CCNP Encore

Question 1

1. Layer 2 və Layer 3 fərqi

Answer 1

Layer 2 forwarding: MAC adreslər əsasında çərçivələrin (frames) ötürülməsi.

Layer 3 forwarding: IP ünvanları əsasında paketlərin yönləndirilməsi.

Question 2

Collision və Broadcast Domains

Answer 2

Collision domain: eyni media üzərində eyni anda ötürmə cəhdi olan cihaz qrupu (hub ilə paylaşılır).

Switch collision domain-i kiçildir, router isə broadcast domain-i bölür.

Broadcast domain: eyni Layer 2 seqmentdəki bütün cihazlar eyni broadcast mesajı alır.

Question 3

MAC Address Table (CAM Table)

Answer 3

Switch MAC ünvanları və portları yadda saxlayır.

show mac address-table ilə baxılır.

Unknown unicast → ünvan tapılmayanda switch bütün portlara flood edir.

MAC məlumatları CAM (Content Addressable Memory) içində saxlanılır.

Question 4

VLAN əsasları

Answer 4

VLAN – eyni fiziki switch üzərində müxtəlif broadcast domainlər yaradır.

VLAN ID: 1–1005 (normal), 1006–4094 (extended).

VLAN 1 — default, amma təhlükəsizlik baxımından istifadə edilməməlidir.

VLAN yaratmaq:

switch(config)# vlan 10
switch(config-vlan)# name HR

Question 5

Access və Trunk portlar

Answer 5

Access port: yalnız 1 VLAN-ı daşıyır (untagged).

Trunk port: bir neçə VLAN-ı daşıyır, 802.1Q tag istifadə olunur.

Native VLAN: Trunk üzərindən keçən untagged traffic üçün VLAN (default = 1, dəyişmək tövsiyə olunur).

Question 6

ARP və Yerli Forwarding

Answer 6

ARP (Address Resolution Protocol): IP → MAC xəritələməsi.

Eyni subnetdəki cihazlar birbaşa Layer 2 ilə ünsiyyət qurur.

Fərqli subnet üçün routerə yönləndirilir (default gateway vasitəsilə).

Question 7

Routing və Packet Forwarding

Answer 7

Router IP header-i oxuyur və növbəti hop ünvanını müəyyən edir.

Layer 2 frame yenidən yazılır (source/destination MAC dəyişir).

Layer 3 TTL (Time-To-Live) hər hop-da 1 azalır.

Question 8

Cisco Express Forwarding (CEF)

Answer 8

Cisco-nun hardware-based forwarding texnologiyasıdır.

İki əsas cədvəl:

FIB (Forwarding Information Base): Routing məlumatlarını saxlayır.

Adjacency Table: MAC ünvanlarını və interfeysləri saxlayır.

CEF prosessor yükünü azaldır, performansı artırır.

Question 9

TCAM (Ternary CAM)

Answer 9

3 nəticə: 0 (false), 1 (true), X (don’t care).

ACL, QoS və yönləndirmə qaydalarının hardware səviyyəsində emalı üçün istifadə olunur.

Question 10

Forwarding Architecture növləri

Answer 10

Növ İzah
Process Switching CPU hər paketi ayrıca yönləndirir – çox yavaşdır.
CEF (Cisco Express Forwarding) Ən sürətli, default mexanizm.
Centralized Forwarding Yalnız Route Processor qərar verir.
Distributed Forwarding Hər line card öz forwarding qərarını verir.

Question 11

Layer 2 Forwarding Concepts

Answer 11

Switch learns source MAC addresses → builds MAC table.

For unknown destination → unknown unicast flooding.

Broadcast MAC FF:FF:FF:FF:FF:FF floods to all ports (same VLAN).

Switch = multiple collision domains, one broadcast domain per VLAN.

Commands:

show mac address-table

clear mac address-table dynamic

Question 12

Collision Domains

Answer 12

One device transmits at a time in same segment.

Hub: single collision domain.

Switch: each port = separate collision domain.

Router: breaks broadcast domains.

Question 13

Broadcast Domains

Answer 13

All devices receiving Layer 2 broadcasts.

Broadcasts don’t cross Layer 3 boundaries.

Each VLAN = one broadcast domain.

Question 14

VLAN Essentials

Answer 14

IEEE 802.1Q adds 4-byte tag:

TPID (0x8100)

PCP (Priority 3 bits)

DEI (1 bit)

VLAN ID (12 bits → 0-4095)

VLAN ID Ranges:

1 (Default) – avoid for data.

2–1001 (Normal range).

1002–1005 (Reserved).

1006–4094 (Extended range)

Question 15

Access vs Trunk Ports

Answer 15

Type Function Command
Access One VLAN only; no tags. switchport mode access
switchport access vlan 10
Trunk Multiple VLANs; 802.1Q tagged. switchport mode trunk
switchport trunk allowed vlan 1,10,20
Native VLAN Carries untagged frames (default = 1). switchport trunk native vlan 99

Best practice: change native VLAN from 1 → unused VLAN.

Verify Trunk: show interfaces trunk.

Question 16

Layer 2 Diagnostics

Answer 16

show mac address-table [vlan x | address xx]

show interfaces switchport

show interfaces status

Question 17

Layer 3 Forwarding Basics

Answer 17

Local Forwarding: ARP maps IP → MAC; stays in same subnet.

Remote Forwarding: needs routing (default gateway).

ARP commands: show ip arp, clear ip arp.

Packet process:

Source checks destination IP network.

Finds next-hop MAC (via ARP).

Sends to router.

Router rewrites MAC (header rewrite), decrements TTL, recalculates checksum.

Question 18

IP Address Assignment

Answer 18

IPv4: ip address 10.1.1.1 255.255.255.0

IPv6: ipv6 address 2001:db8::1/64

Secondary IPv4: ip address 172.16.1.1 255.255.255.0 secondary

Show IPs: show ip interface brief, show ipv6 interface brief.

Question 19

Subinterfaces & SVIs

Answer 19

Router Subinterface (Router-on-a-Stick):

interface G0/0.10
encapsulation dot1Q 10
ip address 10.10.10.1 255.255.255.0

SVI (Switched Virtual Interface): VLAN-based L3 interface.

interface vlan 10
ip address 10.10.10.1 255.255.255.0
no shutdown

SVI up only if at least one access port in that VLAN is active.

Question 20

Routed Switch Ports

Answer 20

Converts Layer 2 port to Layer 3:

interface gi1/0/14
no switchport
ip address 10.20.20.1 255.255.255.0

Used for point-to-point routing links between switches.

Question 21

Forwarding Architectures

Answer 21

Process Switching CPU handles every packet (slow).
Fast Switching Cache based (old).
CEF (Cisco Express Forwarding) Uses FIB & Adjacency Table for fast, deterministic forwarding (default).
Centralized Forwarding One CPU (Route Processor) does forwarding decisions.
Distributed Forwarding Each line card has local ASIC / NPU forwarding.

Question 22

Cisco Express Forwarding (CEF)

Answer 22

FIB (Forwarding Information Base): built from routing table (RIB).

Adjacency Table (AIB): next-hop MAC & interface info from ARP.

Glean Adjacency: incomplete entry → CPU processing.

CEF Benefits:

Deterministic & hardware-based.

Fast reroute support.

Reduces CPU load.

Question 23

Ternary Content Addressable Memory (TCAM)

Answer 23

Performs parallel matches → result = 0 (true), 1 (false), X (don’t care).

Used for ACLs, QoS, Routing lookups.

VMR format: Value, Mask, Result.

Multiple TCAMs allow security, QoS, and L3 decisions in hardware.

Question 24

Software CEF vs Hardware CEF

Answer 24

Type Description
Software CEF Performed by CPU. FIB + Adjacency Tables in RAM.
Hardware CEF Performed in ASICs/NPUs for line-rate forwarding.
dCEF (Distributed CEF) Line cards contain local FIB/AIB copies.

Question 25

SDM Templates (Switching Database Manager)

Answer 25

Defines how TCAM memory is divided (L2 vs L3 vs QoS vs Security). Common templates: sdm prefer vlan – for Layer 2 networks. sdm prefer advanced – for L3/routing features. Apply & reload switch after changing. Verify: show sdm prefer.

Question 26

Quick Tips for Exam

Answer 26

Default MAC aging time: 300 s. Default Forward delay: 15 s. Native VLAN mismatch triggers CDP warnings. CEF = default switching mechanism on modern Cisco devices. ARP table populated dynamically via broadcasts. CAM → L2, TCAM → L3/ACL/QoS functions.