CCNA_4_Final满分答案

第 1 章考试1一家拥有10 名员工的小型公司使用单个LAN 在计算机之间共享信息。

哪种类型连接适合此公司？由当地电话服务提供商提供的拨号连接能够使公司方便且安全地连接员工的虚拟专用网络通过当地服务提供商建立的私有专用线路通过当地服务提供商提供的宽带服务（如DSL）答案：4解析：对于这种小型办公室，比较适合通过被称为数字用户线路(DSL) 的常见宽带服务实现Internet 连接，这种服务由当地的电话服务提供商提供。

由于员工人数很少，带宽的问题并不突出。

如果公司较大，在远程站点有分支机构，则专用线路会更加适合。

如果公司员工需要通过Internet 与公司联系，则采用虚拟专用网。

2哪种网络情况需要使用WAN？员工工作站需要获取动态分配的IP 地址。

员工在出差时需要通过VPN 连接到公司电子邮件服务器。

分支机构的员工需要与同一园区网络上的另一座建筑物内的公司总部共享文件。

员工需要访问托管在其建筑物内DMZ 中的公司Web 服务器上的网页。

答案：2解析：当出差的员工需要通过WAN 连接到公司电子邮件服务器时，VPN 将通过WAN 连接在员工笔记本电脑与公司网络之间创建一个安全隧道。

通过DHCP 获取动态IP 地址是LAN 通信的功能。

在企业园区的不同建筑物之间共享文件可通过LAN 基础设施来实现。

DMZ 是企业LAN 基础设施内一个受保护的网络。

3以下哪项描述了WAN 的特征？WAN 和LAN 在同一地理范围内运行，但有串行链路。

WAN 网络归运营商所有。

所有串行链路均被视为WAN 连接。

WAN 可提供到园区主干网的终端用户网络连接。

答案：2解析：WAN 可用于将企业LAN 互连到远程分支机构站点LAN 和远程工作人员站点。

WAN 归运营商所有。

虽然WAN 连接一般通过串行接口实现，但并不是所有串行链路均连接至WAN。

LAN（而非WAN）可在组织中提供终端用户网络连接。

4电路交换WAN 技术的两个常见类型是什么？（请选择两项。

CCNA_4_Final11下列哪种类型的网络攻击是利用被入侵的系统中的漏洞在网络中自我传播？病毒蠕虫特洛伊木马中间人2请参见图示。

有一个 FTP 请求数据包需要发往IP 地址为172.16.1.5 的 FTP 服务器。

Router1 的 S0/0/0 接口收到该请求数据包后，会以何种方式处理？路由器认定传入数据包与 access-list 201 permit ip any any 命令创建的语句匹配，从而允许数据包进入路由器。

因为 access-list 101 permit ip any any 命令没有创建任何语句，所以路由器会达到ACL 101 的尾部而找不到匹配的条件，从而丢弃该数据包。

路由器认定传入数据包与 access-list 101 permit ip any 172.16.1.0 0.0.0.255 命令创建的语句匹配，从而忽略 ACL 101 的其余的语句，允许数据包进入路由器。

路由器会认定传入数据包与命令 access-list 201 deny icmp 172.16.1.0 0.0.0.255 any 创建的语句匹配，然后继续将该数据包与 ACL 201 中剩余的语句比对，以确保后续语句均未禁止 FTP，然后路由器将丢弃该数据包。

3 管理员正在使用 RIPng 和双协议栈技术为一路由器配置 IPv6 和 IPv4，他在输入IPv4 路由时收到一条错误消息。

可能是什么原因导致出现错误消息？IPv4 与 RIPng 不兼容RIPng 与双协议栈技术不兼容。

路由器接口的地址配置错误。

在同一接口同时配置 IPv4 和 IPv6 时，所有 IPv4 地址均被禁用，以支持新的技术。

4 帧中继网络中所用的本地管理接口 (LMI) 提供哪两项功能？（选择两项。

）流量控制错误通知拥塞通知映射 DLCI 至网络地址发送 keepalive 数据包以检验 PVC 的工作情况5如果不以纯文本格式发送身份验证信息，在 Cisco 和非 Cisco 路由器之间建立链路连接时，应使用以下哪种第 2 层协议和身份验证的组合？HDLC 与 PAPHDLC 与 CHAPPPP 与 PAPPPP 与 CHAP6 服务提供商自何处开始对客户的 WAN 连接负责？本地环路路由器上的 DTE 电缆分界点非军事区7请参见图示。

答案：1、D 2、AE 3、BC 4、E 5、B 6、D 7、AEF 8、A 9、A 10、B 11、D 12、B 13、A 14、D 15、AD 16、A 17、ABF 18、BF 19、B 20、C1收集症状以排查网络故障时，哪个步骤可能会牵涉到外部管理员？缩小范围收集可疑设备的症状分析现有症状确定所有权2逻辑网络图中一般有哪两项要素？（选择两项。

）接口标识符连接器类型操作系统版本电缆类型虚电路3请参见图示。

在创建网络文档的过程中应该进行哪两个步骤？（选择两项。

）记录仅在园区网络中发现的设备的相关信息。

记录在整个网络中（包括远程站点）发现的设备的相关信息。

将网络配置表中与拓扑图所示组件相关的任何设备信息记录下来。

仅将网络配置表中与拓扑图所示组件相关的第2 层和第3 层设备信息记录下来。

将网络配置表中与拓扑图所示组件相关的在网络使用高峰期收集的的设备信息记录下来。

4请参见图示。

图中的图表来自HR-1，它是HR 部门使用的唯一一台应用程序服务器。

基线数据收集开始于8 月1 日。

从图表中可确定什么有用信息？HR-1 上的CPU 资源失衡。

需要调整处理周期。

有两个明显的周末处理周期，它们始于周六夜晚，止于周日早上。

基线图表显示HR-1 明显具有处理问题（尽管问题本质尚不清楚）。

HR-1 上的处理负载重复再现，因此可预测。

HR-1 上的CPU 负载因某种原因受到明显影响，但由于信息不足，无法确定是否存在问题。

5请参见图示。

服务器HR 上的一个应用程序不再响应任何客户端请求。

每件事务都取决于数据中心中的多台服务器。

数据中心内的服务器上运行的为全公司提供服务的应用程序均无问题。

员工没有解决此类故障的经验，且对各种应用程序的了解也有限。

哪些初始故障排除步骤体现了自上而下的故障排除方法？检查所有服务器的电缆连接。

检查每块网卡上的连接指示灯是否为绿色。

Ping 每台服务器的本地地址，然后Ping 相关服务器和典型客户端的地址。

公司与AA2SSH存在不正确的访问控制列表条目。

访问列表中的必须在会防止以明文传输登录信息如果身份验证失败，则会断开PPP 会话连接会发起双向握手容易遭受回送攻击4命令show frame-relay map的输出如下：Serial 0 (up): ip 192.168.151.4 dlci 122, dynamic, broadcast, status defined, active 下列哪三种说法正确描述了所示内容的意义？（选择三项。

）192.168.151.4代表远程路由器的IP 地址192.168.151.4代表本地串行接口的IP 地址DLCI 122代表远程串行接口DLCI 122代表用于连接远程地址的本地编号broadcast表示动态路由协议（例如RIP v1）可通过此PVC 发送数据包active表明ARP 进程正在工作5路由器的SDM 主页会显示哪三点信息？（选择三项。

）ARP 缓存闪存的总容量和可用容量路由表已配置的LAN 接口的数量是否配置了DHCP 服务器该LAN 中路由器的数量6从非军事区分界点本地环路网云确保在确认确保路由器上有通向下列哪三种说法正确描述了CSU/DSU调制解调器用于端接本地数字环路。

CSU/DSU调制解调器用于端接本地模拟环路。

路由器通常被视为路由器通常被视为10在链路质量测试完毕后，路由器在协商第LCPNCP它会被丢弃。

它会被放到队列中，直到主机它会被转换，源端口号保持为它会被分配其端口范围内的第一个可用端口号。

交换虚电路的相关信息将DLCI 映射到网络地址提供流量控制提供错误通知提供拥塞通知发送keepalive 数据包以检验PVC 的工作情况14请参见图示。

下列说法中哪三项正确？（选择三项。

）启用了NAT 过载。

启用了动态NAT。

地址转换会失败。

接口配置不正确。

地址为192.168.1.255 的主机将被转换。

进入0/0/2 接口的流量先被转换，然后才流出串行接口0/0/0。

管理员无法接收电子邮件。

在排查故障时，管理员能够从远程网络成功ping 通本地邮件服务器IP 地址，且可使用nsloo 件服务器名称成功解析为IP 地址。

问题最可能发生在OSI 的哪一层？物理层数据链路层网络层应用层2在哪种情况下，应在帧中继PVC 配置中使用关键字multipoint？当使用全局DLCI 时当使用物理接口时当需要支持组播时当参与连接的路由器处于在同一子网中时3请参见图示。

分支 A 配有一台使用IETF 封装的非Cisco 路由器，分支 B 配有一台Cisco 路由器。

输入图中所示的命令后无法建立PVC。

R2 LMI 的类型是Cisco，R1 LMI 的类型是ANSI。

两处都成功建立了LMI。

为什么无法建立PVC？PVC 与R1 之间的链路必须是点对点链路。

PVC 两端的LMI 类型必须匹配。

Cisco 路由器和非Cisco 路由器之间无法建立帧中继PVC。

命令frame-relay map ip 10.10.10.1 201中缺少参数IETF。

4请参见图示。

EIGRP 已配置为网络路由协议。

网络192.168.1.0/24 中的用户应有对与192.168.3.0/24 连接的web 服务器权限，但不允许telnet 至路由器R3。

在检验配置时，网络管理员发现网络192.168.1.0/24 中的用户可成功telnet 至路由修复此问题？将ACL 101 中语句10 和20 交换顺序。

将ACL 101 应用于R3 VTY 线路0 4 的入站方向。

将ACL 101 应用于R3 VTY 线路0 4 的出站方向。

将ACL 101 应用于R3 接口Serial0/0/1 的出站方向。

将ACL 101 语句10 更改为：permit ip 192.168.1.0 0.0.0.255 any5请参见图示。

所有设备的配置如图所示。

PC1 无法ping 通默认网关。

此问题的原因是什么？默认网关位于错误的子网中。

1. Which of the following LCP options can be configured for PPP? (Choose three.)CHAPStackerIPCPCDPCPMultilink2. ITU-T Q.921 specifies the use of which protocol for sending control and signaling messages between the router and the ISDN switch?HDLCIPCPLAPBLAPDNCPSS73. Which of the following describe functions of the Point-to-Point protocol with regards to the OSI model? (Choose three.)PPP uses Layer 3 of the OSI model to establish and maintain a session between devices.PPP operates at all layers of the OSI model.PPP uses the data link layer to configure such options as error detection and compression.PPP provides a mechanism to multiplex several network layer protocols.PPP uses Network Control Protocols (NCP) to test and maintain connectivity between devices.PPP can be configured on both synchronous and asynchronous serial interfaces.4. Which of the following statements regarding point-to-point subinterfaces are true? (Choose two.)A point-to-point subinterface on one router must be connected to a similar subinterface on a remote router.Each point-to-point subinterface connection is configured with its own subnet.The DLCIs configured on the remote and local routers must be the same for the PVC.LMI frames are not transmitted through a subinterface.Routing updates in point-to-point networks are not subject to thesplit-horizon rule.5.How will data be transmitted from the router to the ISP if the router has the two links shown in the graphic?Both links will transmit data at the same rate.1544 bits can be transmitted simultaneously from the router over the T1 line.Both links will transmit bits one by one.The 56K link will transmit a maximum of 53 bits at the same time.6. A network administrator is asked to design a system to allow simultaneous access to the Internet for 250 users. The ISP for this network can only supply five public IPs. What can be used to accomplish this task?routable translationdynamic translationstatic translationport address translation7. Which of the following statements are true about Frame Relay? (Choose three.)Frame Relay operation is defined by a series of ISO standards.Frame Relay is a packet switched, connection-oriented, wide area network service.Frame Relay only supports point-to-point connections.A router can be considered as data terminal equipment (DTE) in a frame relay system.Frame Relay is a cell switched, connection-oriented, wide area network service.Frame Relay networks use a subset of the HDLC protocol to carry information.8. Why would data frames be discarded in a Frame Relay network? (Choose two.)The frame contains an incorrect IP address.An error has been detected in computing the frame check sequence.There is not enough bandwidth dedicated for the data contained in the frame.Data is transmitted at a rate greater than the access speed.The frame contains an incorrect DLCI.9.Which of the following can be concluded from the router output displayed in the graphic? (Choose two.)The local DLCI number of this PVC is 100.The interface has been configured for subinterfaces and this map is for subinterface 0.Inverse ARP has determined the remote ip address as 10.140.1.1.The LMI type is ANSI (0×64).There is currently no congestion on the link.10. When planning simple WAN connections for a small company, which feature of the three layer hierarchical model makes it a good choice for the WAN topology.It provides for redundancy.It allows for easy WAN expansion in case of company growth.It is less expensive.It provides faster connection time.It provides less latency and jitter.11.The command output shown in the graphic was taken from a Cisco 806 broadband router. Which kind of address translation is in effect on this router?staticdynamicoverloadprivatepublic12. A network administrator has been asked to provide the network in the United States with an ISDN WAN link. The router available to provide the WAN connection is a non-modular Cisco router with two serial connections. What must be done to adapt one of the serial interfaces of this router for the ISDN connection?Nothing. The router is already suitable.Purchase a BRI WAN interface card to install in the router.Purchase a U interface to install in the router.Purchase a TA/NT1 device to install on the router.13. How does Frame Relay technology process frames that contain errors? (Choose two.)Frame Relay services depend on the upper layer protocols to handle error recovery.It requires the receiving device to request that the sender retransmit erroneous frames.FECN, BECN, and DE bits are set in the frames to minimize errors.The receiving device drops any frames that contain errors without notifying the sender.The frame relay switch notifies the sender that errors were detected.14. Which statements about DHCP are true? (Choose three.)DHCP uses TCP.DHCP uses UDP.DHCP sends messages to the server on port 67.DHCP sends messages to the server on port 68.DHCP sends messages to the client on port 67.DHCP sends messages to the client on port 68.15. Which command configures the SPID on the first B channel of an ISDN interface?Router(config)# isdn spid0 spid-number [ldn]Router(config)# isdn spid1 spid-number [ldn]Router(config-if)# isdn spid0 spid-number [ldn]Router(config-if)# isdn spid1 spid-number [ldn]16.Which command would produce the output shown in the graphic?show ip dhcp server statisticsshow ip dhcp bindingdebug ip dhcp server eventsdebug ip dhcp binding17. Which commands can be used to identify which DLCIs are active? (Choose two.)show frame-relay mapshow frame-relay lmishow frame-relay pvcshow frame-relay interfaceshow interfacesshow ip route18. When PPP authentication is enabled, which of the following may be checked before establishing a PPP link between two devices? (Choose two.)the enable password on the remote devicethe ip host configuration on the remote devicethe security server database for the username and password of the remote devicethe hostname and enable password on the local devicethe local database for the username and password of the remote device19. Which of the following are supported by a BRI interface on a router? (Choose two.)Two independent channels that can carry analog data with a bandwidth of 64 KHz.A single 128 Kbps digital bearer channel.Two multiplexed channels carrying digital data.A single 64 Kbps signaling channel.A multiplexed data channel that can only handle SS7 information.A 16 Kbps delta channel used for signaling purposes.20.An administrator consoled into the Jelly router needs to telnet to the Butter router. What DLCI will the Jelly router place in the frame to perform this operation?11011522022521.What is placed in the address field of a frame that will travel from the DC office of ABC company to the Orlando office?MAC address of the Orlando routerMAC address of the DC router192.168.1.25192.168.1.26DLCI 100DLCI 20022. The WAN connection for a nationwide company with 250 offices must support constant connections to core layer services for file sharing, and occasional Internet access. Which combination of WAN technologies will meet these needs with minimum expense?Frame Relay PVC for Internet access and ATM for file server accessFrame Relay PVC for Internet access and ISDN for file server accessISDN for Internet access and X.25 for file server accessISDN for Internet access and Frame Relay PVC for file server access23. What does a DLCI of 0 indicate about a frame? (Choose two.)This is the first data frame sent by the router.This is a management frame.The encapsulation type is Cisco.The encapsulation type is IETF.The LMI type is Ansi or q933a.The LMI type is Cisco.24. A company needs a WAN connection that is capable of transferring voice, video, and data at a minimum data rate of 155 Mbps. Which WAN connection is the best choice?X.25DSLATMISDN BRIISDN PRI25. What are three features of the CHAP protocol? (Choose three.)exchanges a random challenge number during the session to verify identitysends authentication password to verify identityprevents transmission of login information in plain textdisconnects the PPP session if authentication failsinitiates a two-way handshake26. Which of the following devices is used to establish the communications link between the customer equipment and the local loop for digital lines?terminal adaptermodemCSU/DSUPBX switchISDN switchFrame Relay Switch27. Which command would be used to exclude the IP address 192.168.24.5 from the DHCP address pool on a router?Router(dhcp-config)# ip dhcp excluded-address 192.168.24.5Router# ip dhcp excluded-address 192.168.24.5Router(config-excluded)# ip dhcp excluded-address 192.168.24.5Router(config)# ip dhcp excluded-address 192.168.24.5Router(config)# excluded-address 192.168.24.5Router(dhcp-config)# excluded-address 192.168.24.528. A router needs to forward a message received from a host. How does the router identify the correct VC to forward the message? (Choose two.)The router forwards the frame to all ports in the network and learns the address from the reply frame.The destination host IP address is embedded in the DLCI.The router searches Inverse ARP tables for maps of DLCIs to IP addresses.A table of static mappings can be searched.The router broadcasts a request for the required IP address.29. Which of the following switching types will allow the communication devices in the provider’s network to be shared and only allocated to an individual subscriber during data transfer?circuit-switchedpacket-switchedframe-switcheddedicated-switched lineslease-switched30. Which of the following IP addresses are defined by RFC 1918 as private addresses? (Choose three.)192.168.146.0/22172.10.25.0/16172.31.0.0/1620.0.0.0/810.172.92.8/2931. Which of the following describes the PAP protocol? (Choose two.)sends unencrypted authentication passwordsperforms a three-way handshakeallows repeated login attemptsuses the remote router hostname to verify identitysends a random challenge throughout the session32. Which of the following protocols can be used to encapsulate data traffic sent from a router BRI interface? (Choose two.)Link Access Protocol – DataHigh-Level Data Link ControlLogical Link ControlSerial Data Link ControlPoint to Point protocolBinary Synchronous Control protocol33. Which statement explains why basic DSL is an unpopular WAN connectivity choice for enterprise computer departments that support home users?DSL offers insufficient bandwidth to home users.DSL requires the installation of new cables, which is not always possible for home users.DSL dialup connection time is too slow for business use.DSL has limited geographical availability.34. Which of the following are functions of the Local Management Interface used in Frame Relay networks? (Choose three.)exchange information about the status of virtual circuitsmap DLCIs to network addressesprovide flow controlprovide error notificationprovide congestion notificationsend keepalive packets to verify operation of the PVC35.An ISDN router is configured for DDR as shown in the graphic to provide Internet connectivity for the company. Immediately after a user in the company attempts opens a web browser to connect to the Internet, anotheruser in the company tries to download a file using FTP. What will happen? (Choose two.)The user that opened the browser will connect to the Internet because the DDR link will consider this traffic interesting.The Internet user will be disconnected because the FTP data will cause the DDR link to shut down.The DDR link will allow the FTP traffic because it is interesting.The DDR link will not allow the FTP traffic because it is not interesting.The FTP connection will fail because the DDR link is already in use for the Internet connection.The FTP connection will succeed because the web user already opened the DDR link.36. Which command will provide for CHAP authentication if the hostname on a challenging router is tampa with a password of florida?username tampa password floridausername tampa floridahostname tampa password floridahostname tampa florida37. Which of the following is a function of a DCE device?determines the next-hop address for a packetmultiplexes signals from several sourcesadapts information for use on a service provider’s networkused to directly connect two DTEs to simulate a WAN network38. Which operating systems support multiuser capability? (Choose three.) LinuxWindows 98Windows MEWindows XPWindows 200039. Why was NAT created? (Choose two.)to create firewalls on routersto conserve IP addressesto translate domain names into IP addressesto map network addresses to the corresponding data link addressto hide internal addresses from external devices40. Which of the following terms describes a device that will put data on the local loop?DLCICODCEDTEPRIBRI41. How many separate B channel circuits can be provisioned on a PRI interface that uses a T1 line for connectivity?21623243012842.The LAN attached to the Ethernet interface of the Raleigh router shown in the graphic is addressed with private IP addresses. If one public IP is assigned to the company, which commands could be used in a configuration that allows all devices with private IPs in this network to access the Internet? (Choose two.)ip nat inside source list 1 interface serial0 overloadip nat outside source list 1 interface serial0 overloadip nat inside serial0ip nat inside source list 1 pool Raleigh overloadip nat inside Raleigh overloadip inside nat source list 1 interface serial0 Raleigh43.Which of the following describes the WAN devices and cabling shown in the graphic? (Choose two.)A null-modem cable is used between RouterD and DeviceC for connectivity.A DB-25 or DB-9 serial cable is connected to interface S0/0 of RouterA.DeviceB and DeviceC are DCE devices.The same encoding scheme must be used by DeviceB and DeviceC.A synchronous serial connection exists between DeviceB and DeviceC.44. Which of the following are commonly used as Data Communications Equipment? (Choose two.)modemrouterCSU/DSUISDN SwitchFrame Relay Switch45. What does the command debug isdn q921 display?exchange of call setup and teardown messagesPAP and CHAP authentication trafficLayer 2 messages on the D channelprotocol errors and statisticsLayer 2 messages on the B channel46. A technician is testing the functionality of a recently installed router. The technician is unable to ping the serial interface of a remote router. The technician executes the show interface serial0/0command on the local router and sees the following line in the output:Serial0/0 is up, line protocol is downWhat are possible causes for this command output? (Choose three.) remote CSU/DSU failureserial cable missinginterface shutdownkeepalives not being sentclocking signal missing。

请参见图示。

网络技术人员确定 DHCP 客户端工作不正常。

客户端从作为 DHCP 服务器的路由器上接收了 IP 配置信息，但无法访问 Internet。

根据图中所示的输出，问题最可能出在哪里未启用 HTTP 服务器服务。

未定义 DCHP 的内部接口。

未将 DHCP 地址池绑定到接口。

地址池中没有为客户端定义默认路由器。

DHCP 地址池中排除了所有主机地址。

请参见图示。

根据图中所示的配置，应该如何为网络中的关键主机（例如路由器接口、打印机和服务器）分配排除地址池地址由网络管理员静态分配。

DHCP 服务器动态分配地址。

地址必须先列在 DHCP 地址池中，才能用于静态分配。

地址必须先列在 DHCP 地址池中，才能用于动态分配。

请参见图示。

请参见图示。

根据图中所示的输出，此 DHCP 服务器成功分配或更新了多少个地址16789它可节省公有 IP 地址。

它可增强网络的私密性和安全性。

它可增强路由性能。

它可降低路由问题故障排除的难度。

它可降低通过 IPsec 实现隧道的复杂度。

有关 NAT 与 PAT 之间的差异，下列哪一项正确PAT 在访问列表语句的末尾使用 "overload" 一词，共享单个注册地址。

静态 NAT 可让一个非注册地址映射为多个注册地址。

动态 NAT 可让主机在每次需要外部访问时接收相同的全局地址。

PAT 使用唯一的源端口号区分不同的转换。

网络管理员应该使用哪种 NAT 来确保外部网络一直可访问内部网络中的 web 服务器NAT 过载静态 NAT静态 NATPAT请参见图示。

哪个或哪些地址是内部全局地址10.1.1.2网络 10.1.1.0 中的任意地址请参见图示。

下列关于图中所示配置的说法中哪两项正确（选择两项。

）来自网络 10.1.1.0 的流量将被转换。

来自网络的流量将被转换。

允许的流量会被转换为单个内部全局 IP 地址。

取自网络 10.1.1.0 的内部全局 IP 地址池将用于转换。

CCNA思科考试答案（全）第 1 章考试1一家拥有10 名员工的小型公司使用单个LAN 在计算机之间共享信息。

哪种类型连接适合此公司？由当地电话服务提供商提供的拨号连接能够使公司方便且安全地连接员工的虚拟专用网络通过当地服务提供商建立的私有专用线路通过当地服务提供商提供的宽带服务（如DSL）答案：4解析：对于这种小型办公室，比较适合通过被称为数字用户线路(DSL) 的常见宽带服务实现Internet 连接，这种服务由当地的电话服务提供商提供。

由于员工人数很少，带宽的问题并不突出。

如果公司较大，在远程站点有分支机构，则专用线路会更加适合。

如果公司员工需要通过Internet 与公司联系，则采用虚拟专用网。

2哪种网络情况需要使用WAN？员工工作站需要获取动态分配的IP 地址。

员工在出差时需要通过VPN 连接到公司电子邮件服务器。

分支机构的员工需要与同一园区网络上的另一座建筑物内的公司总部共享文件。

员工需要访问托管在其建筑物内DMZ 中的公司Web 服务器上的网页。

答案：2解析：当出差的员工需要通过WAN 连接到公司电子邮件服务器时，VPN 将通过WAN 连接在员工笔记本电脑与公司网络之间创建一个安全隧道。

通过DHCP 获取动态IP 地址是LAN 通信的功能。

在企业园区的不同建筑物之间共享文件可通过LAN 基础设施来实现。

DMZ 是企业LAN 基础设施内一个受保护的网络。

3以下哪项描述了WAN 的特征？WAN 和LAN 在同一地理范围内运行，但有串行链路。

WAN 网络归运营商所有。

所有串行链路均被视为WAN 连接。

WAN 可提供到园区主干网的终端用户网络连接。

答案：2解析：WAN 可用于将企业LAN 互连到远程分支机构站点LAN 和远程工作人员站点。

WAN 归运营商所有。

虽然WAN 连接一般通过串行接口实现，但并不是所有串行链路均连接至WAN。

LAN（而非WAN）可在组织中提供终端用户网络连接。

4电路交换WAN 技术的两个常见类型是什么？（请选择两项。