Thursday, August 21, 2008

It's Thursday, August 21, and here are the answers to yesterday's Cisco training questions!

Be sure to check today's other blog posts for answers to my latest CCNA Security exam over on the website, and look for new exams posted daily for the rest of August on the main site as well - I'll put links to each and every one of them here in the blog!

CCNA Certification And CCENT Certification:

Describe each of the three steps in the TCP three-way handshake.

In order. :)

Answer: Host A sends SYN to Host B. This begins the negotiation of how the hosts will communicate, including the sequence number.

Next, Host B responds with SYN/ACK.

Finally, Host A responds with an ACK, and that's the three-way handshake!

CCNA Security Certification / CCNP ISCW Exam:

In terms of their position in the flow of traffic, what's the major difference between an IPS and an IDS?

Answer: An IDS is not in the direct flow of network traffic. Instead, the traffic flows are mirrored to the IDS. When infected traffic does hit the network, the IDS will see this and take appropriate action.

In contrast, the Intrusion Prevention System (IPS) does sit in the middle of the traffic flow - in this case, the IPS will actually be our Cisco router. When the IPS detects a problem, the IPS itself can prevent the traffic from entering the network.

CCNP Certification / BSCI Exam:

Describe the IPv6 conversion technique 6-to-4 tunneling.

Answer: 6-to-4 tunneling is accomplished by taking an IPv6 packet and encapsulating it into an IPv4 packet (protocol type 41) for transport across the IPv4 section of the network, then de-encapsulating it when the remote edge router is ready to route it across the IPv6 network.

The IPv6 networks used in this method are sometimes referred to as IPv6 islands.

6to4 tunnels have a reserved IPv6 address prefix for edge routers. These prefixes begin with 2002 and are followed by the router's IPv4 address expressed in hex. These prefixes carry a /48 prefix, such as 2002:1234:83cd::/48.

CCNP Certification / BCMSN Exam:

What command makes it possible for a switch to recover without manual intervention from a port going into err-disabled state?

Answer: The errdisable recovery command allows you to configure this feature, and you can also specify how long you want the switch to wait before bringing the port out of err-disabled state.

CCNP / ONT Exam: (My ONT Study Package is now available!)

Can you use HTTP rather than HTTPS to open a connection to the WCS in a web browser? If not, what happens when you try?

Answer: A secure connection is required. If you use HTTP, you'll see a message in the browser window that you're being redirected to an HTTPS connection. You'll also see "HTTPS" in the address bar.

More questions and tutorials later today! See you then!

To your success,

Chris Bryant
CCIE #12933

No comments:

Blog Archive