Which two recommendations are key to avoid unauthorized management access?()
A
Create an additional ACL to block the access to VLAN 1.
B
Move the management VLAN to something other than default.
C
Move all ports to another VLAN and deactivate the default VLAN.
D
Limit the access in the switch using port security configuration.
E
Use static VLAN in trunks and access ports to restrict connections.
F
Shutdown all unused ports in the Catalyst switch.
参考解析
解析:
暂无解析
相关考题:
As a network administrator, you issue the interface auto qos voip cisco-phone command on a port in an edge network. It is possible for a Cisco Catalyst switch to check if a Cisco IP Phone is directly attached to that port by:()A. using DHCP snoopingB. snooping the incoming 802.1Q VLAN tagC. using CDPD. snooping the CoS marking on the incoming frames
Assuming the default switch configuration,which approach should you use to configure the extended vlan range(1006 through 4094) on a cisco catalyst 3750 series switch?() A. Configure the switch to be in VTP client mode.B. Configure the switch to be in VTP domaint mode.C. Configure the switch to be in VTP transparent mode.D. Configure the switch to be in VTPv2.
After enabling port security on a Cisco Catalyst switch, what is the default action when the configuredmaximum of allowed MAC addresses value is exceeded?()A、The port’s violation mode is set to restrictB、The port is shut downC、The MAC address table is cleared and the new MAC address is entered into the tableD、The port remains enabled, but bandwidth is throttled until old MAC addresses are aged out
When you enter the interface command auto qos voip cisco-phone on a port at the edge of a network,how does the Cisco Catalyst switch detect if a Cisco IP Phone is connected to the port?()A、by snooping the CoS marking on the incoming framesB、by using RTP hello messages between the switch port and the Cisco IP PhoneC、by using CDPD、by using DHCP snoopingE、by snooping the incoming 802.1Q VLAN tag
While troubleshooting a connectivity problem, a network administrator notices that a port status LED on a Cisco Catalyst series switch is alternating green and amber. Which condition could this indicate?()A、The port is experiencing errors.B、The port is administratively disabled.C、The port is blocked by spanning tree.D、The port has an active link with normal traffic activity.
A new Catalyst switch is connected to an existing switch using a crossover cable. As a result of this, what would the switch port link lights display?()A、The switch port link lights will be off on both switches indicating the ports are not connected.B、The switch port link light will be off on one switch indicating that STP has disabled the port.C、The switch port link lights will flash amber indicating an error.D、The switch port link lights will be green indicating normal operation.
You examine the port statistics on a Cisco Catalyst switch and notice an excessive number offrames are being dropped. Which of the following are possible reasons for the drops?()A、Unknown destination MAC addressB、Bad cablingC、MAC forwarding table is fullD、Port configured for half duplexE、Port configured for full duplexF、Network congestion
What is the effect of applying the switchport trunk encapsulation dot1q command to a port on a Cisco Catalyst switch?()A、By default, native VLAN packets going out this port will be tagged.B、Without an encapsulation command, 802.1Q will be the default encapsulation if DTP fails to negotiate a trunking protocol.C、The interface will support the reception of tagged and untagged traffic.D、If the device connected to this port is not 802.1Q-enabled, it will not be able to handle 802.1Q packets.
Which statement correctly describes network security settings in Cisco Network Assistant for the Catalyst Express 500 Switch?()A、The LOW setting enables broadcast storm control, but has no effect on the number of devices that can connect to a switch portB、The LOW setting enables broadcast storm control and limits the number of devices that can connect to a switch port.C、The LOW setting disables broadcast storm control but limits the number of devices that can connect to a switch portD、The default network setting is "HIGH"
While troubleshooting a connectivity problem, a network administrator notices that a port status LED on a Cisco Catalyst series switch is alternating green and amber. Which condition could this indicate()。A、The port is experiencing errorsB、The port is administratively disabledC、The port is blocked by spanning treeD、The port has an active link with normal traffic activity
When configuring a routed port on a Cisco multilayer switch, which of these is a required configuration task that you must perform to enable that port to function as a routed port? ()A、Enable the switch to participate in routing updates from external devices with the router command in global configuration mode.B、Enter the no switchport command to disable Layer 2 functionality at the interface level.C、Each port participating in routing of Layer 3 packets must have an IP routing protocol assigned on aperinterface level.D、Routing is enabled by default on a multilayer switch, so the port can become a Layer 3 routing interface by assigning the appropriate IP address and subnet information.
Which of these commands can you use to show if an operational Catalyst switch port is set for autonegotiation of speed and duplex when running Cisco IOS software?()A、show port networkB、 show running-configC、show controllers Ethernet-controllerD、 show interfaces
Given a host with two NICs assigned to a N1k profile,which topologies are suitable for this type of configuration () port-profile type Ethernet name VM-Data vmware port-group switchport mode trunk switchport allowed vlan 400-410 channel-group auto mode active no shut state enabled A、 Cisco UCS fabric interconnectsB、 Pair of N5K’s in VPCC、 Standalone N5KD、 Pair of N5K’s in non-VPCE、 Cisco Catalyst 6000 Switch in VSS
As a network administrator, you issue the interface auto qos voip cisco-phone command on a port in an edge network. It is possible for a Cisco Catalyst switch to check if a Cisco IP Phone is directly attached to that port by:()A、using DHCP snoopingB、snooping the incoming 802.1Q VLAN tagC、using CDPD、snooping the CoS marking on the incoming frames
When configuring port security on a Cisco Catalyst switch port, what is the default action taken by the switch if a violation occurs? ()A、protect (drop packets with unknown source addresses)B、restrict (increment SecurityViolation counter)C、shut down (access or trunk port)D、transition (the access port to a trunking port)
You need to configure port security on switch R1. Which two statements are true about this technology? ()A、 Port security can be configured for ports supporting VoIP.B、 With port security configured, four MAC addresses are allowed by default.C、 The network administrator must manually enter the MAC address for each device in order for the switch to allow connectivity.D、Withsecurity configured, only one MAC addresses is allowed by default. E、 Port security cannot be configured for ports supporting VoIP.
By default, each port in a Cisco Catalyst switch is assigned to VLAN1. Which two recommendations are key to avoid unauthorized management access? ()A、Create an additional ACL to block the access to VLAN 1.B、Move the management VLAN to something other than default.C、Move all ports to another VLAN and deactivate the default VLAN.D、Limit the access in the switch using port security configuration.E、Use static VLAN in trunks and access ports to restrict connections.F、Shutdown all unused ports in the Catalyst switch.
单选题While troubleshooting a connectivity problem, a network administrator notices that a port status LED on a Cisco Catalyst series switch is alternating green and amber. Which condition could this indicate?()AThe port is experiencing errors.BThe port is administratively disabled.CThe port is blocked by spanning tree.DThe port has an active link with normal traffic activity.
单选题When configuring a routed port on a Cisco multilayer switch, which of these is a required configuration task that you must perform to enable that port to function as a routed port? ()AEnable the switch to participate in routing updates from external devices with the router command in global configuration mode.BEnter the no switchport command to disable Layer 2 functionality at the interface level.CEach port participating in routing of Layer 3 packets must have an IP routing protocol assigned on aperinterface level.DRouting is enabled by default on a multilayer switch, so the port can become a Layer 3 routing interface by assigning the appropriate IP address and subnet information.
单选题Which of these commands can you use to show if an operational Catalyst switch port is set for autonegotiation of speed and duplex when running Cisco IOS software?()Ashow port networkB show running-configCshow controllers Ethernet-controllerD show interfaces
单选题Which MST configuration statement is correct? ()A MST configurations can be propagated to other switches using VTP.B After MST is configured on a Switch, PVST+ operations will also be enabled by default.C MST configurations must be manually configured on each switch within the MST region.D MST configurations only need to be manually configured on the Root Bridge.E MST configurations are entered using the VLAN Database mode on Cisco Catalyst switches.
单选题Assuming the default switch configuration,which approach should you use to configure the extended vlan range(1006 through 4094) on a cisco catalyst 3750 series switch?()AConfigure the switch to be in VTP client mode.BConfigure the switch to be in VTP domaint mode.CConfigure the switch to be in VTP transparent mode.DConfigure the switch to be in VTPv2.
单选题When you enter the interface command auto qos voip cisco-phone on a port at the edge of a network, how does the Cisco Catalyst switch detect if a Cisco IP Phone is connected to the port? ()Aby snooping the CoS marking on the incoming framesBby using RTP hello messages between the switch port and the Cisco IP PhoneCby using CDPDby using DHCP snoopingEby snooping the incoming 802.1Q VLAN tag
单选题After enabling port security on a Cisco Catalyst switch, what is the default action when the configuredmaximum of allowed MAC addresses value is exceeded?()AThe port’s violation mode is set to restrictBThe port is shut downCThe MAC address table is cleared and the new MAC address is entered into the tableDThe port remains enabled, but bandwidth is throttled until old MAC addresses are aged out
单选题While troubleshooting a connectivity problem, a network administrator notices that a port status LED on a Cisco Catalyst series switch is alternating green and amber. Which condition could this indicate()。AThe port is experiencing errorsBThe port is administratively disabledCThe port is blocked by spanning treeDThe port has an active link with normal traffic activity
单选题Which statement correctly describes network security settings in Cisco Network Assistant for the Catalyst Express 500 Switch?()AThe LOW setting enables broadcast storm control, but has no effect on the number of devices that can connect to a switch portBThe LOW setting enables broadcast storm control and limits the number of devices that can connect to a switch port.CThe LOW setting disables broadcast storm control but limits the number of devices that can connect to a switch portDThe default network setting is HIGH
单选题What is the effect of applying the switchport trunk encapsulation dot1q command to a port on a Cisco Catalyst switch?()ABy default, native VLAN packets going out this port will be tagged.BWithout an encapsulation command, 802.1Q will be the default encapsulation if DTP fails to negotiate a trunking protocol.CThe interface will support the reception of tagged and untagged traffic.DIf the device connected to this port is not 802.1Q-enabled, it will not be able to handle 802.1Q packets.