Steve,
Welcome to the Sunday, July 27 edition of The Mastermind!
In today's edition, you'll see the answers to last week's CCNA Security practice exam, plus a few free tutorials as well!
Let's get started!
________________________________________________________
Get Your Mind Clicking With These Cisco Certification Practice Exams!
Answers to this CCNA Security practice exam have been posted:
CCNA Security: NTP, Telnet, SSH, And More!
When you're done there, tackle these practice exams as well!
CCNA Certification: Frame Relay Questions
CCNA Certification: HDLC And PPP Questions
CCNA Certification: Static Routing And RIP Questions
The questions on static routing and RIP includes a tutorial on floating static routes that you CCNP candidates should read as well!
CCNA Certification Training Questions: RAM, ROM, Flash, And More!
I'll have more free practice exams, tutorials, and coming later this summer - free video training for your Cisco certification exams and home lab setup!
_________________________________________________________
Thought For The Day:
"Success is the sum of small efforts, repeated day in and day out."
- Robert Collier
________________________________________________________
Cisco Has Announced Three Additional CCNA Certifications!
But To Earn Them, You've Got To Be CCNA Certified, So Get Started Today!
Cisco has announced three brand-new CCNA-level Certifications:
CCNA Security
CCNA Voice
CCNA Wireless
Click those links to go to the new resource pages I've created for each new exam - I'll post practice questions, written tutorials, and video training on those pages in the weeks and months ahead.
There is a new CCNA Security tutorial on using SDM to configure one-step lockdown - the link is on the CCNA Security Resource page.
These new certifications are going to be a tremendous career boost to those who earn them.
Why? Just look at these statistics!
Security: Right now, 46% of companies included in the survey have a position dedicated to security - that's going to almost double over the next five years to 80%.
Voice: Currently, 40% of surveyed customers have a voice specialist. That number will rise to 69% in the next five years.
Wireless: While 33% of surveyed companies currently have a position dedicated to wireless, that value will double over the next five years to 66%.
(Stats were arrived at by Forrester Consulting during a study sponsored by Cisco. You can get a copy here.)
Those statistics tell a simple tale:
Network admins who have knowledge and certification in security, wireless, and voice will have a huge advantage over network admins who do not.
That's why Cisco is introducing these new certifications, and exactly why I'll be releasing Study Packages for all three of these specializations, beginning in September!
There's one detail you need to take care of now, though.
To earn any of these CCNA specialist certifications, you must earn your CCNA first, by either the one-exam (640-802) path or the two exam path (ICND 1 and 2).
This announcement by Cisco makes it more important than ever to be CCNA certified. Be ready to earn these new certifications by earning your CCNA now!
Just imagine how impressive your resume and reputation will be when you're CCNA certified and certified in security, voice, and wireless!
Personally, I'd hire you in a minute, and I've always been tough about who I hire. And if you already worked for me, you'd get the next promotion.
Get ready for these new certifications by starting on your CCNA now. Take five minutes to read this page - it's more important than ever.
The Ultimate CCNA Study Package
Starting this September, I'll be releasing Study Packages for CCNA Security, CCNA Voice, and CCNA Wireless. While I'm working on those, you need to be working on your CCNA to take advantage of these vital new certifications.
Click that link and let's get started!
The Ultimate CCNA Study Package
_______________________________________________________
Here are today's Cisco practice exam questions!
CCNA Certification:
Examine the following output and tell me what defaults have been changed.
R1#show ip protocols
Routing Protocol is "rip"
Sending updates every 30 seconds
Invalid after 180 seconds, hold down 180, flushed after 240
CCENT Certification:
At which layer of the OSI model do the following protocols run?
SMTP, Telnet, HTTP, FTP, SNMP
CCNA Security Certification / CCNP ISCW Exam:
You're working in SDM to create a VPN. What service must be running on the router to do so? (Hint: If the router isn't already running it, SDM will prompt you to activate it.)
CCNP Certification / BSCI Exam:
When you enter the command shown below, what unusual characteristic will the route to 16.0.0.0 252.0.0.0 have that no other route in the EIGRP routing table will have?
R1(config)#interface serial0
R1(config-if)#ip summary-address eigrp 100 16.0.0.0 252.0.0.0
CCNP Certification / BCMSN Exam:
What two protocols are used to negotiate Etherchannel parameters between switches?
CCNP / ONT Exam:
At what layer of the Cisco Hierarchical Switching Model should packet classification not take place?
I'll have the answers for you right here on Monday!
_______________________________________________________________
Get All Four Of My CCNP Study Packages With The CCNP Study Package Bundle - You Save $70 And Begin Studying For CCNP Exam Success Immediately!
My BSCI, BCMSN, ONT, and ISCW Study Packages have helped CCNP candidates just like you master the skills needed to earn your certification, and right now you can save $70 and start studying for CCNP exam success just a few minutes from now with my CCNP Study Package Bundle!
The Ultimate CCNP Study Package Bundle
"I passed the ISCW with a 989!" - Terry Vinson, CCNP
"I passed the BSCI with a 922. Your study materials have been great!" - Pablo Mariano
"The BCMSN Study Guide and lab time were just what I needed to pass the 642-812 exam on my first attempt! The study guide helped me understand things in plain English." - Bryan Bartik
"I passed the BSCI with a resounding 966/1000!" - Vincenzo Marraro
"I would like to update you on my progress on the CCNP scene but before that again I would like to thank you again personally for the great BSCI, BCMSN and ISCW guides.
"I have scored 968 for the composite exam (I figure that I would like to see if I could do both the BSCI and BCMSN in one shot using your guides and boy was I not disappointed ;-)). I scored a perfect 1000 in my ISCW exam, too!" -- Nickelby Thane
The road to the CCNP begins here - with a single click!
The Ultimate CCNP Study Package Bundle
___________________________________________________________
Here are the answers to yesterday's questions! All questions were short answer.
CCNA Certification:
Identify the numeric ranges for standard and extended ACLs.
Answer: Here's the IOS Help readout that shows all of our ACL ranges. Standard ranges are bolded.
R1(config)#access-list ?
<1-99> IP standard access list
<100-199> IP extended access list
<1100-1199> Extended 48-bit MAC address access list
<1300-1999> IP standard access list (expanded range)
<200-299> Protocol type-code access list
<2000-2699> IP extended access list (expanded range)
<700-799> 48-bit MAC address access list
dynamic-extended Extend the dynamic ACL absolute timer
rate-limit Simple rate-limit specific access list
CCENT Certification:
What's the basic purpose of the exec-timeout 0 0 command?
Answer: This disables the console session default inactivity timeout of 5 minutes and 0 seconds.
If you want to change that timer rather than disabling it, the first number represents the number of minutes in the inactivity timer and the second number is the number of seconds.
R1(config)#line con 0
R1(config-line)#exec-timeout ?
<0-35791> Timeout in minutes
R1(config-line)#exec-timeout 0 ?
<0-2147483> Timeout in seconds
R1(config-line)#exec-timeout 0 0 (disables the inactivity timer)
This command can also be configured on the VTY lines to set or disable the inactivity timer for Telnet and SSH users. Here, we'll set the VTY line inactivity timer to 10 minutes, double the default time.
R1(config)#line vty 0 4
R1(config-line)#exec-timeout ?
<0-35791> Timeout in minutes
R1(config-line)#exec-timeout 0 ?
<0-2147483> Timeout in seconds
R1(config-line)#exec-timeout 10 ?
<0-2147483> Timeout in seconds
R1(config-line)#exec-timeout 10 0
They're great commands for your present or future home lab, and I also recommend you know them for your CCENT and CCNA exams!
CCNA Security Certification / CCNP ISCW Exam:
What's the purpose of the ip inspect tcp idle-time command?
Answer: ip inspect tcp idle-time sets the amount of time an idle TCP connection is kept in the state table. Default is 3600 seconds.
CCNP Certification / BSCI Exam:
When you enter the command shown below, what is the first thing that will happen?
R1(config)#interface serial0
R1(config-if)#ip summary-address eigrp 100 16.0.0.0 252.0.0.0
Answer: When you configure EIGRP address summarization, any and all EIGRP adjacencies formed via that interface will be torn down. That little detail gets left out of a lot of BSCI study guides, but it's obviously an important point!
Don't just take my word for it - here's the proof! The EIGRP adjacency message even indicates why the adjacency was torn down:
R1(config)#interface ethernet0
R1(config-if)#ip summary-address eigrp 100 100.0.0.0 255.248.0.0
2d11h: %DUAL-5-NBRCHANGE: IP-EIGRP 100: Neighbor 172.12.123.3 (Serial0) is down: summary configured
2d11h: %DUAL-5-NBRCHANGE: IP-EIGRP 100: Neighbor 172.12.123.2 (Serial0) is down: summary configured
CCNP Certification / BCMSN Exam:
What is the net effect of the following command?
SW2(config)#errdisable recovery cause all
Answer: A switch port will be placed into error-disabled state, referred to on the switch as err-disabled, under certain circumstances such as a violation of port security.
By default, a port in err-disabled state has to be manually reopened. (The port LED will go out as well; as you'd suspect, a green LED indicates an active port.)
You may have a situation where you want the port to re-enable itself after a certain period of time, and this can be configured with the errdisable recovery interval command.
Before doing so, though, you must define the causes from which the port can recover automatically. We'll use the "all" option here to allow the port to autorecover from any err-disabled state.
SW2(config)#errdisable recovery cause all
SW2(config)#errdisable recovery interval ?
<30-86400> timer-interval(sec)
SW2(config)#errdisable recovery interval 300
As with any command involving time, you should first check the unit of time this particular command uses. Some Cisco commands use seconds, some use minutes, some use hours. If you want a five-minute interval before the port re-enables, you need to enter 300, not 5.
CCNP / ONT Exam:
Define per-hop behavior as the term relates to DiffServ.
DiffServ doesn't use RSVP, but instead uses Per-Hop Behavior (PHB) to allow each router across the network to examine the packet and decide what service level it should receive.
With DiffServ, one router along the path from source to destination could consider a packet to be of the highest priority, while another router could consider it "just another packet".
There is no advance signaling with DiffServ - no "hey, here comes a really important packet!" advance notice. Each hop along the way from source to destination makes its own decision as to how important a packet is or isn't.
This lack of advance signaling is why DiffServ is considered more scalable than IntServ, since no bandwidth is reserved in advance of the actual transmission.
I think that's enough for today! Enjoy your day, keep getting ready for those new CCNA certifications, and I'll see you Monday!
To your success,
Chris Bryant
CCIE #12933
http://www.thebryantadvantage.com/
The Bryant Advantage, 9429 Apple Blossom Drive, Mechanicsville, VA 23116, USA
| To unsubscribe or change subscriber options visit: http://www.aweber.com/z/r/?zMxsnEyMtCyMnBzsHAwMtEa0zGzMTBwMrA== |
