CCNA – VLAN Questions
Here you will find answers to VLAN Questions
If you are not sure about VLAN, please read my VLAN tutorial.
Question 1
Refer to the exhibit. A network associate needs to configure the switches and router in the graphic so that the hosts in VLAN3 and VLAN4 can communicate with the enterprise server in VLAN2. Which two Ethernet segments would need to be configured as trunk links? (Choose two)
A. A
B. B
C. C
D. D
E. E
F. F
Answer: C F
Explanation
The link between the switches and the link between switch & router should be configured as trunks. Other links (connected to hosts) should be configured as access links.
Question 2
Which three statements are typical characteristics of VLAN arrangements? (Choose three)
A. A new switch has no VLANs configured.
B. Connectivity between VLANs requires a Layer 3 device.
C. VLANs typically decrease the number of collision domains.
D. Each VLAN uses a separate address space.
E. A switch maintains a separate bridging table for each VLAN.
F. VLANs cannot span multiple switches.
Answer: B D E
Explanation
By default, all ports on a new switch belong to VLAN 1 (default & native VLAN). There are also some well-known VLANs (for example: VLAN 1002 for fddi-default; VLAN 1003 for token-ring…) configured by default -> A is not correct.
To communicate between two different VLANs we need to use a Layer 3 device like router or Layer 3 switch -> B is correct.
VLANs don’t affect the number of collision domains, they are the same -> C is not correct. Typically, VLANs increase the number of broadcast domains.
We must use a different network (or sub-network) for each VLAN. For example we can use 192.168.1.0/24 for VLAN 1, 192.168.2.0/24 for VLAN 2 -> D is correct.
A switch maintains a separate bridging table for each VLAN so that it can send frame to ports on the same VLAN only. For example, if a PC in VLAN 2 sends a frame then the switch look-ups its bridging table and only sends frame out of its ports which belong to VLAN 2 (it also sends this frame on trunk ports) -> E is correct.
We can use multiple switches to expand VLAN -> F is not correct.
Question 3
By default, each port in a Cisco Catalyst switch is assigned to VLAN1. Which two recommendations are key to avoid unauthorized management access? (Choose two)
A. Create an additional ACL to block the access to VLAN 1.
B. Move the management VLAN to something other than default.
C. Move all ports to another VLAN and deactivate the default VLAN.
D. Limit the access in the switch using port security configuration.
E. Use static VLAN in trunks and access ports to restrict connections.
F. Shutdown all unused ports in the Catalyst switch.
Answer: B F
Question 4
Which two benefits are provided by creating VLANs? (Choose two)
A. added security
B. dedicated bandwidth
C. provides segmentation
D. allows switches to route traffic between subinterfaces
E. contains collisions
Answer: A C
Question 5
Which two link protocols are used to carry multiple VLANs over a single link? (Choose two)
A. VTP
B. 802.1q
C. IGP
D. ISL
E. 802.3u
Answer: B D
Explanation
Cisco switches support two trunking protocols 802.1q & ISL. 802.1q is an open standard and is thus compatible between most vendors’ equipment while Inter-Switch Link (ISL) is Cisco proprietary.
Question 6
A switch is configured with all ports assigned to vlan 2 with full duplex FastEthernet to segment existing departmental traffic. What is the effect of adding switch ports to a new VLAN on the switch?
A. More collision domains will be created.
B. IP address utilization will be more efficient.
C. More bandwidth will be required than was needed previously.
D. An additional broadcast domain will be created.
Answer: D
Question 7
Which two statements about the use of VLANs to segment a network are true? (Choose two)
A. VLANs increase the size of collision domains.
B. VLANs allow logical grouping of users by function.
C. VLANs simplify switch administration.
D. VLANs enhance network security.
Answer: B D
Question 8
Cisco Catalyst switches CAT1 and CAT2 have a connection between them using ports Fa0/13. An 802.1Q trunk is configured between the two switches. On CAT1, VLAN 10 is chosen as native, but on CAT2 the native VLAN is not specified. What will happen in this scenario?
A. 802.1Q giants frames could saturate the link.
B. VLAN 10 on CAT1 and VLAN 1 on CAT2 will send untagged frames.
C. A native VLAN mismatch error message will appear.
D. VLAN 10 on CAT1 and VLAN 1 on CAT2 will send tagged frames.
Answer: C
Explanation
A “native VLAN mismatch” error will appear by CDP if there is a native VLAN mismatch on an 802.1Q link. “VLAN mismatch” can cause traffic from one vlan to leak into another vlan.
Question 9
Which two statements describe the Cisco implementation of VLANs? (Choose two)
A. VLAN 1 is the default Ethernet VLAN.
B. CDP advertisements are only sent on VLAN 1002.
C. By default, the management VLAN is VLAN 1005.
D. By default, the switch IP address is in VLAN 1005.
E. VLANs 1002 through 1005 are automatically created and cannot be deleted.
Answer: A E
Question 10
What are three advantages of VLANs? (Choose three)
A. VLANs establish broadcast domains in switched networks.
B. VLANs utilize packet filtering to enhance network security.
C. VLANs provide a method of conserving IP addresses in large networks.
D. VLANs provide a low-latency internetworking alternative to routed networks.
E. VLANs allow access to network services based on department, not physical location.
F. VLANs can greatly simplify adding, moving, or changing hosts on the network.
Answer: A E F
Taking CCNA this Saturday. Please send recent dups to tinmarjs@gmail.com
Thank you.
Q.2 what is the bridging table , does it have other names ? , is it the vlan table or mac address table?
@moroln
To decide whether to forward a frame, the switch uses a dynamically built table called a bridge table or MAC address table.
By default, each port in a Cisco Catalyst switch is assigned to VLAN1. Which two recommendations are key to avoid unauthorized management access? (Choose two)
A. Create an additional ACL to block the access to VLAN 1.
B. Move the management VLAN to something other than default.
C. Move all ports to another VLAN and deactivate the default VLAN.
D. Limit the access in the switch using port security configuration.
E. Use static VLAN in trunks and access ports to restrict connections.
F. Shutdown all unused ports in the Catalyst switch.
Answer: B F
Why its not D instead of F? can anybody Xallax or 9tut clarify?
@ryan nz
bz shutdown ports is safe option so unauthorized person cannot access that port.
passed CCNA today! eigrp, vtp, acl2!
@ Ryan
D. Limit the access in the switch using port security configuration.
This sentence means that you’re restricting the access to a limited PCs. It’ll be true if you’re using the switch for office LAN.
But what if you’re using the switch to provide internet to your customers ?
If the customer changes its router, his mac address will be blocked, if port security configuration is done.
Further more the question was about VLAN. So we must find an answer related to VLAN.
congrats ako
Whats your score ?
@RYAN
Shuting down the unused ports is an easier way than configuring port security on the interfaces, and then removing again.
Can we go revise mode in exam? I mean is there a back button on exam i heard its one go is it correct?
@umesh: No you can’t.
HOw many questions are in the exam? May be 45-55 ? And the exam is for how long ?
pls i need d latest dump for my exam, temitayoyewole@yahoo.com
please send me the CCNA dumps magednasr@gmail.com
Question 10)
B. VLANs utilize packet filtering to enhance network security
Sitches filter packets based on the vlan id, which is one of the main goals of vlans – to improve security. Not sure about this question.
Vlans certainly don’t simplify adding, moving or changing hosts. If there was only one vlan in a network, this would be much simpler, so they make it more complicated.
DID IT!!…907…thx 9tut!!!!..CCNA certified….tons of questions from this site…read from top to bottom every question, because you will not know what pops up…q5 and 7 on exam….good luck to all…can’t stress enough…read EVERY question on this site…
hi friends m going to give the CCNA exam could u tell me about lab please.
my e-mail id- nileshdubey90@gmail.com
please i need the latest dumps, have exam this month. send it to asholet98@hotmail.com
Thanks guys
Just cleared my exam with a perfect perfomance (1000/1000)…..GRATITUDES: First and foremost to the almighty God for everythng he has been since i started preparing for this exam abt a year ago! the Todd lamlle (6th edition), this book gave me the foundation i needed and i consider myself one of the fastest subnetting geek thanks to Todd’s chapter on subnetting…then seriously, who wud forget this guy (9tut) thanks alot man,i finished my exam 40 minutes before time thanks to the speed you gave me in simulations…examcollection, thanks alot guys i ddint see any qn that i hadnt met in the dumps before, then the CBT nuggets videos….they cleared (enhanced) all of the concepts i have learned from all of the materials i have already mentioned! thank you all so much…..i will DONATE when i get my credit card! keep the good work going 9tut
ABOUT MY EXAM:
I had total of 50 questions….
Had three simulations….ACL2, same as here at 9tut but modified as the third table of modifications above and i was dealing with host B plus different IP addresses, EIGRP almost the same as here, had to change the AS in router Home 2 from somethng 21 to 221 and add the appropriate networks also i had to delete and add some networks from router Home 1 (central router) and finaly the VTP…same as here just different question to follow the same procedures in resolving
NB: i ddnt see anythng that i had not come across before
for any other enquiries find me at ropamson@gmail.com …..best of luck for everybody working on CCNA
Hi, I’m confused, when i createad vlans, it will increase or decrease the domian collition?
jeje i found the answer in the second part :
When using VLAN the number and size of collision domains remain the same -> A is not correct.
:)
@ruban
more vlans = more broadcast domains = more collision domains (this is good)
Hi Xallax, thank you for the answer,
Mmmm if you say that, why in the Q8 the opcion “A” isn’t correct??
thanks!
@ruban
the frames don’t get returned to sender.
these frames don’t remain on the link in stand-by… they are dropped instantly if they don’t match the VLAN criterion at the destination.
Could you please someone send me the last dump to hamid.a@me.com
My Ccna exam will be tomorrow
11th of October 2012
I wish to pass it
Pray for me pls
Hi, need help on this…..I connected three switches(all switches were on the same domain) and made one the VTP Server whiles the rest were clients. I then made a different Switch also in a server mode with higher Revision No. than the server on the LAN. I then connect the new VTP server with higher revision no. to the LAN. I realized instead of new server over-riding the vlan databases on the LAN, the two servers merged their databases…….any reason?
plz send me d ccna dumps,i have my exam coming up real soon.my email address is chinazorojimma@yahoo.com or longmanpeters@gmail.com
q 10
i think answer should be BEF instead of AEF. because vlan simply devides broadcast domain do not establish it.
@xalax
no. of vlans equals no. of broadcast domains. but collision domain will still be the same, not “more,” meaning vlans are not mutually exclusive to collision domain.
in a switch, each port is its own collision domain. so in a 24-port switch assigned to 2 vlans (vlan 1 included), it will generate 2 broadcast domains but the collision domain will still remain to 24 (assuming all ports are connected to a host)
@bench
in a switched environment, yes. i agree with you :)
@xallax
thanks for confirming that concept.
hi friend i have my ccna exam on November 30th. so please send me some ccna dumps. pls.
hi friend i have my ccna exam on November 30th. so please send me some ccna dumps. pls.
my email address is hilmi666@yahoo.com
hai hilmi..
u prepare any dumps it should be come under the 9tut question only..so u prepared well all the question and answers in 9tut its enough to pass the ccna exam..and practice the simulation also…
Can someone pls help with the question Kamikaze asked?
Q.10, B. VLANs utilize packet filtering to enhance network security.
Why is this not a correct option since vlans break up broadcast domain and should therefore filter out packets not meant for the network of that particular vlan?
hai sayjoy..
packet filtering happen only router not in switch..the technical word is frame not packet..so hence it’s wrong..refer osi model
for more help
Thanks suresh
send the latest dumbs to:eddymoyo87@gmail.com
TY 9tut.
Today I have passed the CCNA. (860/825)
50 questions 3 labs (VTP, EIGRP, ACL). 35 from 9tut.
Also thanks a lot Brar and Sekhar (still valid from examcollection)
Ty again 9tut
from here Q 1
Q: What is the benefit of segmenting a network with a router into two different segments called segment one and segment two?
A. It increases the number of collisions.
B. It decreases the number of broadcast domains.
C. It connects segment one’s broadcast to segment two.
@9tut
I am going to give exam in next month,will these be valid for that time,plz confirm me
Thanks in advance
Took the CCNA on Dec 28th, failed with a score of 630. Taking it over on Jan 5th, my sims were vtp, acl2, & EIGRP
Could you please someone send me the last dump to swbandara@hotmail.com
have a doubt regarding Q 10.
why option B is not included in answer
while same was chosen in Q7 answer.(D. VLANs enhance network security)
B. VLANs utilize packet filtering to enhance network security.
cab anybdy clear the doubt??
with reference to Q10, maybe the reason is word ‘packet’? and vlans filter.. ‘frames’?
I am as well confused with question 10, why B is not included on the answers?
Akash, VLANs are a layer 2 function which are based upon the additional of a VLAN header within the layer 2 frame. When it mentions VLAN as a packet filtering function this is not correct as no Network layer/IP addresses are involved within VLANs.
Question 6?? Every port on a switch is it’s own collision domain, correct. Every VLAN is it’s own broadcast domain, correct. How can adding a port to a vlan make an ADDITIONAL broadcast domain. The vlan is the broadcast domain, adding ports to it won’t make another. Or am I wrong. Thanks.
Ignore, I just realized they said NEW vlan in the question. Sorry, and good luck to all!