Device Management

Question 1

How to configure basic netflow?

Answer 1

int fa 0/0
ip flow [ingress|egress]
exit
ip flow-export source lo 0
ip flow-export version [5|9]
ip flow-export destination <collector-ip> 5000</collector-ip>

Question 2

Where is the information tracked by NetFlow stored?

Answer 2

In a flow cache in the router’s memory

The flow cache allows for efficient data retrieval and analysis.

Question 3

What does the command ip flow-export destination specify?

Answer 3

The NetFlow collector’s IP address is 192.168.1.50 and communication should be done over UDP port 5000

This command is used to configure the destination for NetFlow data export.

Question 4

What command can be issued at a router’s CLI prompt to produce a summary of flow information?

Answer 4

show ip cache flow

This command provides insights into the flow of data through the router.

Question 5

What command can you use to verify the export source and destination details?

Answer 5

show ip flow export

This command provides information about the NetFlow export settings.

Question 6

What command is used to verify the NetFlow-enabled interfaces?

Answer 6

show ip flow interface

This command helps in checking the direction in which traffic is being captured.

Question 7

What three components in Flexible Netflow do you need to configure?

Answer 7

flow exporter, flow record, flow monitor

flow monitor is applied to an interface (input or output)

Question 8

What does Flexible NetFlow require to be enabled for IPv4 and IPv6?

Answer 8

CEF (Cisco Express Forwarding)

CEF is necessary for the operation of NetFlow in both IPv4 and IPv6 environments.

Question 9

For IPv4, which command is required to enable CEF?

Answer 9

ip cef

This command is essential for using NetFlow with IPv4.

Question 10

For IPv6, which command is required to enable CEF?

Answer 10

ipv6 cef

This command is essential for using NetFlow with IPv6.

Question 11

What do flow records define?

Answer 11

What will be captured

Flow records are essential for understanding the data that will be collected in a network flow.

Question 12

What does the command show ip cache flow do?

Answer 12

Shows netflow information locally

This command is used to display the flow information collected by the router.

Question 13

What does the security level noAuth do in SNMPv3?

Answer 13

Authenticates SNMP messages using a community string. No encryption provided.

snmp-server group NMS-NOAUTH v3 noauth

Uses a plaintext username to authenticate and passes all messages in plaintext

Question 14

What does the security level of auth provide in SNMP?

Answer 14

Authenticates SNMP messages using either HMAC with MD5 or SHA-1. No encryption provided.

snmp-server group NMS-AUTH v3 auth

This mode ensures message integrity but does not encrypt the messages.

Question 15

What does the security level priv provide in SNMP?

Answer 15

• Authenticates SNMP messages using either HMAC-MD5 or SHA
• Encrypts SNMP messages using DES, 3DES, or AES

snmp-server group NMS-PRIV v3 pri

This mode offers both authentication and encryption for enhanced security.

Question 16

What versions of SNMP use community strings?

Answer 16

SNMPv1 and SNMPv2c

Question 17

What command in SNMPv1/2c do you define the server to send traps to?

Answer 17

snmp-server host 10.10.10.5 version 2c NMS-RO

Question 18

What is the first step to configure SNMPv3?

Answer 18

Create group

snmp-server group NMS-GROUP v3 priv

This step involves defining a group that will have specific permissions and access levels.

Question 19

What is the second step in the configuration of SNMPv3?

Answer 19

Create user and assign it to the group

snmp-server user snmpuser NMS-GROUP v3 auth sha AuthPass123 priv aes 128 PrivPass123

This step ensures that the user has the appropriate permissions defined by the group.

Question 20

What is the third step to configure SNMPv3?

Answer 20

Configure host (NMS server) that uses that user

snmp-server host 10.10.10.10 version 3 priv snmpuser

This step involves setting up the Network Management System (NMS) to communicate with the SNMP agent using the created user.

Question 21

What is the primary purpose of BFD?

Answer 21

To quickly detect reachability failures between two routers

This helps identify network issues as soon as possible.

Question 22

BFD operates in which Layer of the OSI model?

Answer 22

Layer 3

It is used within the same Layer 3 network.

Question 23

What advantage does BFD provide in terms of network convergence?

Answer 23

Faster convergence rate

By quickly detecting reachability failures, network issues can be resolved more rapidly.

Question 24

How do you enable BFD on the interfaces participating in EIGRP?

Answer 24

Use the command: bfd interface interface-type interface-number in router EIGRP configuration mode

This command is necessary to configure Bidirectional Forwarding Detection for EIGRP interfaces.

Question 25

What command is used to set **BFD timers** on an interface-by-interface basis?

Answer 25

bfd interval [50-999] min_rx [1-999] multiplier [3-50] interface ## Footnote This command allows configuration of BFD parameters for each interface.

Question 26

The **interval value** in the BFD command identifies what?

Answer 26

How often to send a BFD packet, in milliseconds ## Footnote The interval value can range from 50 to 999 milliseconds.

Question 27

The **min_rx value** in the BFD command identifies what?

Answer 27

How long to wait to receive a BFD packet, in milliseconds ## Footnote The min_rx value can range from 1 to 999 milliseconds.

Question 28

What does the **multiplier value** in the BFD command specify?

Answer 28

How many consecutive packets not received will trigger a failure ## Footnote The multiplier value can range from 3 to 50.

Question 29

If the **min_rx value** is set to 200 and the **multiplier value** is set to 3, how long will it take to trigger a failure notification?

Answer 29

600 ms ## Footnote This is calculated as 200 ms × 3.

Question 30

What must be enabled on all participating routers for **BFD**?

Answer 30

CEF and IP routing ## Footnote These are prerequisites for the proper functioning of BFD.

Question 31

Before deploying **BFD**, what must be configured on the routers?

Answer 31

IP routing protocols supported by BFD ## Footnote This ensures compatibility and functionality of BFD with the routing protocols.

Question 32

How do you configure IP SLA for ping reachability to 10.1.100.100?

Answer 32

ip sla 2 icmp-echo 10.1.100.100 source-ip 192.168.1.11 frequency 15

Question 33

How do you configure an SLA Responder?

Answer 33

ip sla responder

Question 34

Which command is used to verify which **SLA operations** are supported on the platform?

Answer 34

show ip sla application ## Footnote This command also provides information on how many operations are configured and how many are currently active.

Question 35

What command is used to verify the **configuration values** for each **IP SLA instance**?

Answer 35

show ip sla configuration ## Footnote This command also displays the default values that were not modified.

Question 36

What command is used to display the results of the **IP SLA operations** and the statistics collected?

Answer 36

show ip sla statistics ## Footnote This command provides detailed information about the performance and results of IP SLA operations.

Question 37

What command is used to verify the operation of the **IP SLA responder**?

Answer 37

show ip sla responder ## Footnote This command allows network administrators to check the status and functionality of the IP SLA responder.

Question 38

What does **Object Tracking** enable you to do?

Answer 38

Dynamically control what occurs if the result of a tracking object is up or down ## Footnote Object Tracking is often used in various applications to monitor and respond to changes in the status of objects.

Question 39

To verify the configuration of a **tracking object**, use the _______ command.

Answer 39

show track ## Footnote This command helps in checking the status of the tracking object.

Question 40

What command is used to check the **status** of a tracking object?

Answer 40

show track ## Footnote This command provides information about the configuration and operational status of the tracking object.

Question 41

How to configure a track for IP reachability?

Answer 41

track 22 ip sla 1 reachability

Question 42

How to configure an SLA to always run?

Answer 42

ip sla schedule 1 life forever start-time now

Question 43

How to configure basic netflow to use loopback 0 as the source interface for communication to the collector?

Answer 43

The ip flow-export source lo 0 command

Question 44

How to configure basic netflow to specify that the NetFlow collector’s IP address is 192.168.1.50, and should be done over UDP port 5000?

Answer 44

ip flow-export destination 192.168.1.50 5000

Question 45

How to configure basic netflow to be applied inbound to an interface?

Answer 45

int g0/0 ip flow ingress

Question 46

How to configure basic netflow to be applied outbound to an interface?

Answer 46

int g0/0 ip flow egress

Question 47

For basic netflow, what needs to match between the router and the collector?

Answer 47

Netflow version

Question 48

How to configure basic netflow version 5?

Answer 48

ip flow-export version 5

Question 49

What show commands are used for flexible netflow?

Answer 49

show flow monitor show flow record show flow exporter show flow interface

Question 50

What show command displays where SNMPv3 traps/informs are being sent?

Answer 50

show snmp host

Question 51

Which SNMP version does not include a bulk retrieval tool?

Answer 51

SNMPv1

Question 52

What does the delay down 20 up 30 command in a track configuration do?

Answer 52

Clients tracking the static route will be notified 20 seconds after the routes goes down and 30 seconds after it comes up.

Question 53

What command displays logging messages for the same timezone as the localtime?

Answer 53

service timestamps log datetime localtime

Question 54

What command enables you to restrict the debug output for some commands?

Answer 54

debug condition

Question 55

What command displays which conditional debugs are enabled

Answer 55

show debug condition

Question 56

What syslog serverity level are emergencies?

Answer 56

0 ## Footnote This level indicates that the system cannot function at all.

Question 57

What syslog serverity level are alerts?

Answer 57

1 ## Footnote Immediate action is needed at this level.

Question 58

What syslog serverity level is critical?

Answer 58

2 ## Footnote This level represents critical conditions that require urgent attention.

Question 59

What syslog serverity level are errors?

Answer 59

3 ## Footnote This level indicates error conditions that may affect system performance.

Question 60

What syslog serverity level are warnings?

Answer 60

4 ## Footnote This level indicates warning conditions that should be monitored.

Question 61

What syslog serverity level are notifications?

Answer 61

5 ## Footnote This level represents normal but significant conditions that may require attention.

Question 62

What syslog serverity level are informational?

Answer 62

6 ## Footnote This is the default level for informational messages.

Question 63

What syslog serverity level are debugging?

Answer 63

7 ## Footnote This level is used for debugging messages during development.

Question 64

When setting a syslog level, which ones will be displayed?

Answer 64

You will get that level and everything numerically below it ## Footnote For example, setting level 6 means you will receive messages for levels 0 through 6.

Question 65

When defining a snmp-server community, what is the default read/write mode? | Is it read-write or read-only if not defined?

Answer 65

read-only

Question 66

What aaa command is disabled by default?

Answer 66

aaa authorization console

Question 67

How long will the following IP SLA run for? ip sla schedule 20 start-time 9:00:00

Answer 67

1 hour | If the life keyword isn't specified, the default is an hour