Skip to Content

Cisco Certified Network Associate 200-301 CCNA Exam Questions and Answers – Page 3

By: Author Alex Lim

Posted on  - Last updated:

Categories Exam

The latest Cisco Certified Network Associate 200-301 CCNA certification actual real practice exam question and answer (Q&A) dumps are available free, which are helpful for you to pass the Cisco Certified Network Associate 200-301 CCNA exam and earn Cisco Certified Network Associate 200-301 CCNA certification.

Exam Question 261

You have added a new router to your network using all of the default settings. You can connect to everything by IP address, but the router doesn’t seem to be resolving names to IP addresses. The DNS server is in a directly connected network.
Which of the following is most likely the problem?

A. You configured an incorrect IP address for the DNS server
B. You configured an incorrect default gateway on the router
C. You failed to execute the ip domain lookup command
D. You failed to create an IP helper address

Correct Answer:
A. You configured an incorrect IP address for the DNS server
Answer Description:
The most likely problem is that you configured an incorrect IP address for the DNS server. Although it is impossible to know without executing the show run command, the other options can all be eliminated, making this the most likely option.
Even if the router has an incorrect default gateway, or has no default gateway configured, the router should be able to connect to resources by name if it can connect to them by IP address. The gateway will only be required if the DNS server is in a network not found in the routing table of the local router. Since the network containing the DNS server is directly connected, that network is automatically in the routing table.
The ip domain lookup command is enabled by default, so it does not need to be executed. If the scenario had not stated that all defaults were in place, it could be verified with the show run command as shown below, where line 4 indicates the ip domain lookup command is disabled:
routera# show run
<Output omitted>
hostname routera
no ip domain lookup
ip domain name acme.com
ip name-server 192.31.1.6
It is not required to have an IP helper address for DNS to function for the router. It is only required by the non-routing devices connected to the router, and only for those that are not on the same network with their DHCP server.
Objective: Infrastructure Services
Sub-Objective: Troubleshoot client- and router-based DHCP connectivity issues

Exam Question 262

You are the network administrator for your company. You wanted to connect the host computers to the switches.
Which cable should you use to ensure the connectivity?

A. Straight-through cable
B. Rollover cable
C. Crossover cable
D. Serial cable

Correct Answer:
A. Straight-through cable
Answer Description:
A straight-through cable is a normal four-pair cable with the same order of pin configuration on both ends. These are usually used to connect a computer to the switch or hub’s Ethernet ports. The following table shows the pin layout of a straight-through cable:

The following table shows the pin layout of a straight-through cable:

The following table shows the pin layout of a straight-through cable:

A rollover cable, also known as rolled cable or Cisco console cable, is used to connect a computer terminal to the console port of a router. The cable pin order at one end of the cable is the reverse of the order at another end. Pin 1 is connected to pin 8, pin 2 to pin 7, and so on.
A crossover cable is used to connect two similar devices such as a computer to computer or a switch to a switch, and a computer to a router’s Ethernet port.
A serial cable is used on a router’s wide area network (WAN) interface to connect to the serial ports. Cisco serial cables generally have a male DB-25 connector on one end and a female DB-25 connector on the other.
Objective: LAN Switching Fundamentals
Sub-Objective: Troubleshoot interface and cable issues (collisions, errors, duplex, speed)

Exam Question 263

Which protocol is responsible for negotiating and maintaining Point-to-Point Protocol (PPP) connections?

A. LCP
B. NCP
C. BRI
D. ISDN

Correct Answer:
A. LCP
Answer Description:
Link Control protocol (LCP) has the primary responsibility of negotiating and maintaining a PPP connection. LCP, defined in Request for Comments (RFCs) 1548 and 1570, has the primary responsibility to establish, configure, authenticate, and test a PPP connection. LCP negotiates the following when setting up a PPP connection:

  • Authentication method used (PAP or CHAP), if any
  • Compression algorithm used (Stacker or Predictor), if any
  • Callback phone number to use, if defined
  • Multilink; other physical connections to use, if configured

The ability to utilize compression, authentication, and multilink are three options that make PPP a popular choice for Layer 2 encapsulation over a WAN link.
Network Control Protocol (NCP) defines how the two PPP peers negotiate with network layer protocols, such as IP and IPX, will be used across the PPP connection. LCP is responsible for negotiating and maintaining a PPP connection whereas NCP is responsible for negotiating upper-layer protocols that will be carried across the PPP connection.
In summary, the three steps in the establishment of a PPP session are:

  • Link establishment phase
  • Optional authentication phase
  • Network layer protocol phase

Basic Rate Interface (BRI) and Integrated Services Digital Network (ISDN) are not components of PPP, so these options are incorrect. BRI is a type of ISDN connection that contains three circuits, two 64K B or bearer channels, and one D or Delta channel. ISDN circuits are a type of WAN connection.
Objective: WAN Technologies
Sub-Objective: Configure and verify PPP and MLPPP on WAN interfaces using local authentication

Exam Question 264

What is the significance of the 1 in the following configuration?
router(config)# router eigrp 1

A. It is the process ID for EIGRP and is locally significant to this router.
B. It is the process ID for EIGRP and must be the same on all EIGRP routers.
C. It is the AS number for EIGRP and is locally significant to this router.
D. It is the AS number for EIGRP and must be the same on all EIGRP routers.

Correct Answer:
D. It is the AS number for EIGRP and must be the same on all EIGRP routers.
Answer Description:
Enhanced Interior Gateway Routing Protocol (EIGRP) configuration requires the specification of an Autonomous System (AS) number with the router eigrp command. Any number can be chosen, but it must match on all EIGRP routers in the domain. This value may appear to be is similar to one used in enabling OSPF, which demands a process ID number but that value is locally significant to each router and need not match on each router.
The syntax of this command is router eigrp [autonomous-system]. Therefore, the 1 in the example indicates an Autonomous System (AS) number, not a process ID.
The Autonomous System (AS) number is not locally significant to each router, and must match on all EIGRP routers.
Objective: Routing Fundamentals
Sub-Objective: Configure, verify, and troubleshoot EIGRP for IPv4 (excluding authentication, filtering, manual summarization, redistribution, stub)

Exam Question 265

You need to set the Telnet password to “john” on a Cisco router. Which set of commands would you use?

A. Router(config)#line vty 0 4
Router(config-line)#login
Router(config-line)#password john
B. Router(config)#line con 0
Router(config-line)#login
Router(config-line)#password john
C. Router(config)#line vty 0 4
Router(config-line)#login
Router(config-line)#enable secret john
D. Router(config)#line con 0
Router(config-line)#login
Router(config-line)#enable password john

Correct Answer:
A. Router(config)#line vty 0 4
Router(config-line)#login
Router(config-line)#password john
Answer Description:
The set of commands which would be used to configure the Telnet password to “john” on a Cisco router is:
Router(config)#line vty 0 4
Router(config-line)#login
Router(config-line)#password john
The line vty command is used to configure the router to enable Telnet access. By using this command, the router can be configured to accept one or more Telnet sessions.
The login and password parameters are the line configuration commands used to configure the password. The password command specifies the password and the login command instructs the router to require the password. By default, the login parameter is present in the configuration of the VTY lines. Because its presence indicates that a password is required for connecting to the VTY lines, if a password has not been configured on the VTY lines, a connection cannot be made. If an attempt were made to connect to the VTY line with the login parameter in effect and no password present, the following error message would be generated:
Router2# telnet 10.3.1.1
Trying 10.3.1.1Open
Password Required, but none set
[Connection to 10.3.1.1 closed by foreign host]
Router2#
The following set of commands would be used to configure the console password on a Cisco router, and so it is incorrect for this scenario.
Router(config)# line con 0
Router(config-line)# login
Router(config-line)# password john
The commands enable secret john and enable password john would be used to configure the enable secret password and the enable password for the router. However, they cannot be used to configure the Telnet password. Therefore, these options are incorrect.
Objective: Infrastructure Management
Sub-Objective: Configure and verify device management

Exam Question 266

Which Cisco IOS command would produce the following output?

Which Cisco IOS command would produce the following output?

Which Cisco IOS command would produce the following output?

A. show ip interface
B. show ip interface brief
C. show interfaces
D. show interface brief

Correct Answer:
C. show interfaces
Answer Description:
The output given in the question is produced with the show interfaces command. This command is used to view the statistics for the configured interfaces on the router. From the sample output, we can determine the following facts:

  • The interface has not been enabled, as indicated by the first line Serial0/0/0 is administratively down. It is not ready to for to forward packets. To enable it, the no shutdown command should be entered.
  • Line 3 shows that the subnet mask is 255.255.255.0.
  • Line 3 shows that the IP address is 134.108.28.8, a public IP address.
  • Line 6 shows that the encapsulation is HDLC, which is the default.
  • The interface is NOT connected to a LAN, because it is a serial interface.

Two fields worth mentioning in the output of the show interfaces command are the no buffer and the ignored fields. The ignored field shows the number of received packets ignored by the interface because the interface hardware ran low on internal buffers. The no buffer field shows the number of received packets discarded because there was no buffer space in the main system. When either of these two counters begins to increment, it could be the result of a broadcast storm.
Since the show interfaces command displays the up/down state of the interfaces, it is a good command for troubleshooting. For example, any time users cannot access a resource that requires them to traverse a router, it is always a good idea to use show interfaces to take a quick look at the state of the interfaces. In the example diagram below, users cannot access the resource in the network of the Acme Company from the LAN in the Ajax Company. The first step would be to execute the show interfaces command in R1 to verify functionality of the interfaces on R1.

The first step would be to execute the show interfaces command in R1 to verify functionality of the interfaces on R1.

The first step would be to execute the show interfaces command in R1 to verify functionality of the interfaces on R1.

The show ip interface command is incorrect because this command is used to view whether the interfaces configured for Internet Protocol (IP) are usable. Following is a sample output of the show ip interface command:

The show ip interface command is incorrect because this command is used to view whether the interfaces configured for Internet Protocol (IP) are usable.

The show ip interface command is incorrect because this command is used to view whether the interfaces configured for Internet Protocol (IP) are usable.

The show ip interface brief command is incorrect because this command provides an overview of all the interfaces configured for IP on the router. The following is sample output from the show ip interface brief command. It can be quite useful for troubleshooting as well. For example, if you cannot ping the Ethernet1 interface from a host on the Ethernet 0 LAN, you could determine from the output below that the Ethernet 1 interface is administratively down.
Router# show ip interface brief
Interface IP-Address OK? Method Status Protocol
Ethernet0 12.17.10.5 YES NVRAM up up
Ethernet1 unassigned YES unset administratively down down
Loopback0 12.17.20.5 YES NVRAM up up
Serial0 12.17.30.5 YES NVRAM up up
The solution here would be to enter configuration mode for the interface Ethernet 1 and enable it with the no shutdown command.
The show interface brief command is incorrect because this command is not a valid Cisco IOS command.
Objective: LAN Switching Fundamentals
Sub-Objective: Troubleshoot interface and cable issues (collisions, errors, duplex, speed)

Exam Question 267

You are a network administrator for your organization. Your organization has two Virtual LANs (VLANs) named Marketing and Production. All switches in the network have both VLANs configured on them. Switches A, C, F, and G have user machines connected for both VLANs, while switches B, D, and E have user machines connected for the Production VLAN only. (Click the Exhibit(s) button to view the network diagram.)

Switches A, C, F, and G have user machines connected for both VLANs, while switches B, D, and E have user machines connected for the Production VLAN only.

Switches A, C, F, and G have user machines connected for both VLANs, while switches B, D, and E have user machines connected for the Production VLAN only.

To reduce broadcast traffic on the network, you want to ensure that broadcasts from the Marketing VLAN are flooded only to those switches that have Marketing VLAN users.
Which Cisco switch feature should you use to achieve the objective?

A. PVST
B. RSTP
C. VTP Pruning
D. Dynamic VLANs

Correct Answer:
C. VTP Pruning
Answer Description:
The VLAN Trunking Protocol (VTP) pruning feature of Cisco VTP allows switches to dynamically delete or add VLANs to a trunk. It restricts unnecessary traffic, such as broadcasts, to only those switches that have user machines connected for a particular VLAN. It is not required to flood a frame to a neighboring switch if that switch does not have any active ports in the source VLAN. A trunk can also be manually configured with its allowed VLANs, as an alternative to VTP pruning.
All other options are incorrect because none of these features can be used to achieve the objective in this scenario.
The Per-VLAN Spanning Tree (PVST) feature allows a separate instance of Spanning Tree Protocol (STP) per VLAN. Each VLAN will have its own root switch and, within each VLAN, STP will run and remove loops for that particular VLAN.
Rapid Spanning Tree Protocol (RSTP) is an Institute of Electrical and Electronics Engineers (IEEE) standard. It reduces high convergence time that was previously required in STP implementations. It is interoperable with STP (802.1d).
With dynamic VLANs, the switch automatically assigns a switch port to a VLAN using information from the user machine, such as its Media Access Control (MAC) address or IP address. The switch then verifies information with a VLAN Membership Policy Server (VMPS) that contains a mapping of user machine information to VLANs.
Objective: LAN Switching Fundamentals
Sub-Objective: Configure, verify, and troubleshoot VLANs (normal/extended range) spanning multiple switches

Exam Question 268

You are the switch administrator for InterConn. The network is physically wired as shown in the diagram. You are planning the configuration of STP. The majority of network traffic runs between the hosts and servers within each VLAN.

You are planning the configuration of STP. The majority of network traffic runs between the hosts and servers within each VLAN.

You are planning the configuration of STP. The majority of network traffic runs between the hosts and servers within each VLAN.

You would like to designate the root bridges for VLANS 10 and 20. Which switches should you designate as the root bridges?

A. Switch A for VLAN 10 and Switch E for VLAN 20
B. Switch A for VLAN 10 and Switch B for VLAN 20
C. Switch A for VLAN 10 and Switch C for VLAN 20
D. Switch D for VLAN 10 and Switch B for VLAN 20
E. Switch E for VLAN 10 and Switch A for VLAN 20
F. Switch B for VLAN 10 and Switch E for VLAN 20

Correct Answer:
B. Switch A for VLAN 10 and Switch B for VLAN 20
Answer Description:
You should designate Switch A for VLAN 10 and Switch B for VLAN 20. The STP root bridge for a particular VLAN should be placed as close as possible to the center of the VLAN. If the majority of network traffic is between the hosts and servers within each VLAN, and the servers are grouped into a server farm, then the switch that all hosts will be sending their data to is the ideal choice for the STP root. Cisco’s default implementation of STP is called Per-VLAN Spanning Tree (or PVST), which allows individual tuning of the spanning tree within each VLAN. Switch A can be configured as the root bridge for VLAN 10, and Switch B can be configured as the root bridge for VLAN 20, resulting in optimized traffic flow for both.
None of the other switches is in the traffic flow of all data headed towards the VLAN 20 or VLAN 10 server farms, so they would not be good choices for the root bridge for either VLAN. Care should be taken when adding any switch to the network. The addition of an older, slower switch could cause inefficient data paths if the old switch should become the root bridge.
Objective: LAN Switching Fundamentals
Sub-Objective: Configure, verify, and troubleshoot STP protocols

Exam Question 269

Which command is used on the Cisco Catalyst 2950 series switch to configure a port as a VLAN trunk port?

A. switchport mode trunk
B. set trunk on
C. switchport trunk on
D. trunk mode on

Correct Answer:
A. switchport mode trunk
Answer Description:
The switchport mode trunk command is used on the Cisco Catalyst 2950 switch to configure a port as a VLAN trunk port. The syntax of the command is as follows:

Switch(config-if)# switchport mode trunk
Trunk links are required between devices in any situation where traffic from multiple VLANs will traverse the link. This is also true when using VTP on the switches and in that case, even if inter-VLAN routing is not required. For example, if two switches in a VTP domain are connected together via an access link with no router present, then when you create a new VLAN on one of the switches, it will NOT be learned by the other switch.
When you configure a trunk link, there are two choices for encapsulation: 802.1q, which is the industry standard, and ISL, which is Cisco proprietary and will only work when both ends are Cisco equipment. Both protocols perform a crucial role in inter-VLAN routing by tagging packets with the VLAN to which the packets belong.
The following commands should be issued to configure FastEthernet 0/1 to function as a VLAN trunk port and use 802.1q encapsulation:
Switch# configure terminal
Switch(config)# interface fastethernet 0/1
Switch(config-if)# switchport mode trunk
Switch(config-if)# switchport trunk encapsulation dot1q
When configuring a trunk link between a switch and switch, the above commands would be used in both switches. However, when a trunk link is configured between a router and a switch, the process is different on the router. On the router end, you must do the following:

  1. Enable the physical interface hosting the trunk link.
  2. Ensure that no IP address exists on the physical interface.
  3. Create a subinterface for each VLAN on the physical interface.
  4. Set the trunking protocol on each subinterface.
  5. Configure an IP address on each subinterface.

The command set that would create a subinterface for VLAN 10, set the trunking protocol for the subinterface, and assign the subinterface an IP address is:
Router(config)#interface fastethernet 0/0
Router(config)#no ip address
Router(config-if)#no shutdown
Router(config)-if)exit
Router(config)#interface fastethernet 0/0.1
Router(config-if)#encapsulation dot1q 10
Router(config-if)#ip address 192.168.5.1 255.255.255.0
The set trunk on, switchport trunk on , and trunk mode on commands are incorrect because these are not valid Cisco IOS commands.
Objective: LAN Switching Fundamentals
Sub-Objective: Configure, verify, and troubleshoot VLANs (normal/extended range) spanning multiple switches

Exam Question 270

What command produced the following output?

What command produced the following output?

What command produced the following output?

A. show ip process
B. show ip route
C. show ip protocols
D. show ip routing process

Correct Answer:
C. show ip protocols
Answer Description:
The show ip protocols command is used to view the current state of active routing protocols. This command is issued from Privileged EXEC mode. It has the following syntax:
Router# show ip protocols
This command does not have any parameters.
The output was not produced by the command show ip process or the show ip routing process. The show ip routing process and show ip process commands are incorrect because these are not valid Cisco IOS commands.
The output was not produced by the command show ip route. The show ip route command is is used to view the current state of the routing table. An example of the output is shown below.

The output was not produced by the command show ip route. The show ip route command is is used to view the current state of the routing table.

The output was not produced by the command show ip route. The show ip route command is is used to view the current state of the routing table.

Objective: Routing Fundamentals
Sub-Objective: Compare and contrast distance vector and link-state routing protocols