CCNA, CCNP, and Cisco Security Training Questions: Configuring Multiple Interfaces And More! — CCIE Training

CCNA, CCNP, and Cisco Security Training Questions: Configuring Multiple Interfaces And More!

Article by Chris Bryant, CCIE #12933

Here are some free Cisco certification exam practice questions to help you be ready for total success on exam day! Answers are at the bottom of the page. Enjoy!

CCNA Certification And CCENT Certification:

You want to hardcode the first 12 ports on a Cisco switch to all run at 100 MBPS and full-duplex. What single command will allow you to do this?

CCNA Security Certification / CCNP ISCW Exam:

What’s the difference between stateful and stateless packet filtering?

CCNP Certification / BSCI Exam:

Which of the following does NOT have to match between prospective OSPF neighbors?

A. Process ID

B. Hello timer

C. Dead timer

D. Stub flag setting

CCNP Certification / BCMSN Exam:

Which of the following describes the default setting for DHCP Snooping?

A. It’s off.

B. It’s on.

C. When it’s active, all interfaces are untrusted.

D. When it’s active, all interfaces are trusted.

E. When it’s active, trunking interfaces are trusted and all others are untrusted.

CCNP / ONT Exam:

What is the full command to configure cRTP on the following interface?

R1(config)#int serial0R1(config-if)#encap frameR1(config-if)#

Here are the answers!

CCNA / CCENT: Answer: First, go into interface range configuration mode with the interface range command:

SW1(config)#interface range fast 0/1 – 12SW1(config-if-range)#

The commands you enter at this point will be added to all interfaces in that range. You can enter the speed 100 and duplex full commands here to have all interfaces in that range set to those values.

CCNA Security / ISCW Exam: Answer: Stateless packet filtering is generally referred to simply as packet filtering. Packet filtering works much like an ACL. It’s common to filter packets on one or more of the following:

1. Source IP address or port number2. Destination IP address or port number3. Protocol

Sounds great, right? There are some problems with this technique. Packet filtering only considers the values in the ACL – there’s no attempt to determine if this packet is part of an already-existing connection, or attempting to create one. With protocols that use random port numbers at times – FTP, for example – there can be some real problems establishing a connection.

Stateful packet filtering does monitor the connection state, and that’s particularly important when it comes to preventing TCP attacks. A stateful firewall will not only monitor the state of the TCP connection, but also the sequence numbers. Stateful firewalls accomplish this by keeping a session table, or state table.

BSCI: Answer: D. Two OSPF routers can be using different process numbers and still become neighbors.

BCMSN: Answer: A, C. DHCP Snooping is off by default, and when you enable it, all interfaces are untrusted.

ONT: Answer: To configure RTP Header Compression on this interface, enter the ip rtp header-compression command. In this example, IOS Help displays our options with this command.

R3(config)#int s0/0/0R3(config-if)#ip rtp header-compression ?

ietf-format Compressing using IETF formatiphc-format Compress using IPHC formatpassive Compress only for destinations which send compressed headers

R3(config-if)#ip rtp header-compression

Look for more free Cisco training questions on my website, along with fully-illustrated tutorials!

Chris Bryant, CCIE #12933, is the owner of The Bryant Advantage (, home of free CCNA tutorials!

Know someone that could use this CCIE Training information? Send this page by clicking on the SHARE button below:

Bookmark and Share

Leave a Comment

Before you click Submit, solve this math puzzle captcha: *

Previous post:

Next post: