最新CCNA 640-802[lab集2011]

合集下载

有关网络专业的各类认证考

HCDA华为认证数据通信工程师
HCDA（Huawei Certified Datacom Associate，华为认证数据通信工程师）提供网络技能初级认证，主要面向IP网络维护工程师、转岗工程师、新入职工程师以及其他希望学习IP网络知识的人士。
HCDP华为认证数据通信资深工程师
HCDP（Huawei Certified Datacom Professional，华为认证数据通信资深工程师）提供网络技能中级认证，主要面向IP网络调测工程师、IP网络运维工程师、IP网络设计工程师以及希望系统深入地掌握路由交换接入以及IP承载网技术的人士。HCDP包括BCRN（Building Carrier Routing Network，构建电信级路由网络）、BCAN（Building Carrier Access Network构建电信级接入网络）、BITN（Building IP Telecom Network，构建IP电信网络）三个部分。
锐捷认证资深调试工程师（RCCP）：网络工程领域的中级认证。获得RCCP资格的人员具备丰富的网络知识和实践操作技能，能够熟练的配置和调试多种网络设备。具有RCCP认证的工程师能够设计和构建超过100个节点的大中型园区网络。
锐捷认证资深网络工程师（RCNP）：网络工程领域的高级认证。获得RCNP认证的人员能够驾驭路由器、交换机、WLAN等产品，熟练的对其各种功能和特性进行配置和调试，并在网络中部署高级的路由选择协议和各种安全特性、冗余机制、优化技术等。具有RCNP认证的工程师能够设计和构建超过500个节点的大中型园区网络。
3、锐捷通用技术认证体系
锐捷在通用技术认证中的网络工程方向提供了五个认证等级，它们所代表的专业水平逐级提升：网络经管员、网络工程师、调试工程师、资深网络工程师和互联网专家：

CCNA考试的常见实验内容

CCNA考试的常见实验内容根据思科官方ICND考试大纲分析，CCNA实验考试所涉及的内容如下：1、路由器的基本命令 Router Basic Commands2、路由器的基本配置及 CDPRouter Basic Configuration &CDP3、路由协议（RIP & EGRP）Routing Protocol （RIP & IGRP）4、访问控制列表实验 Access Control List5、帧中继 Frame Relay6、局域网交换机的配置 Basic Configuration of Switch7、虚拟局域网（VLAN）的配置 Configuring VLAN而以上的内容在实际考试中并不是都会以实验模拟题的形式出现。

根据来自考场的报告，最常见的几种实验内容分布在以下三点：1、路由器的基本命令 Router Basic Commands 中的路由检查，端口及协议查看。

2、路由器的基本配置 Router Basic Configuration 中的主机名，IP地址及子网掩码，接口IP地址配置，相关密码设置及破解。

3、路由协议（RIP & EGRP） Routing Protocol （RIP & IGRP）中的RIP启用及相关设置。

CCNA 640-801（变化程度：30%）1、去掉IPX配置及OSI参考模型，Novell网的内容已经完全从思科的考试中绝迹了。

CCIE、CCNP都已放弃IPX/SPX内容，现在CCNA考试也完全放弃，IPX/SPX的应用范围会越来越窄。

2、广域网仍然不是CCNA的重点。

640-810和老版本一样，还是包含帧中继、点对点连接和ISDN，在ISDN中引入了PRI。

3、协议中增加EIGRP、OSPF协议，但也基本上是概念，没有考到实际配置。

重点依然是RIP协议。

4、增加NAT和PAT，教材内容更加实用化。

CCNA考试命令集总结CNAP （Cisco网络技术学校院教程）第三、四学期(第二版)第1章OSI参考模型和路由1.5.8 IP路由先择配置任务1、IP地址配置Router# term ip <netmask-format>Router(config-if)# term ip <netmask-format>2、动态路由选择配置Router(config)# router <rip | igrp | eigrp | ospf>Router(config-router)# network <network-number>3、RIPRouter(config)# router rip第2章局域网交换2.5 生成树协议Router# show spantree第5章路由先择协议：IGRP5.6 了解IGRP的有关*作5.6.2 创建IGRP路由选择过程Router(config)# router igrp <autonomous-system>Router(config-router)# network <network-number>Router(config)# no router igrp <autonomous-system>5.6.3 提高IGRP的稳定性Router(config-router)# timers basic <更改的igrp发送更新消息的时间间隔> <过期时间，常为3倍于更新时间> <过期后保留的最短时间，常设为0> <过期后保留的最长时间，常4倍或多或5倍于更新时间> （例：Router(config-router)# timers basic 15 45 0 60，其默认的设置为Router(config-router)# timers basic 90 270 0 450）Router(config-router)# no metric holddown(注：使用holddown命令，可以使旧的路由被去除后，新增加的路由立即生效)5.6.6 最大跳数Router(config-router)# metric maximum-hop <最大跳数值0~255，默认为100）第6章访问控制列表6.3 ACL配置任务Router(config)# access-list <access-list-number> {permit | deny} <test-conditions>Router(config-if)# {ip | ipx} access-group <access-list-number>6.3.2 为每一个ACL分配唯一的表号协议及其所允许的ACL表号的取值范围协议 ACL表号的取值范围IP（Internet协议） 1~99Extended IP（扩展Internet协议） 100~199AppleTalk 600-699IPX（互联网数据包交换） 800~899Extended IPX（扩展互联网数据包交换） 900~999IPX Service Advertising Protocol（IPX服务通告协议） 1000~1099Router(config)# no access-list <access-list-number>6.3.4 如何使用通配符anyRouter(config)# access-list <access-list-number> {permit | deny} any等同于：Router(config)# access-list <access-list-number> {permit | deny} 0.0.0.0 255.255.255.2556.3.5 如何使用通配符hostRouter(config)# access-list <access-list-number> {permit | deny} host <ip-address>(注：host <ip address>等同于<ip-address> 0.0.0.0)6.4 标准访问控制列表6.4.1 标准ACL的有关例子Router(config)# access-list <access-list-number> {permit | deny} <source> [source-wildcard] [log] Router(config)# no access-list <access-list-number>Router(config-if)# ip access-group <access-list-number> [in | out](注：如果in和out都没有指定，那么缺省地被认为是out)Router(config-if)# no ip access-group <access-list-number> [in | out]Router# show access-list6.4.2 标准ACL例子1：允许一个源的通信流量通过Router(config)# access-list <access-list-number> permit <source> [source-wildcard] (注：末尾一句access-list <access-list-number> deny 0.0.0.0 255.255.255.255通常省略不写) Router(config)# interface <接口号>Router(config-if)# ip access-group <access-list-number> out6.4.3 标准ACL例子2：拒绝一个特定主机的通信流量通过Router(config)# access-list <access-list-number> deny host <ip-address>Router(config)# access-list <access-list-number> permit 0.0.0.0 255.255.255.255Router(config)# interface <接口号>Router(config-if)# ip access-group <access-list-number> out6.4.4 标准ACL例子3：拒绝一个特定子网的通信流量Router(config)# access-list <access-list-number> deny <子网号> <通配符掩码>Router(config)# access-list <access-list-number> permit anyRouter(config)# interface <接口号>Router(config-if)# ip access-group <access-list-number> out6.5 扩展访问控制列表6.5.1 扩展ACL的有关例子Router(config)# access-list <access-list-number> {permit | deny} <protocol> <source> [source-mask <destination> destination-mask] [operator operand] [established] [log] (注：operator operand中分为lt---小于、gt---大于、eq---等于、neq---不等于和一个端口号) Router(config-if)# ip access-group <access-list-number> [in | out]6.5.2 扩展ACL例子1：拒绝FTP通信流量通过E0Router(config)# access-list <access-list-number> deny tcp {<source> <source-mask>}{<destination> <destination-mask>} eq {21 | ftp}Router(config)# access-list <access-list-number> permit ip {<source> <source-mask>}{<destination> <destination-mask>}Router(config)# interface <接口号>Router(config-if)# ip access-group <access-list-number>6.5.2 扩展ACL例子2：只拒绝通过E0通信流量Router(config)# access-list <access-list-number> deny tcp {<source> <source-mask>} any eq {23 | smtp}Router(config)# access-list <access-list-number> permit ip any anyRouter(config)# access-list <access-list-number> deny ipRouter(config)# interface <接口号>Router(config-if)# ip access-group <access-list-number> out6.6 使用命名访问控制列表Router(config)# ip access-list {standard | extended} <name>Router(config {std- | ext-}nacl)# {deny | permit} <source> [source-mask <destination> destination-mask] [log]Router(config)# interface <接口号>Router(config-if)# ip access-group <access-list-number> out6.9 验证访问控制列表Router# show access-listsRouter> show ip interfaceRouter# show ip interface第7章 Novell IPX7.3 IPX概述Router# telnet <ipx地址>Router-A# show protocolsRouter-A# show ipx interface [[Ethernet | serial | asynchronous | dialer | Token Ring | FDDI | null | loopback | tunnel] <unit>]7.4 Novell封装7.4.1 Cisco封装的命名情况Novell与Cisco封装的命名对比Novell IPX的命名 Cisco IOS的命名Ethernet_802.3 Novell-etherEthernet_802.2 sapToken-RingFDDI_802.2Ethernet _SNAP snapToken-Ring _SNAPFDDI_SNAPEthernet _II arpaFDDI _RAW Novell _fddi7.5 使用RIP进行Novell路由选择Router(config)# ipx routing或Router(config)# ipx routing [node](注：对于串口必须指定node，node是一具48位的MAC，用4个点分十六进制的数：xxxx . xxxx . xxxx) Router(config-router)# ipx maximum-paths <paths>(注：开启负载均分的线路数1~512，缺省为1)Router(config)# no ipx routingRouter(config)# ipx route eigrpRouter(config-router)# ipx network {network-number | all}7.6 服务通告协议（SAP）Number Sap Service4 NetWare文件服务器7 打印服务器24 远程桥接服务器（路由器）7.8 Novell IPX配置任务7.8.1 Novell IPX全局配置Router(config)# ipx routingRouter(config-router)# ipx maximum-paths <1~512>(注：开启负载均分的线路数1~512，缺省为1)7.8.2 给接口分配IPX网络号命令命令描述Ipx routing [node] 为IPX选择路由选择，并开始启动IPX RIPIpx maximum-paths <1~512> 允许通往目的地的计量标准值相等的几条并行路径采用负载均分，并行路径的最大数目被限制一个指定的范围之内Interface Ethernet <接口号 | 子接口号> 表示要进入接口或子接口，进行相应的配置Encapsulation <与novell相对协议> 可选择的协议有：Novell-ether、sap、snap、arpa、Novell _fddi Ipx network <network-number | all> 分配给接口或子接口一个网络号7.8.3 验证IPX*作IPX监视命令命令描述Show ipx interface 显示IPX状态和有关参数Show ipx route 显示路由选择表内容Show ipx servers 显示IPX服务器列表Show ipx traffic 显示数据包的数量和类型IPX故障检修命令命令描述Debug ipx routing activity 有关RIP消息更新数据包的信息Debut ipx sap 有关SAP消息更新数据包的信息Ping 显示有关一个特定节点能否响应网球请求的有关信息7.9 监视IPX接口状态Router# show ipx interface <接口类型> <接口号>Router(config)# ipx delay <number>(注：手动修改一个接口的tick延时，默认的LAN为1 tick， WAN为6 tick)Router# show ipx interface 07.9.2 监视IPX路由选择表Router# show ipx route7.9.2 监视Novell IPX服务器Router# show ip servers [ sorted {name | net | type}(注：显示的排序方式，net是指按网络号，type为默认的按类型排序) 7.9.4 监视IPX通信流量Router# show ipx traffic7.9.5 ipx路由选择的故障检修Router# debug ipx routing activity7.9.6 IPX SAP的故障检修Router# debug ipx sapSAP的响应描述0x1 普通查询0x2 普通响应0x3 GNS（接通最近服务器）查询0x4 GNS（接通最近服务器）响应7.9.8 特权IPX ping命令Router# ping [ipx <network .node | host>]字符定义！每一个惊叹号表示从目的地址成功的接收一个应答. 表示网络服务器在等待从目的地址接收应答时间的超时U 接收到了一个目的地不可到达错误的PDU（协议数据单元）C 接收到了一个经历了拥塞的数据包I 用户终端测试不知道的数据包类型& 超过寿命的数据包中断 Ctrl + Shift + 6 + X 或 Ctrl + Shift + XRouter# ping（注：为特权下ping的扩展）第11章 PPP11.3 PPP会话的建立过程Router# show interface(注：可以用来检查LCP和NCP的状态)Router(config-if)# encapsulation ppp11.4 PPP验证Router# username <远端路由器名> password <与远端相同的口令>Router# configure terminalRouter(config)# interface <要配置的接口>Router(config-if)# encapsulation pppRouter(config-if)# ppp authentication {chap | chap pap | pap chap |pap}3/*在Cisco IOS 11.1或更高的版本中，PAP默认下不再被使用，如要使用需作以下配置*/Router(config-if)# ppp pap sent-username <username> password <password>11.4.2 配置CHAP验证Router(config-if)# ppp chap hostname <hostname>(注：此用于多对一的连接，并要求所有路由器用同一个名字)Router(config-if)# ppp chap password <secret>(注：只用密码验证的方法用于路由器向验证主机发送，对于端对端的路由则不能使用)第12章ISDN12.7 ISDN配置任务说明：1、对于TE1线路，用BRI接口2、对于TE2线路，可用“BRI接口”+“外接的ISDN终端适配器”，也可用“SERIAL接口”。

CCNA题库V104.2 补充新题 64Q(题库改版后新题目)

学网络技术去鸿鹄论坛命运的改变从技术开始鸿鹄团队致力于为每一位网络技术爱好者提供帮助有事您发帖，斑竹为您跑腿，给您答疑。

CCNA题库战报交流群：82327397欢迎备考CCNA的朋友加入，一起讨论交流，通过CCNA考试！CCNA最新题库/最新战报发布区：/forum-261-1.htmlCCNA考试代号：640-802考试时间：中文110分钟英文110+30=140分钟通过分数：825题库版本：V104.2Exam AQUESTION 1Which two commands correctly verify whether port security has been configured on port FastEthernet 0/12on a switch?(choose two)A.SW1#show swithport port-security interface FastEthernet 0/12B.SW1# show swithport port-secure interface FastEthernet 0/12C.SW1# show port-secure interface FastEthernet 0/12D.SW1#show running-configAnswer: CDQUESTION 2Which component of VPN technology ensures that data can be read only by its intended recipient?A.data integrity B.encryption C.key exchange D.authenticationAnswer: DQUESTION 3Refer to the exhibit.What is the effect of the configuration that is shown?A.It tells the router or switch to try establish an SSH connection first and if that fail to use telnet.B.Itconfigures a cisco network device to use the SSH protocol on incoming communications via the virtualterminal ports.C.It allows seven failed login attempts before the VTY lines are temporarily shutdown.D.It configures the virtual terminal lines with the password 030752180500.E.It configures SSH globally for all logins.Answer: BQUESTION 4Which IPV6 routing protocol uses multicast group FFO2::8 to send updates?A.RIPng B.OSPFv3C.IS-IS for IPv6D.staticAnswer: Cb b s .h h 010.co mWhich of the following are true regarding the debug output shown in the graphic?(choose two)A.This router was configured with the commands:RtrA(config)#router ripRtrA(config-router)#version 2RtrA(config-router)#network 172.16.0.0RtrA(config-router)#network 10.0.0.0B.This router was configured with the commands:RtrA(config)#router ripRtrA(config-router)#network 172.16.0.0RtrA(config-router)#network 10.0.0.0C.etwork 10.0.0.0 will be displayed in the routing table.work 192.168.168.0 will be displayed in the routing table.E.This router was configured with the commands:RtrA(config)#router ripRtrA(config-router)#network 192.168.1.0RtrA(config-router)#network 10.0.0.0RtrA(config-router)#network 192.168.168.0F.split-horizon was disabled on this router.Answer: BCQUESTION 6The network administrator is asked to configure 113 point-to-point links.Which IP addressing scheme best defines the address range and subnet mask that meet the requirement and waste the fewest subnet and host addresses?A.10.10.0.0/18 subnetted with mask 255.255.255.252B.10.10.0.0/25 subnetted with mask 255.255.255.252C.10.10.0.0/24 subnetted with mask 255.255.255.252D.10.10.0.0/23 subnetted with mask 255.255.255.252E.10.10.0.0/16 subnetted with mask 255.255.255.252Answer: Db b s .h h 010.co mVLAN 3 is not yet configured on your switch.What happens if you set the switchport access vlan 3commmand interface configuration mode?A.The command is accepted and the respective VLAN is added to vlan dat.B.The command is rejected.C.The command is accepted and you must configure the VLAN manually.D.The port turns amber.Answer: AQUESTION 8Which parameter can be tuned to affect the selection of a static route as a backup.when a dynamic protocol is also being used?A.link bandwidth B.hop count C.link costD.administrative distanceE.link delayAnswer: DQUESTION 9Refer to the exhibit. In the Frame Relay network, which ip address would be assigned to the interfaces with point-to-poin PVCs?A.DLCI 16:192.168.10.1/24DLCI 17:192.168.10.2/24DLCI 99:192.168.10.3/24DLCI 28:192.168.10.4/24b b s .h h 010.co mB.DLCI 16:192.168.10.1/24DLCI 17:192.168.11.1/24DLCI 99:192.168.10.2/24DLCI 28:192.168.11.2/24C.DLCI 16:192.168.10.1/24DLCI 17:192.168.11.1/24DLCI 99:192.168.12.1/24DLCI 28:192.168.13.1/24D.DLCI 16:192.168.10.1/24DLCI 17:192.168.10.1/24DLCI 99:192.168.10.2/24DLCI 28:192.168.10.3/24Answer: BQUESTION 10Why will a switch never learn a broadcast address?A.Broadcast frames are never sent to swiches.B.Broadcast addresses use an incorrect format for the switching table.C. A broadcast address will never be the source address of a frame.D.Broadcasts only use network layer addressing.E.A broadcast frame is never forwarded by a switch.Answer: CQUESTION 11Wich command can you use to manually assign a static IPV6 address to a muter interface?A.ipv6 address PREFIX_1::1/64B.ipv6 autoconfig 2001:db8:2222:7272::72/64C.ipv6 autoconfigD.ipv6 address 2001:db8:2222:7272::72/64Answer: DQUESTION 12The EIGRP configuration in the Glencoe router uses a single network statement.From the output shown in the graph would advertise these networks in EIGRP?b b s .h h 010.co mwork 172.26.168.0 area 478work 172.26.0.0work 172.26.168.128 0.0.0.127work 172.26.168.128 area 478Answer: BQUESTION 13Which IPsec security protocol should be used when confidentiality is required?A.AH B.MD5C.PSK D.ESPAnswer: DQUESTION 14What is the function of the command switchport trunk native vlan 999 on a…(此处文字不清楚).?A.It designates VLAN 999 for untagged traffic.B.It blocks VLAN 999 traffic from passing on the trunk.C.It creates a VLAN 999 interface.D.It designates VLAN 999 as the default for all unkown tagged traffic.Answer: DQUESTION 15Which command can be used from a PC to verfy the connectivity between host that connect thro…(字体不清)…?A.tracert address B.ping address C.arp addressD.traceroute addressAnswer: AQUESTION 16In which solution is a router ACL used?A.protecting a server frome unauthorized accesB.controlling path selection,based on the route metricC.reducing router CPU utilizationD.filterring packets that are passing through a routerAnswer: DQUESTION 17Which statement is true, as relates to classful or classless routing?b b s .h h 010.co mA.RIPV1 and OSPF are classless routing protocols.B.Classful routing protocols send the subnet mask in routing updates.C.Automatic summarization at classful boundaries can cause problems on disc……D.EIGRP and OSPF are classful routing protocols and summarize routes by def……Answer: CQUESTION 18A router has two FastEthernet interfaces and needs to connect to four vlans in the local network.How can you accomplish this task,using the fewest physical interfaces and without decreasing network performance?A.Add two more FastEthernet interfaces.B.Add a second router to handle the vlan traffic.e a hub to connect the four vlans with a FastEthernet interface on router.D.Implement a router-on-a-stick configuration.Answer: DQUESTION 19Refer to the exhibit.How many broadcast domains are configured on switch2?A.5B.20C.4D.1Answer: CQUESTION 20What is the effect of using the service password-encryption command?A.nly passwords configured after the command has been entered will be encrypted.B.Only the enable password will be encrypted.C.Only the enable secret password will be encryptedD.It will encrypt the secret password and remove the enable secret password from the configuration.E.It will encrypt all current and future passwords.Answer: Eb b s .h h 010.co mQUESTION 21Refer to the exhibit.A technician has installed SwithchB and needs to configure it for remote access from the management workstation connected SwitchA Which set of commands is required to accomplish this task?A.SwitchB(config)#interface FastEthernet 0/1SwitchB(config)#ip address 192.168.8.252 255.255.255.0SwitchB(config)#no shutdownB.SwitchB(config)#ip default-gateway 192.168.8.254SwitchB(config)#interface vlan 1SwitchB(config)#ip address 192.168.8.252 255.255.255.0SwitchB(config)#no shutdown C.SwitchB(config)#interface vlan 1SwitchB(config)#ip address 192.168.8.252 255.255.255.0SwitchB(config)#ip default-gateway 192.168.8.254 255.255.255.0SwitchB(config)#no shutdownD.SwitchB(config)#ip default-network 192.168.8.254SwitchB(config)#interface vlan 1SwitchB(config)#ip address 192.168.8.252 255.255.255.0SwitchB(config)#no shutdownAnswer: BQUESTION 22Refer to the exhibit.The speed of all serial links is E1 and the speed of the all Ethernet links is 100Mb/s.A static route will be established on the Manchester router to the direct traffic toward the internet over the most direct path available.What configuration on the Manchester router will establish a router toward the internet for traffic that originates from workstation on the Manchester LAN?b b s .h h 010.co mA.ip route 0.0.0.0 255.255.255.0 172.16.100.2B.ip route 0.0.0.0 255.255.255.252 128.107.1.1C.ip route 0.0.0.0 0.0.0.0 128.107.1.1D.ip route 0.0.0.0 0.0.0.0 172.16.100.1E.ip route 0.0.0.0 255.255.255.255 172.16.100.2F.ip route 0.0.0.0 0.0.0.0 172.16.100.2Answer: FQUESTION 23What Frame Relay mechanism is used to build the map illustrated in the accompanying graphic?A.inverse multiplexingB.LMI mapingC.Inverse ARPD.ARPE.Proxy ARPAnswer: CQUESTION 24Refer to the exhibit.A network engineer is troubleshooting an internet connectivity problem on the computer.What is causing the problem?b b s .h h 010.co mA.wrong DNS serverB.wrong default gatewayC.incorrect IP addressD.incorrect subnet maskAnswer: CQUESTION 25How many broadcast domains are shown in the graphic assuming only the default vlan is configured on the switches?b b s .h h 010.co mA.oneB.sixC.twelveD.twoAnswer: AQUESTION 26How dose a DHCP server dynamically assign IP address to host?A.Addresses are allocated after a negotiation between the server and the host to determine the length ofthe agreement.B.Addresses are assigned for a fixed period of time.At the end of period,a newquest for an address mustbe made ,and another address is then assigned.C.Addresses are leased to host.A host will usually keep the same address by periodically contacting theDHCP sever to renew the lease.D.Addresses are permanently assigned so that the host uses the same address at all times.Answer: CQUESTION 27Which type of EIGRP route entry describes a feasible successor?A. a primary route,stored in the routing table B. a backup route,stored in the routing table C. a backup route,stored in the topology table D.a primary route,stored in the topology tableAnswer: CQUESTION 28What is the purpose of the inverse ARP?A.to map a known DLCI to an IP addressB.to map a known IP address to a MAC addressC.to map known SPID to a MACaddressD.to map a known DLCI to a MAC addressE.to map a known IP address to a SPID.F.to map a known MAC address to an IP addressAnswer: AQUESTION 29What is the default maximum number of equal-cost paths that can be placed into the routing of a cisco OSPF router?A.16B.2C.unlimitedD.4Answer: Db b s .h h 010.co mQUESTION 30Which IPV6 routing protocol uses multicast group FF02::9 to send updates?A.RIPng B.OSPFv3C.staticD.IS-IS for IPv6Answer: AQUESTION 31What are two benefits of using NAT?(choose two)A.NAT protects network security because private networks are not advertised.B.NAT accelerates the routing process because no modifications are made on the packets.C.Dynamic NAT facilitates connections from the outside of the network.D.NAT facilitates end-to-end communication when IPsec is enable.E.NAT eliminates the need to re-address all host that require extemal access.F.NAT conserves addresses through host MAC-level multiplexing.Answer: AEQUESTION 32Which three statements about RSTP are true?(choose three)A.RSTP significantly reduces topology reconverging time after a link failure.B.RSTP expends the STP port roles by adding the alternate and backup roles.C.RSTP port atates are blocking,discarding,learing,or forwarding.D.RSTP also uses the STP proprsal-agreement sequence.E.RSTP use the same timer-baseed process as STP on point-to-point links.F.RSTP provides a faster transition to the forwarding state on point-to-point links than STP does.Answer: ABFQUESTION 33Refer to the exhibit.The serial0/0 interface of the Tampa router connects the Oriando router.Which two statements are true about the connection between these two routers?(choose two)b b s .h h 010.co mA.The only device with which the Tampa router will negotiate a data link is the Orlando router.B.The link is addressed on the *zero*subnet 10.0.0.0 network.C.The link uses a three-way handshake for authentication.D.The link uses a two-way handshake for authentication.E.Data exchanges between the Oriando and Tampa routers are encrypted.Answer: BCQUESTION 34A switch is configured as a vtp sever with a domain name of CCNA.Which cisco ios privileged modecommand,followed by a reload of the swith,will reset the VTP management domain name of the switch to a NULL value?A.#vtp domain unset B.#delete vlan.dat C.#no vtp domain D.#vtp domain nullAnswer: BQUESTION 35If an Ethernet port on a router was assigned an IP address of 172.1.1.1/20,what is the maximum number of hosts allowed on this subnet?A.4094B.1024C.8190D.2046b b s .h h 010.co mE.4096Answer: AQUESTION 36Which two statements about static NAT translations are true?(choose two)A.They are always present in the NAT table.B.They allow connection to be initiated from the outside.C.They can be configured with access lists, to allow two or more connections to be initiated from theoutside.D.They require no inside or outside interface markings because addresses are statically defined.Answer: ABQUESTION 37Which of these represents an IPv6 link-local address?A.FE08::280e:611:a:f14f:3d69B.FE81::280f:512b:e14f:3d69C.FE80::380e:611a:e14f:3d69D.FEFE:0345:5f1b::e14d:3d69Answer: CQUESTION 38What are three features of the IPV6 protocol?(choose three)plicated header B.plug-and-play C.no broadcasts D.checksums E.optional IPsec F.autoconfigurationAnswer: BCFQUESTION 39Assuming default setting,how can you erase the VTP database of VLANs on a CISCO IOS switch running in VTP server mode?A.Enable VTP pruningB.From privileged mode ,erase the startup configuration file,then reload.C.From privileged mode ,erase the vlan date file, then reload.D.Cycle the switch power.Answer: CQUESTION 40Refer to the exhibit.which address and mask combination a summary of the routes learned by EIGRP?b b s .h h 010.co mA.192.168.25.0 255.255.255.240B.192.168.25.16 255.255.255.252C.192.168.25.0 255.255.255.252D.192.168.25.28 255.255.255.240E.192.168.25.16 255.255.255.240F.192.168.25.28 255.255.255.240Answer: EQUESTION 41Refer to the exhibit A frame on vlan 1on switch s1 is sent to switch s2 when the frame is received on vlan 2,what causes this behavior?A.trunk mode mismatchesb b s .h h 010.co mB.vlans that do not correspond to a unique IP subnetC.native vlan mismatchesD.allowing only vlan 2 on the destination.Answer: CQUESTION 42Refer to the exhibit.The network administrator normally establishes a telnet session with the switch from host A.However,host A is unavailable.The administrator ′s attempt to the switch from host B fails,but pings to the other two hosts are successful.what is the issue?A.Host B and the switch need to be in the same subnet.B.The switch needs and appropriate default gateway assigned.C.The switch interface connected to the router is down.D.Host B need to be assigned an IP address in vlan 1.Answer: BQUESTION 43What value is primarily used to determine which port becomes the root port on each nonroot switch in a spanning-tree topology?A.lowest port MAC addressB.port priority number and MAC address.C.VTP revision numberD.highest port priority number.E.path costAnswer: EQUESTION 44Refer to the exhibit.Router 1 was just successfully rebooted.identify the current OSPF router ID for Router 1.b b s .h h 010.co mA.208.149.23.194B.220.173.149.10C.208.149.23.162D.190.172.32.10Answer: AQUESTION 45Why do large OSPF networks use a hierarchical design?(choose three)A.to confine network instability to single areas of the network.B.to reduce the complexity of router configuration C.to speed up convergenceD.to lower costs by replacing routers with distribution layer switchesE.to decrease latency by increasing bandwidthF.to reduce routing overheadAnswer: ACFQUESTION 46A network administrator receives an error message while tring to configure the Ethernet interface of a router with IP address 10.24.24.24/29.which statement explains the reason for this issue?A.The address is a broadcast address B.The Ehernet interface is faultyC.VLSM-capable routing protocols must be enable first on the router.D.This address is a network address.Answer: DQUESTION 47Which two are advantages of static routing when compared to dynamic routing?(choose two)A.Security increases because only the network administrator may change the routing tables.B.Configuration complexity decreases as network size increases.C.Routing updates are automatically sent to neighbors.D.Route summarization iscompued automatically by the router.E.Routing traffic load is reduced when used in stub network linksF.An efficient algorithm is used to build routing tables,using automatic updates.G.Routing tables adapt automatically to topology changes.b b s .h h 010.co mAnswer: AEQUESTION 48A company has a small network,consisting of a single switch and a single router.The switch has been configured with two vlans,and route-on-a-stick is being configured on the router for inter-vlan routing.A trunk is configured to connect the switch to the router.What is the minimum number of router subinterfaces that are required for all the vlans to communicate?A.one B.three C.two D.zeroAnswer: CQUESTION 49Which command can be a router to verify the layer 3 path to a host?A.traceroute address B.tracert address C.ssh address D.telnet addressAnswer: AQUESTION 50Which dose the frame-relay interface-dlc i command configure?A.remote DLCI on the main interface B.local DLCI on the main interface C.local DLCI on the subinterface D.remote DLCI on the subinterfaceAnswer: CQUESTION 51What is the OSPF default frequency,in seconds,at which a cisco router sends hello packets on a multi-access network?A.10B.40C.30D.20Answer: AQUESTION 52Refer to the exhibt.Host A has tested connectivity to a remote network.What is the default gateway for host A?b b s .h h 010.co mA.172.16.182.1B.192.168.1.1C.10.16.176.1D.192.168.1.6Answer: AQUESTION 53Which commands is necessary to permit SSH or Telnet access to a cisco switch that is otherwise configured for these vty line protocols?A.transport type allB.transport output allC.transport preferred allD.transport input allAnswer: DQUESTION 54Which command shows your active Telnet connections?A.show sessionB.show cdp neighborsC.show usersD.show queueAnswer: AQUESTION 55Which two states are the port states when RSTP has converged?(choose two)A.blocking B.learning C.disabled D.forwarding E.listeningAnswer: ADb b s .h h 010.co mQUESTION 56There are no boot system commands in a router configuration in NVRAM.What is the fallback sequence that router will use to find an ios during reload?A.Flash,TFTP server,ROM B.Flash,NVRAM,ROMC.ROM,NVRAM,TFTP serverD.NVRAM,TFTP server,ROME.TFTP server,Flash,NVRAMAnswer: A QUESTION 57Refer to the graphic.A host is connected to switch port Fa0/3 with a crossover cable.The host and switch have…as shown.However,the port indicator on switch port Fa0/3 is not on,and the host can notcommunicate with…to vlan 2 on the same switch.Based on the information given.what is the problem?A.The switch has been assigned an incorrect subnet mask.B.Switch port FA0/3 is not configured as a trunk port C.Switch port FA0/3 has been blocked by STPD.The switch and the hosts must be in the same subnetE.The cable is the wrong typeAnswer: E QUESTION 58Refer to the exhibit.Which user-mode password has just been set?A.Telnet B.Auxiliary C.SSH D.Consoleb b s .h h 010.co mAnswer: AQUESTION 59DNS servers provide what service?A.they run a spell check on host names to ensure accurate routingB.they map individual hosts to their specific IP addressC.they convert domain names into IP addressD.Given an IP address,they determine the name of the host that is…Answer: CQUESTION 60Which command enables RSTP on a switch?A.spanning-tree mode rapid-pvstB.spanning-tree uplinkfastC.spanning-tree backbonefastD.spanning-tree mode mst Answer: A QUESTION 61Which two are features of IPv6?(choose two)A.multicast B.broadcast C.allcastD.podcastE.anycast Answer: AE QUESTION 62Which statement about access lists that are applied to an interface is true?A.you can apply multiple access lists with the same protocol or in different…B.you can config one access list,per direction,per layer 3 protocolC.you can place as many access lists as you want on any interfaceD.you can apply ony one access list on any interfaceAnswer: DQUESTION 63Which item represents the standard IP ACL?A.access-list 50 deny 192.168.1.1 0.0.0.255B.access-list 110 permit ip any anyC.access-list 2500 deny tcp any host 192.168.1.1 eq 22D.access-list 101 deny tcp any host 192.168.1.1bbs.hh1.c o mAnswer: AQUESTION 64What is one benefit of PVST+?A.PVST+reduces the CPU cycles for all the switches in the networkB.PVST+automatically selects the root bridge location,to provide optimiz…C.PVST+allow the root switch location to be optimized per vlan.D.PVST+supports Layer 3 load balancing without loops.Answer: Cmoc.1hh.sbb。

CCNA(640-802)学习与实验指南(附CD-ROM光盘1张) [平装]

《CCNA(640-802)学习与实验指南》特别适用于那些渴望取得ccna认证的读者，取得认证的同时，真正具备ccna的能力；同时也可以作为高校计算机网络技术的教材，弥补实验设备的不足，改善现有学历教育重理论轻实践的现状；更是那些想掌握网络技术，提高动手能力，并能应用于实践的网络爱好者，难得一见的实验指导用书。
编辑推荐
《CCNA(640-802)学习与实验指南》通过理论讲解，视频演示，真题解析和大量的动手实验，目的是培养出真正的CCNA。全书紧贴640-802考试大纲，全面而系统地分析和介绍了CCNA考试中涵盖的各个知识点。对每个知识点在考试中的重要程度均有标注，每章最后还有近期CCNA真题的解析。全书共分22章，内容涉及三大方面，局域网部分：网络互联基础知识和网络参考模型，思科路由器和交换机介绍，静态和动态路由协议（包括RIP、EIGRP、OSPF）原理及配置，VLAN和VLAN间路由的实现，CDP、VTP和STP协议的使用，无线网络互联和IPv6等；广域网部分：广域网接入技术，PPP和帧中继的使用，DHCP和NAT等；网络安全部分：网络安全介绍，访问控制列表的使用和安全远程办公的实现等。
《CCNA(640-802)学习与实验指南》呈现给读者的不仅仅是一本教材，还提供了一个综合的网络实验环境。帮助读者仅通过一台电脑，便可以亲自动手完成《CCNA(640-802)学习与实验指南》涉及的所有路由器和交换机的实验配置及测试。配套光盘提供1300多分钟作者本人的中文授课视频和故障排除场景。借助当今两款最强大的模拟器，构造出逼真的环境，通过近百个实验，使您成为一名真正的CCNA。
《CCNA(640-802)学习与实验指南》特别适用于那些渴望取得CCNA认证的读者，取得认证的同时，真正具备CCNA的能力；同时也可以作为高校计算机网络技术的教材，弥补实验设备的不足，改善现有学历教育，并能应用于实践的网络爱好者，难得一见的实验指导用书。

双证制职业技能训练一(over)

双证制职业技能训练一【课程编号】00010028【课程类别】实践课程【学分数】2分【适用专业】计算机科学与技术【学时数】2周【编写日期】2011年12月【实践类型】技能训练【组织形式】集中培训技能培训项目：CCNA认证CCNA认证，全称Cisco Certified Network Associate证书，说明了你拥有一定的网络知识去提供服务给中小企业。

作为CCNA专业人才能够安装、调试和运作作局域网（LAN）、广域网（WAN）及拨号网络（大多都在100个节点或更少）的能力，同时能够操作IP, OSPF,EIGRP, Serial, Frame Relay, IP RIP, VLANs, RIP, Ethernet, Access Lists等网络协议。

新版的CCNA还增加了无线方面的知识点。

取得CCNA认证表示通过认证的人员具有为小型办公室/家庭办公室(SOHO)联网的基本技术和相关知识。

通过CCNA认证的专业人员可以为有100个以下节点的网络的企业和机构设计路由和交换网络（包括LAN、WAN和拨号访问业务）。

CCNA认证考试科目考试号：640-802Interconnecting Cisco Networking Devices Part 1 (ICND1) v1.1Interconnecting Cisco Networking Devices Part 2 (ICND2) v1.0CCNA学习条件CCNA认证是CISCO的初级认证，只需要基本的网络概念和高中以上的英文水平即可参加学习。

CCNA培训目标CCNA(Cisco Certified Network Associate)认证是Cisco售后工程师认证体系的入门认证，也是Cisco各项认证中级别最低的技术认证通过CCNA认证可证明你已掌握网络的基本知识，并能初步安装、配置和操作Cisco路由器、交换机及简单的LAN和WAN。

CCNA课程内容基础网络理论;OSI models、Standards、ProtocolRouting concepts;Cisco设备操作;Device lnfrastucture、Operation command、Device maintaining;局域网的基础实现;广域网的构建;学习城域网的构建;新版CCNA认证课程新增内容理解WLAN和选择适合的WLAN管理工作：1. 描述无线介质（IEEE WI-FI，ITU/FCC）2. 辨认和描述以下小型无线网络成分：（包括：SSID，BSS，ESS）3. 知道配置无线网络的基本参数，使可以连接正确的无线接入点4. 比较和区分无线安全方案，知道WPA1/2，WEP，OPEN 的特性5. 知道实现无线网络的常见问题（包括：信号干扰，错误的配置）课程特色1. 现场全部动手实验，从设备连接开始，全面接触网络设备，直观教学，提高学员操作水平；2. 实验室免费开放，时间不限，不断提高动手操作水平；3. 专家讲师提供一对一答疑或辅导，手把手带你成为IT精英；4. 学生考试前先通过内部模拟考试，技术确定达到考试要求并提供考前辅导讲座。

CCNA640-802V13+题库详解(50-100)

51.What can a network administrator utilize by using PPP Layer 2 encapsulation? (Choose three.)A. VLAN supportB. compressionC. authenticationD. sliding windowsE. multilink supportF. quality of serviceAnswer: BCE解释一下：PPP协议是能支持认证的，包括PAP和CHAP；PPP还支持压缩功能和差错校验，还可实现多链路捆绑。

而他们的这些功能都是HDLC所没有的。

52.Refer to the exhibit. What is the meaning of the term dynamic as displayed in the output of the show frame-relay map command shown?A. The Serial0/0 interface is passing traffic.B. The DLCI 100 was dynamically allocated by the router.C. The Serial0/0 interface acquired the IP address of 172.16.3.1 from a DHCP server.D. The DLCI 100 will be dynamically changed as required to adapt to changes in the Frame Relay cloud.E. The mapping between DLCI 100 and the end station IP address 172.16.3.1 was learned through Inverse ARP.Answer: E解释一下：这是个关于MAP的知识。