My CCNA Security tutorial series resumes later today, and I'll have at least one new practice exam for you CCNA and CCNP candidates alike posted on the website later today - and I'll put a link to those new tests right here on the blog.
My exclusive Cisco Video Training series begins very soon, with videos on topics from building a Cisco home lab to the best way to study for exam success - and everything in between!
Combine all that with my upcoming CCNA Security, Wireless, and Voice Study Packages, free practice exams and tutorials, and my online Mastermind Boot Camp courses for those three certifications debuting in January - plus a surprise or two I can't talk about yet - there's no better way to earn your Cisco certifications than with The Bryant Advantage!
Right now, let's take a look at the answers to yesterday's questions!
CCNA Certification And CCENT Certification:
Identify the true statements regarding Cisco routers.
A. The password encryption service is enabled by default.
B. The password encryption service is disabled by default.
C. The enable secret command uses a relatively strong encryption scheme.
D. The enable secret command uses a relatively weak encryption scheme that is easily compromised.
E. The VTY line password is set by default, and it is "cisco".
F. The VTY line password is not set by default.
Answers: B, D, F. To use the password encryption service, you'll need to use the service password-encryption command, since that service is disabled by default.
The particular encryption used by that command is relatively weak; it'll stop people from casually peeking at the password, but several programs exist that can crack this particular encryption in a matter of seconds.
There is no default VTY line password.
You're configuring the IOS Firewall Set on a router that's also running EIGRP. You're using SDM to configure the firewall. Which of the following statements is true?
A. You'll be prompted by SDM whether you want to permit EIGRP updates to come through the firewall.
B. You can go to the CLI and configure the firewall to allow EIGRP updates, but you can't use SDM to do so.
C. You cannot allow multicast routing updates to pass through a firewall; you'll need to use a protocol that uses broadcasts.
D. You cannot allow broadcast or multicast routing updates to pass through a firewall.
Answer: A. You will be prompted to allow the routing updates, as shown in this screen shot from my CCNA Security Study Package:
Which of the following does NOT describe WEP?
A. uses clear-text keys
B. uses a three-way handshake
C. uses dynamically generated keys
D. uses strong encryption scheme
Answers: B, C, D. WEP uses static keys, one-way authentication, and a weak encryption scheme. ("Other than that, Mrs. Lincoln, how did you enjoy the play?")
You're configuring a POTS dial peer. Which of the following command will you use on that peer?
D. dial map
Answer: A, B. POTS dial peers do not use the session-target command, and neither POTS not VOIP peers use the dial map command.
CCNP Certification / BSCI Exam:
You've just redistributed an EIGRP route into an OSPF process. What default OSPF routing code will be assigned to that route?
A. O E1
B. O E2
C. O N1
D. O N2
E. None of the above.
Answer: B, as demonstrated in the following command output. Two routes have been redistributed into OSPF - note the default seed metric and the route code.
R4#show ip route ospf
22.214.171.124/24 is subnetted, 1 subnets
O E2 126.96.36.199 [110/20] via 188.8.131.52, 00:00:15, Ethernet0
10.0.0.0/24 is subnetted, 1 subnets
O E2 10.1.1.0 [110/20] via 184.108.40.206, 00:00:15, Ethernet0
CCNP Certification / BCMSN Exam:
Identify the statements that accurately describe a SPAN source port.
A. Can be monitored in multiple, simultaneous SPAN sessions
B. Can be part of an Etherchannel
C. Cannot be configured as a destination port
D. Can be either a Fast Ethernet or Ethernet port
Answers: A, B, C. D. All four statements are accurate.
Answer: A, B, C. That's RTP Header Compression, which compresses the IP, RTP, and UDP headers.
Lots more to come later today! In the meantime, spend some time on my CCNA, CCNP, and CCENT tutorials page!
To your success,