CCNP Enterprise Certification Study Guide (2020)
CCNP Enterprise Certification Study Guide (2020) is the ultimate study tool to help you pass your exam on the first try.
Victoria Thompson
Contributor
4.4
108
about 2 months ago
Preview (31 of 679)
Sign in to access the full document!
CCNP®
Enterprise Certification Study
Guide
Ben Piper
Enterprise Certification Study
Guide
Ben Piper
Loading page 4...
Copyright © 2020 by John Wiley & Sons, Inc., Indianapolis, Indiana
ISBN: 978-1-119-65875-7
ISBN: 978-1-119-65882-5 (ebk.)
ISBN: 978-1-119-65880-1 (ebk.)
Manufactured in the United States of America
No part of this publication may be reproduced, stored in a retrieval system or transmitted in
any form or by any means, electronic, mechanical, photocopying, recording, scanning or
otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright
Act, without either the prior written permission of the Publisher, or authorization through
payment of the appropriate per-copy fee to the Copyright Clearance Center, 222 Rosewood
Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 6468600. Requests to the Publisher for
permission should be addressed to the Permissions Department, John Wiley & Sons, Inc., 111
River Street, Hoboken, NJ 07030, (201) 748-6011, fax (201) 748-6008, or online at
http://www.wiley.com/go/permissions.
Limit of Liability/Disclaimer of Warranty: The publisher and the author make no
representations or warranties with respect to the accuracy or completeness of the contents of
this work and specifically disclaim all warranties, including without limitation warranties of
fitness for a particular purpose. No warranty may be created or extended by sales or
promotional materials. The advice and strategies contained herein may not be suitable for
every situation. This work is sold with the understanding that the publisher is not engaged in
rendering legal, accounting, or other professional services. If professional assistance is
required, the services of a competent professional person should be sought. Neither the
publisher nor the author shall be liable for damages arising herefrom. The fact that an
organization or Web site is referred to in this work as a citation and/or a potential source of
further information does not mean that the author or the publisher endorses the information
the organization or Web site may provide or recommendations it may make. Further, readers
should be aware that Internet Web sites listed in this work may have changed or disappeared
between when this work was written and when it is read.
For general information on our other products and services or to obtain technical support,
please contact our Customer Care Department within the U.S. at (877) 762-2974, outside the
U.S. at (317) 572-3993 or fax (317) 572-4002.
Wiley publishes in a variety of print and electronic formats and by print-on-demand. Some
material included with standard print versions of this book may not be included in e-books or
in print-on-demand. If this book refers to media such as a CD or DVD that is not included in
the version you purchased, you may download this material at http://booksupport.wiley.com.
For more information about Wiley products, visit www.wiley.com.
Library of Congress Control Number: 2020935632
TRADEMARKS: Wiley, the Wiley logo, and the Sybex logo are trademarks or registered
trademarks of John Wiley & Sons, Inc. and/or its affiliates, in the United States and other
countries, and may not be used without written permission. CCNP is a registered trademark of
Cisco Technology, Inc. All other trademarks are the property of their respective owners. John
Wiley & Sons, Inc. is not associated with any product or vendor mentioned in this book.
ISBN: 978-1-119-65875-7
ISBN: 978-1-119-65882-5 (ebk.)
ISBN: 978-1-119-65880-1 (ebk.)
Manufactured in the United States of America
No part of this publication may be reproduced, stored in a retrieval system or transmitted in
any form or by any means, electronic, mechanical, photocopying, recording, scanning or
otherwise, except as permitted under Sections 107 or 108 of the 1976 United States Copyright
Act, without either the prior written permission of the Publisher, or authorization through
payment of the appropriate per-copy fee to the Copyright Clearance Center, 222 Rosewood
Drive, Danvers, MA 01923, (978) 750-8400, fax (978) 6468600. Requests to the Publisher for
permission should be addressed to the Permissions Department, John Wiley & Sons, Inc., 111
River Street, Hoboken, NJ 07030, (201) 748-6011, fax (201) 748-6008, or online at
http://www.wiley.com/go/permissions.
Limit of Liability/Disclaimer of Warranty: The publisher and the author make no
representations or warranties with respect to the accuracy or completeness of the contents of
this work and specifically disclaim all warranties, including without limitation warranties of
fitness for a particular purpose. No warranty may be created or extended by sales or
promotional materials. The advice and strategies contained herein may not be suitable for
every situation. This work is sold with the understanding that the publisher is not engaged in
rendering legal, accounting, or other professional services. If professional assistance is
required, the services of a competent professional person should be sought. Neither the
publisher nor the author shall be liable for damages arising herefrom. The fact that an
organization or Web site is referred to in this work as a citation and/or a potential source of
further information does not mean that the author or the publisher endorses the information
the organization or Web site may provide or recommendations it may make. Further, readers
should be aware that Internet Web sites listed in this work may have changed or disappeared
between when this work was written and when it is read.
For general information on our other products and services or to obtain technical support,
please contact our Customer Care Department within the U.S. at (877) 762-2974, outside the
U.S. at (317) 572-3993 or fax (317) 572-4002.
Wiley publishes in a variety of print and electronic formats and by print-on-demand. Some
material included with standard print versions of this book may not be included in e-books or
in print-on-demand. If this book refers to media such as a CD or DVD that is not included in
the version you purchased, you may download this material at http://booksupport.wiley.com.
For more information about Wiley products, visit www.wiley.com.
Library of Congress Control Number: 2020935632
TRADEMARKS: Wiley, the Wiley logo, and the Sybex logo are trademarks or registered
trademarks of John Wiley & Sons, Inc. and/or its affiliates, in the United States and other
countries, and may not be used without written permission. CCNP is a registered trademark of
Cisco Technology, Inc. All other trademarks are the property of their respective owners. John
Wiley & Sons, Inc. is not associated with any product or vendor mentioned in this book.
Loading page 5...
I dedicate this book to the Lord Jesus Christ through Whom all things
were created and in Whom all things hold together
were created and in Whom all things hold together
Loading page 6...
Acknowledgments
I’d like to thank the following people who helped create this CCNP
Enterprise Certification Study Guide: Exam 350-401. A special thanks
to Kenyon Brown, senior acquisitions editor, for the opportunity to
write this book. Thanks to John Sleeva, project editor, for pushing me
to meet my deadlines. His suggestions and edits helped make this
book more user friendly. Thanks also go to Christine O’Connor,
production editor; Pete Gaughan, content enablement manager; and
Louise Watson at Word One, proofreader. Jon Buhagiar reviewed the
chapters and questions for technical accuracy. His comments guided
by his expertise helped make this book more practical, accurate, and
well rounded.
I’d like to thank the following people who helped create this CCNP
Enterprise Certification Study Guide: Exam 350-401. A special thanks
to Kenyon Brown, senior acquisitions editor, for the opportunity to
write this book. Thanks to John Sleeva, project editor, for pushing me
to meet my deadlines. His suggestions and edits helped make this
book more user friendly. Thanks also go to Christine O’Connor,
production editor; Pete Gaughan, content enablement manager; and
Louise Watson at Word One, proofreader. Jon Buhagiar reviewed the
chapters and questions for technical accuracy. His comments guided
by his expertise helped make this book more practical, accurate, and
well rounded.
Loading page 7...
About the Author
Ben Piper is a networking and cloud consultant who has authored
multiple books including the AWS Certified Solutions Architect Study
Guide: Associate SAA-C01 Exam, Second Edition (Sybex, 2019), AWS
Certified Cloud Practitioner Study Guide: Foundational CLF-C01
Exam (Sybex, 2019), and Learn Cisco Network Administration in a
Month of Lunches (Manning, 2017). You can contact Ben by visiting
his website https://benpiper.com.
Ben Piper is a networking and cloud consultant who has authored
multiple books including the AWS Certified Solutions Architect Study
Guide: Associate SAA-C01 Exam, Second Edition (Sybex, 2019), AWS
Certified Cloud Practitioner Study Guide: Foundational CLF-C01
Exam (Sybex, 2019), and Learn Cisco Network Administration in a
Month of Lunches (Manning, 2017). You can contact Ben by visiting
his website https://benpiper.com.
Loading page 8...
CONTENTS
Cover
Acknowledgments
About the Author
Introduction
What Does This Book Cover?
Interactive Online Learning Environment and Test Bank
Exam Objectives
Objective Map
Assessment Test
Answers to Assessment Test
Chapter 1: Networking Fundamentals
The OSI Model
Layer 1: The Physical Layer
Layer 2: The Data Link Layer
Layer 3: The Network Layer
Layer 4: The Transport Layer
Summary
Exam Essentials
Review Questions
Chapter 2: Spanning Tree Protocols
The Need for Spanning Tree
VLANs and Trunking
Rapid Per-VLAN Spanning Tree
Multiple Spanning Tree
Spanning Tree Extensions
Summary
Exam Essentials
Cover
Acknowledgments
About the Author
Introduction
What Does This Book Cover?
Interactive Online Learning Environment and Test Bank
Exam Objectives
Objective Map
Assessment Test
Answers to Assessment Test
Chapter 1: Networking Fundamentals
The OSI Model
Layer 1: The Physical Layer
Layer 2: The Data Link Layer
Layer 3: The Network Layer
Layer 4: The Transport Layer
Summary
Exam Essentials
Review Questions
Chapter 2: Spanning Tree Protocols
The Need for Spanning Tree
VLANs and Trunking
Rapid Per-VLAN Spanning Tree
Multiple Spanning Tree
Spanning Tree Extensions
Summary
Exam Essentials
Loading page 9...
Exercises
Review Questions
Chapter 3: Enterprise Network Design
Physical Network Architectures
Layer 2 Design
EtherChannels
First-Hop Redundancy Protocols
Summary
Exam Essentials
Review Questions
Chapter 4: Wireless LAN (WLAN)
Radio Frequency Fundamentals
WLAN 802.11 Standards
Access Point Modes
Roaming and Location Services
Summary
Exam Essentials
Review Questions
Chapter 5: Open Shortest Path First (OSPF)
Link-State Advertisements
Neighbor Operations
Configuring OSPF
Summary
Exam Essentials
Exercises
Review Questions
Chapter 6: Enhanced Interior Gateway Routing Protocol (EIGRP)
EIGRP Fundamentals
Configuring EIGRP
Review Questions
Chapter 3: Enterprise Network Design
Physical Network Architectures
Layer 2 Design
EtherChannels
First-Hop Redundancy Protocols
Summary
Exam Essentials
Review Questions
Chapter 4: Wireless LAN (WLAN)
Radio Frequency Fundamentals
WLAN 802.11 Standards
Access Point Modes
Roaming and Location Services
Summary
Exam Essentials
Review Questions
Chapter 5: Open Shortest Path First (OSPF)
Link-State Advertisements
Neighbor Operations
Configuring OSPF
Summary
Exam Essentials
Exercises
Review Questions
Chapter 6: Enhanced Interior Gateway Routing Protocol (EIGRP)
EIGRP Fundamentals
Configuring EIGRP
Loading page 10...
Summary
Exam Essentials
Exercises
Review Questions
Chapter 7: The Border Gateway Protocol (BGP)
BGP Fundamentals
Configuring BGP
Summary
Exam Essentials
Exercises
Review Questions
Chapter 8: Network Address Translation and Multicast
Network Address Translation
Multicast
Summary
Exam Essentials
Exercises
Review Questions
Chapter 9: Quality of Service
Understanding Quality of Service
Classification and Marking
Policing
Queuing
Shaping
Summary
Exam Essentials
Exercises
Review Questions
Chapter 10: Network Virtualization
Exam Essentials
Exercises
Review Questions
Chapter 7: The Border Gateway Protocol (BGP)
BGP Fundamentals
Configuring BGP
Summary
Exam Essentials
Exercises
Review Questions
Chapter 8: Network Address Translation and Multicast
Network Address Translation
Multicast
Summary
Exam Essentials
Exercises
Review Questions
Chapter 9: Quality of Service
Understanding Quality of Service
Classification and Marking
Policing
Queuing
Shaping
Summary
Exam Essentials
Exercises
Review Questions
Chapter 10: Network Virtualization
Loading page 11...
Virtual Machines, Hypervisors, and Network Virtualization
Generic Routing Encapsulation Tunnels
IP Security
Location/ID Separation Protocol
Virtual Extensible Local Area Network
Virtual Routing and Forwarding
Summary
Exam Essentials
Exercises
Review Questions
Chapter 11: Software-Defined Networking and Network
Programmability
What Is Software-Defined Networking?
Software-Defined Access
Software-Defined WAN
Network Programmability and Automation
Summary
Exam Essentials
Exercises
Review Questions
Chapter 12: Network Security and Monitoring
Infrastructure Security
Cisco Security Products
Wireless Security
Monitoring
Summary
Exam Essentials
Exercises
Review Questions
Generic Routing Encapsulation Tunnels
IP Security
Location/ID Separation Protocol
Virtual Extensible Local Area Network
Virtual Routing and Forwarding
Summary
Exam Essentials
Exercises
Review Questions
Chapter 11: Software-Defined Networking and Network
Programmability
What Is Software-Defined Networking?
Software-Defined Access
Software-Defined WAN
Network Programmability and Automation
Summary
Exam Essentials
Exercises
Review Questions
Chapter 12: Network Security and Monitoring
Infrastructure Security
Cisco Security Products
Wireless Security
Monitoring
Summary
Exam Essentials
Exercises
Review Questions
Loading page 12...
Appendix Answers to Review Questions
Chapter 1: Networking Fundamentals
Chapter 2: Spanning Tree Protocols
Chapter 3: Enterprise Network Design
Chapter 4: Wireless LAN (WLAN)
Chapter 5: Open Shortest Path First (OSPF)
Chapter 6: Enhanced Interior Gateway Routing Protocol
(EIGRP)
Chapter 7: The Border Gateway Protocol (BGP)
Chapter 8: Network Address Translation and Multicast
Chapter 9: Quality of Service
Chapter 10: Network Virtualization
Chapter 11: Software-Defined Networking and Network
Programmability
Chapter 12: Network Security and Monitoring
Index
Online Test Bank
End User License Agreement
List of Tables
Chapter 1
Table 1.1
Table 1.2
Table 1.3
Chapter 2
Table 2.1
Chapter 3
Table 3.1
Chapter 1: Networking Fundamentals
Chapter 2: Spanning Tree Protocols
Chapter 3: Enterprise Network Design
Chapter 4: Wireless LAN (WLAN)
Chapter 5: Open Shortest Path First (OSPF)
Chapter 6: Enhanced Interior Gateway Routing Protocol
(EIGRP)
Chapter 7: The Border Gateway Protocol (BGP)
Chapter 8: Network Address Translation and Multicast
Chapter 9: Quality of Service
Chapter 10: Network Virtualization
Chapter 11: Software-Defined Networking and Network
Programmability
Chapter 12: Network Security and Monitoring
Index
Online Test Bank
End User License Agreement
List of Tables
Chapter 1
Table 1.1
Table 1.2
Table 1.3
Chapter 2
Table 2.1
Chapter 3
Table 3.1
Loading page 13...
Table 3.2
Table 3.3
Table 3.4
Chapter 4
Table 4.1
Table 4.2
Table 4.3
Chapter 8
Table 8.1
Chapter 9
Table 9.1
Table 9.2
Chapter 11
Table 11.1
Table 11.2
Chapter 12
Table 12.1
Table 12.2
List of Illustrations
Chapter 1
Figure 1.1 How layers abstract the network from an
application
Figure 1.2 At each layer, data is encapsulated in a PDU and
passed down to the n...
Figure 1.3 Layer 2 frame and layer 1 packet, structurally
identical to the revis...
Table 3.3
Table 3.4
Chapter 4
Table 4.1
Table 4.2
Table 4.3
Chapter 8
Table 8.1
Chapter 9
Table 9.1
Table 9.2
Chapter 11
Table 11.1
Table 11.2
Chapter 12
Table 12.1
Table 12.2
List of Illustrations
Chapter 1
Figure 1.1 How layers abstract the network from an
application
Figure 1.2 At each layer, data is encapsulated in a PDU and
passed down to the n...
Figure 1.3 Layer 2 frame and layer 1 packet, structurally
identical to the revis...
Loading page 14...
Figure 1.4 Early Ethernet over a shared medium compared
to Ethernet using a swit...
Figure 1.5 Simple layer 2 and layer 3 topologies
Figure 1.6 Layered representation of the network
Figure 1.7 Encapsulation of a TCP segment and IP packet
inside an Ethernet frame...
Chapter 2
Figure 2.1 Physical looped topology
Figure 2.2 Converged STP topology with SW1 as the root
Figure 2.3 Multiple VLANs over 802.1Q trunks
Figure 2.4 Converged STP topology with SW3 as the new
root
Figure 2.5 VLAN 1 topology with SW3 as root
Figure 2.6 Converged VLAN 1 topology with SW2 Gi1/0...
Figure 2.7 Multiple Spanning Tree
Figure 2.8 Physical topology for Exercise 2.1
Chapter 3
Figure 3.1 East-West traffic flow in a data center network
using the leaf...
Figure 3.2 Core, distribution, and access tiers
Figure 3.3 Two access-distribution blocks connected to the
core
Figure 3.4 Collapsed core
Figure 3.5 Switched vs. routed topology
Figure 3.6 A looped triangle topology
Figure 3.7 A looped square topology
Figure 3.8 Recommended loop-free topology
Figure 3.9 Loop-free U-topology
to Ethernet using a swit...
Figure 1.5 Simple layer 2 and layer 3 topologies
Figure 1.6 Layered representation of the network
Figure 1.7 Encapsulation of a TCP segment and IP packet
inside an Ethernet frame...
Chapter 2
Figure 2.1 Physical looped topology
Figure 2.2 Converged STP topology with SW1 as the root
Figure 2.3 Multiple VLANs over 802.1Q trunks
Figure 2.4 Converged STP topology with SW3 as the new
root
Figure 2.5 VLAN 1 topology with SW3 as root
Figure 2.6 Converged VLAN 1 topology with SW2 Gi1/0...
Figure 2.7 Multiple Spanning Tree
Figure 2.8 Physical topology for Exercise 2.1
Chapter 3
Figure 3.1 East-West traffic flow in a data center network
using the leaf...
Figure 3.2 Core, distribution, and access tiers
Figure 3.3 Two access-distribution blocks connected to the
core
Figure 3.4 Collapsed core
Figure 3.5 Switched vs. routed topology
Figure 3.6 A looped triangle topology
Figure 3.7 A looped square topology
Figure 3.8 Recommended loop-free topology
Figure 3.9 Loop-free U-topology
Loading page 15...
Figure 3.10 Loop-free inverted-U topology
Figure 3.11 Virtual switch topology
Figure 3.12 Routed access topology
Figure 3.13 EtherChannel between SW3 and SW4
Chapter 4
Figure 4.1 Representation of radio wave at 10 Hz with an
amplitude of 1...
Figure 4.2 Amplitude decreases with the square of the
distance.
Chapter 5
Figure 5.1 An OSPF topology
Figure 5.2 Layer 2 topology
Chapter 6
Figure 6.1 Simple EIGRP topology
Figure 6.2 EIGRP weighted metric formula
Figure 6.3 EIGRP layer 3 topology
Figure 6.4 Layer 2 topology
Chapter 7
Figure 7.1 BGP peers in different autonomous systems
Figure 7.2 Route propagation and loop prevention among
BGP neighbors in...
Figure 7.3 Layer 3 topology using BGP, OSPF, and EIGRP
Chapter 8
Figure 8.1 Inside versus outside networks
Figure 8.2 Static NAT
Figure 8.3 Layer 3 topology
Figure 8.4 Layer 2 topology
Figure 3.11 Virtual switch topology
Figure 3.12 Routed access topology
Figure 3.13 EtherChannel between SW3 and SW4
Chapter 4
Figure 4.1 Representation of radio wave at 10 Hz with an
amplitude of 1...
Figure 4.2 Amplitude decreases with the square of the
distance.
Chapter 5
Figure 5.1 An OSPF topology
Figure 5.2 Layer 2 topology
Chapter 6
Figure 6.1 Simple EIGRP topology
Figure 6.2 EIGRP weighted metric formula
Figure 6.3 EIGRP layer 3 topology
Figure 6.4 Layer 2 topology
Chapter 7
Figure 7.1 BGP peers in different autonomous systems
Figure 7.2 Route propagation and loop prevention among
BGP neighbors in...
Figure 7.3 Layer 3 topology using BGP, OSPF, and EIGRP
Chapter 8
Figure 8.1 Inside versus outside networks
Figure 8.2 Static NAT
Figure 8.3 Layer 3 topology
Figure 8.4 Layer 2 topology
Loading page 16...
Figure 8.5 Multicast topology
Chapter 9
Figure 9.1 Setting a QoS profile
Figure 9.2 The Platinum QoS profile
Chapter 10
Figure 10.1 L2 VM-to-VM traffic using a virtual
switching...
Figure 10.2 L2 VM-to-switch traffic using a virtual switc...
Figure 10.3 L3 VM-to-VM traffic using a virtual switch
an...
Figure 10.4 L2 VM-to-VM traffic switched internally
using...
Figure 10.5 L2 VM-to-VM traffic switched externally
using...
Figure 10.6 Underlay topology running BGP. R1 (AS
65001) and R2 (AS 650...
Figure 10.7 GRE topology
Figure 10.8 Using LISP for IP mobility
Figure 10.9 VXLAN flood-and-learn configuration using
mul...
Figure 10.10 VRF topology
Chapter 11
Figure 11.1 Scalable groups in Cisco DNA Center
Figure 11.2 Group-based access control policies in Cisco
DNA Center
Figure 11.3 Network Settings page under the Design
workflow of Cisco DNA Center
Figure 11.4 Inventory page under the Provision workflow of
Cisco DNA Center
Chapter 9
Figure 9.1 Setting a QoS profile
Figure 9.2 The Platinum QoS profile
Chapter 10
Figure 10.1 L2 VM-to-VM traffic using a virtual
switching...
Figure 10.2 L2 VM-to-switch traffic using a virtual switc...
Figure 10.3 L3 VM-to-VM traffic using a virtual switch
an...
Figure 10.4 L2 VM-to-VM traffic switched internally
using...
Figure 10.5 L2 VM-to-VM traffic switched externally
using...
Figure 10.6 Underlay topology running BGP. R1 (AS
65001) and R2 (AS 650...
Figure 10.7 GRE topology
Figure 10.8 Using LISP for IP mobility
Figure 10.9 VXLAN flood-and-learn configuration using
mul...
Figure 10.10 VRF topology
Chapter 11
Figure 11.1 Scalable groups in Cisco DNA Center
Figure 11.2 Group-based access control policies in Cisco
DNA Center
Figure 11.3 Network Settings page under the Design
workflow of Cisco DNA Center
Figure 11.4 Inventory page under the Provision workflow of
Cisco DNA Center
Loading page 17...
Figure 11.5 Fabric Infrastructure page under the Provision
workflow of Cisco DNA...
Figure 11.6 Fabric Host Onboarding page under the
Provision workflow of Cisco DN...
Figure 11.7 The Overall Health dashboard in the Assurance
workflow of Cisco DNA ...
Figure 11.8 The Application Health dashboard in the
Assurance workflow of Cisco ...
Figure 11.9 The Client Health dashboard in the Assurance
workflow of Cisco DNA C...
Figure 11.10 The vManage Network Management System
web interface
Chapter 12
Figure 12.1 Example network topology
Figure 12.2 WebAuth login page configuration
Figure 12.3 WLAN list
Figure 12.4 WLAN layer 2 configuration
Figure 12.5 RADIUS server configuration
Figure 12.6 AAA server configuration
Figure 12.7 WLAN WPA2 and 802.1X configuration
Figure 12.8 Specifying security and encryption
authentication method
Figure 12.9 Specifying user authentication mode
Figure 12.10 Setting a WPA/WPA2 preshared key
workflow of Cisco DNA...
Figure 11.6 Fabric Host Onboarding page under the
Provision workflow of Cisco DN...
Figure 11.7 The Overall Health dashboard in the Assurance
workflow of Cisco DNA ...
Figure 11.8 The Application Health dashboard in the
Assurance workflow of Cisco ...
Figure 11.9 The Client Health dashboard in the Assurance
workflow of Cisco DNA C...
Figure 11.10 The vManage Network Management System
web interface
Chapter 12
Figure 12.1 Example network topology
Figure 12.2 WebAuth login page configuration
Figure 12.3 WLAN list
Figure 12.4 WLAN layer 2 configuration
Figure 12.5 RADIUS server configuration
Figure 12.6 AAA server configuration
Figure 12.7 WLAN WPA2 and 802.1X configuration
Figure 12.8 Specifying security and encryption
authentication method
Figure 12.9 Specifying user authentication mode
Figure 12.10 Setting a WPA/WPA2 preshared key
Loading page 18...
Introduction
Networking is uniquely challenging in that it's not a single technology,
but a collection of interdependent technologies that every other aspect
of IT depends on. Without networking, there are no connected
applications and that means there are no IT employees. Even if you're
not sure that you want networking to become your permanent career,
becoming an expert at networking will open the doors for other in-
demand areas of IT, including security, software development, and
cloud computing.
Cisco's Professional Network Certifications
In 2019, Cisco announced updates to its Cisco Certified Network
Professional (CCNP) certification program. There are six professional
level certifications to choose from:
CCNP Enterprise
CCNP Data Center
CCNP Security
CCNP Service Provider
CCNP Collaboration
Cisco Certified DevNet Professional
Each certification requires passing one core exam and one
concentration exam. The core exam for the CCNP Enterprise
certification is 350-401 ENCOR, “Implementing Cisco Enterprise
Network Core Technologies.” The concentration exams let you focus
on a specific specialty, such as routing, wireless, network design,
automation, or software-defined networking (SDN). Regardless of the
concentration exam you choose, you must pass the ENCOR exam to
attain your CCNP Enterprise certification.
Is CCNP Certification Right for You?
Networking is uniquely challenging in that it's not a single technology,
but a collection of interdependent technologies that every other aspect
of IT depends on. Without networking, there are no connected
applications and that means there are no IT employees. Even if you're
not sure that you want networking to become your permanent career,
becoming an expert at networking will open the doors for other in-
demand areas of IT, including security, software development, and
cloud computing.
Cisco's Professional Network Certifications
In 2019, Cisco announced updates to its Cisco Certified Network
Professional (CCNP) certification program. There are six professional
level certifications to choose from:
CCNP Enterprise
CCNP Data Center
CCNP Security
CCNP Service Provider
CCNP Collaboration
Cisco Certified DevNet Professional
Each certification requires passing one core exam and one
concentration exam. The core exam for the CCNP Enterprise
certification is 350-401 ENCOR, “Implementing Cisco Enterprise
Network Core Technologies.” The concentration exams let you focus
on a specific specialty, such as routing, wireless, network design,
automation, or software-defined networking (SDN). Regardless of the
concentration exam you choose, you must pass the ENCOR exam to
attain your CCNP Enterprise certification.
Is CCNP Certification Right for You?
Loading page 19...
Many who attain the Cisco Certified Network Associate (CCNA) don't
go on to pursue more advanced Cisco certifications. So why should you
consider the CCNP Enterprise certification, and is it right for you? It
may be right for you if
You have a passion for networking.
You want to set yourself apart as someone who has a passion for
technology and isn't just in it for the money (although there is
plenty of that!).
You want to specialize in security, wireless, network automation,
cloud, or software-defined networking.
You enjoy tweaking the “nerd knobs” on individual technologies
just to see what will happen.
You love facing and overcoming the challenges of troubleshooting.
Study Tips
Before taking the CCNP ENCOR exam, there are a few things to keep
in mind. There's no reason that you can't pass the exam the first time.
To help you do that, I want to share with you some study tips that have
helped me pass several Cisco certification exams on the first try. One
of the neglected skills required on any Cisco exam is speed. Being able
to troubleshoot a 10-router Open Shortest Path First (OSPF) topology
is good. Taking 15 minutes to do it is not so good. I can't stress enough
the importance of spending quality time with the command-line
interface (CLI). You should spend at least 50 percent of your study
time on configuring and troubleshooting a variety of topologies and
technologies.
There's an old Latin proverb that repetition is the mother of learning.
Repetition—in terms of both study and practice—is going to be your
best friend. Understanding networking requires making connections
that aren't always obvious, and the more you practice and study, the
more opportunities your mind has to make those connections. For
years I've used SuperMemo (https://super-memory.com), a flashcard-
like program that lets you create your own question-and-answer pairs,
quizzes you, and shows you how well you're retaining the information.
go on to pursue more advanced Cisco certifications. So why should you
consider the CCNP Enterprise certification, and is it right for you? It
may be right for you if
You have a passion for networking.
You want to set yourself apart as someone who has a passion for
technology and isn't just in it for the money (although there is
plenty of that!).
You want to specialize in security, wireless, network automation,
cloud, or software-defined networking.
You enjoy tweaking the “nerd knobs” on individual technologies
just to see what will happen.
You love facing and overcoming the challenges of troubleshooting.
Study Tips
Before taking the CCNP ENCOR exam, there are a few things to keep
in mind. There's no reason that you can't pass the exam the first time.
To help you do that, I want to share with you some study tips that have
helped me pass several Cisco certification exams on the first try. One
of the neglected skills required on any Cisco exam is speed. Being able
to troubleshoot a 10-router Open Shortest Path First (OSPF) topology
is good. Taking 15 minutes to do it is not so good. I can't stress enough
the importance of spending quality time with the command-line
interface (CLI). You should spend at least 50 percent of your study
time on configuring and troubleshooting a variety of topologies and
technologies.
There's an old Latin proverb that repetition is the mother of learning.
Repetition—in terms of both study and practice—is going to be your
best friend. Understanding networking requires making connections
that aren't always obvious, and the more you practice and study, the
more opportunities your mind has to make those connections. For
years I've used SuperMemo (https://super-memory.com), a flashcard-
like program that lets you create your own question-and-answer pairs,
quizzes you, and shows you how well you're retaining the information.
Loading page 20...
What makes SuperMemo superior to flashcards is that it identifies the
information you've already retained, and it doesn't waste time
continuing to quiz you on it. That means you can safely load your
collection with hundreds of items while still using your time
efficiently.
One last tip: As you read this study guide cover to cover, keep a
running list of questions and things you're not sure about. Chances are
if you find something confusing, a lot of other people did too, and that
makes it good fodder for the exam. Be sure to visit
https://benpiper.com/encor for book resources, updates, and errata.
Prerequisites and Lab Requirements
The CCNA certification isn't required to attain the CCNP Enterprise
certification. Nevertheless, I strongly recommend that you obtain your
CCNA certification or the equivalent experience before embarking on
your CCNP Enterprise journey. Refer to the CCNA exam blueprint
(www.cisco.com/c/en/us/training-events/training-
certifications/certifications/associate/ccna.html) for a full list of topics
you should already be familiar with. Because the CCNP Enterprise is a
professional-level certification, I don't review some of the basics
covered by the CCNA such as subnetting, IPv4, and IPv6 addressing.
You'll need a virtual or physical lab, which you should already have
from your previous networking studies. Your lab should be able to
support at least eight routers and two layer 3 switches running IOS
version 15.2 or later. You should be able to configure your lab on your
own by looking at layer 2 and layer 3 diagrams. Topology diagrams
will be included in each chapter.
If your existing lab doesn't meet the requirement, Cisco Virtual
Internet Routing Lab (http://virl.cisco.com) includes virtual machine
images for a variety of switches and routers. These images are virtual
machines that run using QEMU and are light on CPU and memory, so
you don't need a beast of a server to run simulations, although more
resources always help. Other options, although not blessed by Cisco,
are GNS3 (https://gns3.com) and EVE-NG (www.eve-ng.net).
information you've already retained, and it doesn't waste time
continuing to quiz you on it. That means you can safely load your
collection with hundreds of items while still using your time
efficiently.
One last tip: As you read this study guide cover to cover, keep a
running list of questions and things you're not sure about. Chances are
if you find something confusing, a lot of other people did too, and that
makes it good fodder for the exam. Be sure to visit
https://benpiper.com/encor for book resources, updates, and errata.
Prerequisites and Lab Requirements
The CCNA certification isn't required to attain the CCNP Enterprise
certification. Nevertheless, I strongly recommend that you obtain your
CCNA certification or the equivalent experience before embarking on
your CCNP Enterprise journey. Refer to the CCNA exam blueprint
(www.cisco.com/c/en/us/training-events/training-
certifications/certifications/associate/ccna.html) for a full list of topics
you should already be familiar with. Because the CCNP Enterprise is a
professional-level certification, I don't review some of the basics
covered by the CCNA such as subnetting, IPv4, and IPv6 addressing.
You'll need a virtual or physical lab, which you should already have
from your previous networking studies. Your lab should be able to
support at least eight routers and two layer 3 switches running IOS
version 15.2 or later. You should be able to configure your lab on your
own by looking at layer 2 and layer 3 diagrams. Topology diagrams
will be included in each chapter.
If your existing lab doesn't meet the requirement, Cisco Virtual
Internet Routing Lab (http://virl.cisco.com) includes virtual machine
images for a variety of switches and routers. These images are virtual
machines that run using QEMU and are light on CPU and memory, so
you don't need a beast of a server to run simulations, although more
resources always help. Other options, although not blessed by Cisco,
are GNS3 (https://gns3.com) and EVE-NG (www.eve-ng.net).
Loading page 21...
How to Use This Book
Hands-on experience is crucial for exam success. Each chapter in this
study guide contains hands-on exercises that you should strive to
complete during or immediately after your reading of the chapter. The
exercises are there to test your understanding, and not to cover every
possible permutation of configurations. The exercises are your
foundation, and you should build on them by experimenting with
them, breaking things, and then figuring out how to fix them.
Each chapter contains review questions to thoroughly test your
understanding of the services and concepts covered in that chapter.
They also test your ability to integrate the concepts with information
from preceding chapters. I've designed the questions to help you
realistically gauge your understanding and identify your blind spots.
Once you complete the assessment in each chapter, referring to the
answer key will give you not only the correct answers but a detailed
explanation as to why they're correct. Even if you feel comfortable on a
certain topic, resist the urge to skip over the pertinent chapter. I
strongly encourage you to carefully read this book from cover to cover
so that you can discover your strengths and weaknesses—particularly
the ones you may not be aware of. Remember, even though you can't
learn networking just by reading a book, it's equally true that you can't
learn without reading a book.
The book also contains a self-assessment exam with 36 questions, two
practice exams with 50 questions each to help you gauge your
readiness to take the exam, and flashcards to help you learn and retain
key facts needed to prepare for the exam.
Hands-on experience is crucial for exam success. Each chapter in this
study guide contains hands-on exercises that you should strive to
complete during or immediately after your reading of the chapter. The
exercises are there to test your understanding, and not to cover every
possible permutation of configurations. The exercises are your
foundation, and you should build on them by experimenting with
them, breaking things, and then figuring out how to fix them.
Each chapter contains review questions to thoroughly test your
understanding of the services and concepts covered in that chapter.
They also test your ability to integrate the concepts with information
from preceding chapters. I've designed the questions to help you
realistically gauge your understanding and identify your blind spots.
Once you complete the assessment in each chapter, referring to the
answer key will give you not only the correct answers but a detailed
explanation as to why they're correct. Even if you feel comfortable on a
certain topic, resist the urge to skip over the pertinent chapter. I
strongly encourage you to carefully read this book from cover to cover
so that you can discover your strengths and weaknesses—particularly
the ones you may not be aware of. Remember, even though you can't
learn networking just by reading a book, it's equally true that you can't
learn without reading a book.
The book also contains a self-assessment exam with 36 questions, two
practice exams with 50 questions each to help you gauge your
readiness to take the exam, and flashcards to help you learn and retain
key facts needed to prepare for the exam.
Loading page 22...
What Does This Book Cover?
This book covers topics you need to know to prepare for the CCNP
ENCOR exam:
Chapter 1: Networking Fundamentals This chapter overviews
the fundamentals of networking theory and network design.
Chapter 2: Spanning Tree Protocols This chapter covers
Spanning Tree protocols, including Rapid Spanning Tree and Multiple
Instance Spanning Tree. We also cover VLANs, trunking, and pruning.
Chapter 3: Enterprise Network Design In this chapter, you'll
learn the advantages and disadvantages of different physical and layer
2 network designs. We also dive into EtherChannels and first-hop
redundancy protocols.
Chapter 4: Wireless LAN (WLAN) This chapter explains the
fundamentals of radio frequency, WLAN 802.11 standards, wireless
security, and WLAN controller (WLC) design and deployment
considerations.
Chapter 5: Open Shortest Path First (OSPF) In this chapter,
you'll learn how to configure and troubleshoot OSPF adjacencies,
authentication, route filtering, summarization, and more.
Chapter 6: Enhanced Interior Gateway Routing Protocol
(EIGRP) This chapter covers advanced EIGRP concepts, including
redistribution, multipathing, and path control.
Chapter 7: The Border Gateway Protocol (BGP) In this
chapter, you'll learn all about BGP, including path selection,
redistribution, summarization, and filtering.
Chapter 8: Network Address Translation and Multicast This
two-for-the-price-of-one chapter gives you complete coverage of
network address translation and multicast.
Chapter 9: Quality of Service This chapter covers QoS concepts,
including queuing, policing, shaping, and classification.
This book covers topics you need to know to prepare for the CCNP
ENCOR exam:
Chapter 1: Networking Fundamentals This chapter overviews
the fundamentals of networking theory and network design.
Chapter 2: Spanning Tree Protocols This chapter covers
Spanning Tree protocols, including Rapid Spanning Tree and Multiple
Instance Spanning Tree. We also cover VLANs, trunking, and pruning.
Chapter 3: Enterprise Network Design In this chapter, you'll
learn the advantages and disadvantages of different physical and layer
2 network designs. We also dive into EtherChannels and first-hop
redundancy protocols.
Chapter 4: Wireless LAN (WLAN) This chapter explains the
fundamentals of radio frequency, WLAN 802.11 standards, wireless
security, and WLAN controller (WLC) design and deployment
considerations.
Chapter 5: Open Shortest Path First (OSPF) In this chapter,
you'll learn how to configure and troubleshoot OSPF adjacencies,
authentication, route filtering, summarization, and more.
Chapter 6: Enhanced Interior Gateway Routing Protocol
(EIGRP) This chapter covers advanced EIGRP concepts, including
redistribution, multipathing, and path control.
Chapter 7: The Border Gateway Protocol (BGP) In this
chapter, you'll learn all about BGP, including path selection,
redistribution, summarization, and filtering.
Chapter 8: Network Address Translation and Multicast This
two-for-the-price-of-one chapter gives you complete coverage of
network address translation and multicast.
Chapter 9: Quality of Service This chapter covers QoS concepts,
including queuing, policing, shaping, and classification.
Loading page 23...
Chapter 10: Network Virtualization This chapter dives deep into
virtualization concepts such as server virtualization, network
virtualization, generic routing encapsulation, IPsec, LISP, and
VXLAN.
Chapter 11: Software-Defined Networking and Network
Programmability In this chapter, you'll learn about Cisco's
software-defined networking (SDN) solutions, SD-Access, Cisco DNA
Center, and SD-WAN. You'll also learn about network automation
tools such as Python, RESTCONF, NETCONF, Ansible, Chef, Puppet,
and SaltStack.
Chapter 12: Network Security and Monitoring This chapter
will show you how to implement infrastructure security best practices
and wireless security configurations. You'll also learn about Cisco
security products and how to monitor your network using NetFlow,
IPSLA, debugs, Syslog, SNMP, and more.
Interactive Online Learning Environment and
Test Bank
The interactive online learning environment that accompanies this
CCNP Enterprise Certification Study Guide: Exam 350-401 provides
a test bank with study tools to help you prepare for the certification
exam—and increase your chances of passing it the first time! The test
bank includes the following:
Sample Tests All the questions in this book are provided, including
the assessment test at the end of this introduction and the chapter
tests that include the review questions at the end of each chapter. In
addition, there are two practice exams with 50 questions each. Use
these questions to test your knowledge of the study guide material.
The online test bank runs on multiple devices.
Flashcards The online text banks include 100 flashcards specifically
written to hit you hard, so don't get discouraged if you don't ace your
way through them at first. They're there to ensure that you're really
ready for the exam. And no worries—armed with the review questions,
practice exams, and flashcards, you'll be more than prepared when
virtualization concepts such as server virtualization, network
virtualization, generic routing encapsulation, IPsec, LISP, and
VXLAN.
Chapter 11: Software-Defined Networking and Network
Programmability In this chapter, you'll learn about Cisco's
software-defined networking (SDN) solutions, SD-Access, Cisco DNA
Center, and SD-WAN. You'll also learn about network automation
tools such as Python, RESTCONF, NETCONF, Ansible, Chef, Puppet,
and SaltStack.
Chapter 12: Network Security and Monitoring This chapter
will show you how to implement infrastructure security best practices
and wireless security configurations. You'll also learn about Cisco
security products and how to monitor your network using NetFlow,
IPSLA, debugs, Syslog, SNMP, and more.
Interactive Online Learning Environment and
Test Bank
The interactive online learning environment that accompanies this
CCNP Enterprise Certification Study Guide: Exam 350-401 provides
a test bank with study tools to help you prepare for the certification
exam—and increase your chances of passing it the first time! The test
bank includes the following:
Sample Tests All the questions in this book are provided, including
the assessment test at the end of this introduction and the chapter
tests that include the review questions at the end of each chapter. In
addition, there are two practice exams with 50 questions each. Use
these questions to test your knowledge of the study guide material.
The online test bank runs on multiple devices.
Flashcards The online text banks include 100 flashcards specifically
written to hit you hard, so don't get discouraged if you don't ace your
way through them at first. They're there to ensure that you're really
ready for the exam. And no worries—armed with the review questions,
practice exams, and flashcards, you'll be more than prepared when
Loading page 24...
exam day comes. Questions are provided in digital flashcard format (a
question followed by a single correct answer). You can use the
flashcards to reinforce your learning and provide last-minute test prep
before the exam.
Other Study Tools A glossary of key terms from this book is
available as a fully searchable PDF.
Go to www.wiley.com/go/sybextestprep to register and
gain access to this interactive online learning environment and test
bank with study tools.
Exam Objectives
The CCNP ENCOR exam is intended for people who have experience
implementing enterprise network technologies including IPv4 and
IPv6 architecture, virtualization, monitoring, security, and
automation. In general, you should have the following before taking
the exam:
A minimum of two years of hands-on experience configuring and
troubleshooting routers and switches
Ability to design and configure a network based on customer
requirements
Ability to provide implementation guidance
A mastery of IPv4 and IPv6
The exam covers six different domains, with each domain broken
down into objectives.
Objective Map
The following table lists each domain and its weighting in the exam,
along with the chapters in the book where that domain's objectives are
covered.
question followed by a single correct answer). You can use the
flashcards to reinforce your learning and provide last-minute test prep
before the exam.
Other Study Tools A glossary of key terms from this book is
available as a fully searchable PDF.
Go to www.wiley.com/go/sybextestprep to register and
gain access to this interactive online learning environment and test
bank with study tools.
Exam Objectives
The CCNP ENCOR exam is intended for people who have experience
implementing enterprise network technologies including IPv4 and
IPv6 architecture, virtualization, monitoring, security, and
automation. In general, you should have the following before taking
the exam:
A minimum of two years of hands-on experience configuring and
troubleshooting routers and switches
Ability to design and configure a network based on customer
requirements
Ability to provide implementation guidance
A mastery of IPv4 and IPv6
The exam covers six different domains, with each domain broken
down into objectives.
Objective Map
The following table lists each domain and its weighting in the exam,
along with the chapters in the book where that domain's objectives are
covered.
Loading page 25...
Domain Percentage
of exam
Chapter
Domain 1: Architecture 15%
1.1 Explain the different design principles
used in an enterprise network
1, 3
1.2 Analyze design principles of a WLAN
deployment
4
1.3 Differentiate between on-premises and
cloud infrastructure deployments
11
1.4 Explain the working principles of the
Cisco SD-WAN solution
11
1.5 Explain the working principles of the
Cisco SD-Access solution
11
1.6 Describe concepts of wired and wireless
QoS
9
1.7 Differentiate hardware and software
switching mechanisms
1
Domain 2: Virtualization 10%
2.1 Describe device virtualization
technologies
10
2.2 Configure and verify data path
virtualization technologies
10
2.3 Describe network virtualization concepts 10
Domain 3: Infrastructure 30%
3.1 Layer 2 1, 2, 3
3.2 Layer 3 1, 5, 6, 7
3.3 Wireless 4
3.4 IP Services 3, 8, 12
Domain 4: Network Assurance 10%
4.1 Diagnose network problems using tools
such as debugs, conditional debugs, trace
12
of exam
Chapter
Domain 1: Architecture 15%
1.1 Explain the different design principles
used in an enterprise network
1, 3
1.2 Analyze design principles of a WLAN
deployment
4
1.3 Differentiate between on-premises and
cloud infrastructure deployments
11
1.4 Explain the working principles of the
Cisco SD-WAN solution
11
1.5 Explain the working principles of the
Cisco SD-Access solution
11
1.6 Describe concepts of wired and wireless
QoS
9
1.7 Differentiate hardware and software
switching mechanisms
1
Domain 2: Virtualization 10%
2.1 Describe device virtualization
technologies
10
2.2 Configure and verify data path
virtualization technologies
10
2.3 Describe network virtualization concepts 10
Domain 3: Infrastructure 30%
3.1 Layer 2 1, 2, 3
3.2 Layer 3 1, 5, 6, 7
3.3 Wireless 4
3.4 IP Services 3, 8, 12
Domain 4: Network Assurance 10%
4.1 Diagnose network problems using tools
such as debugs, conditional debugs, trace
12
Loading page 26...
route, ping, SNMP, and syslog
4.2 Configure and verify device monitoring
using syslog for remote logging
12
4.3 Configure and verify NetFlow and
Flexible NetFlow
12
4.4 Configure and verify
SPAN/RSPAN/ERSPAN
12
4.5 Configure and verify IPSLA 12
4.6 Describe Cisco DNA Center workflows to
apply network configuration, monitoring, and
management
11
4.7 Configure and verify NETCONF and
RESTCONF
11
Domain 5: Security 20%
5.1 Configure and verify device access control 12
5.2 Configure and verify infrastructure
security features
12
5.3 Describe REST API security 11
5.4 Configure and verify wireless security
features
4, 12
5.5 Describe the components of network
security design
4, 12
Domain 6: Automation 15%
6.1 Interpret basic Python components and
scripts
11
6.2 Construct valid JSON encoded file 11
6.3 Describe the high-level principles and
benefits of a data modeling language, such as
YANG
11
6.4 Describe APIs for Cisco DNA Center and
vManage
11
6.5 Interpret REST API response codes and 11
4.2 Configure and verify device monitoring
using syslog for remote logging
12
4.3 Configure and verify NetFlow and
Flexible NetFlow
12
4.4 Configure and verify
SPAN/RSPAN/ERSPAN
12
4.5 Configure and verify IPSLA 12
4.6 Describe Cisco DNA Center workflows to
apply network configuration, monitoring, and
management
11
4.7 Configure and verify NETCONF and
RESTCONF
11
Domain 5: Security 20%
5.1 Configure and verify device access control 12
5.2 Configure and verify infrastructure
security features
12
5.3 Describe REST API security 11
5.4 Configure and verify wireless security
features
4, 12
5.5 Describe the components of network
security design
4, 12
Domain 6: Automation 15%
6.1 Interpret basic Python components and
scripts
11
6.2 Construct valid JSON encoded file 11
6.3 Describe the high-level principles and
benefits of a data modeling language, such as
YANG
11
6.4 Describe APIs for Cisco DNA Center and
vManage
11
6.5 Interpret REST API response codes and 11
Loading page 27...
results in payload using Cisco DNA Center
and RESTCONF
6.6 Construct EEM applet to automate
configuration, troubleshooting, or data
collection
11
6.7 Compare agent vs. agentless orchestration
tools, such as Chef, Puppet, Ansible, and
SaltStack
11
Assessment Test
1. IP depends on which of the following?
A. Address Resolution Protocol
B. Data link layer
C. Network layer
D. Transport layer
2. Which is not a function of a bridge?
A. Simulating some properties of a shared physical Ethernet
cable
B. MAC-based routing
C. Reducing the size of a broadcast domain
D. Frame check sequence validation
3. What are the purposes of TCP sequence numbers? (Choose two.)
A. Error control
B. Ordering
C. Flow control
D. Reliable delivery
4. Three switches are connected via 802.1Q trunk links. You need to
prevent VLAN 25 traffic from reaching two of the switches. Which
and RESTCONF
6.6 Construct EEM applet to automate
configuration, troubleshooting, or data
collection
11
6.7 Compare agent vs. agentless orchestration
tools, such as Chef, Puppet, Ansible, and
SaltStack
11
Assessment Test
1. IP depends on which of the following?
A. Address Resolution Protocol
B. Data link layer
C. Network layer
D. Transport layer
2. Which is not a function of a bridge?
A. Simulating some properties of a shared physical Ethernet
cable
B. MAC-based routing
C. Reducing the size of a broadcast domain
D. Frame check sequence validation
3. What are the purposes of TCP sequence numbers? (Choose two.)
A. Error control
B. Ordering
C. Flow control
D. Reliable delivery
4. Three switches are connected via 802.1Q trunk links. You need to
prevent VLAN 25 traffic from reaching two of the switches. Which
Loading page 28...
of the following can accomplish this? (Choose two.)
A. Prune VLAN 25 on the trunk links.
B. Use routed interfaces instead of trunks.
C. Configure Spanning Tree to block the ports to the switches.
D. Delete VLAN 25 on the switches.
5. Switch SW1 is running RPVST+ and is connected via a routed
interface to SW2, which is running Multiple Spanning Tree. If you
add VLAN 2 to both switches and map VLAN 2 to MST1 on SW2,
which switch will necessarily be the root for VLAN 2?
A. SW1
B. SW2
C. The switch with the lowest bridge priority
D. Both SW1 and SW2
6. Which of the following can effectively prune a VLAN from a
trunk?
A. BPDU Guard
B. BPDU Filter
C. Loop Guard
D. UDLD
7. Which of the following is the most scalable physical architecture
for East-West traffic patterns?
A. Two-tier collapsed core
B. Leaf-and-spine architecture
C. Routed
D. Three-tier
8. What are two reasons to choose a routed topology over a switched
topology?
A. Better scalability
A. Prune VLAN 25 on the trunk links.
B. Use routed interfaces instead of trunks.
C. Configure Spanning Tree to block the ports to the switches.
D. Delete VLAN 25 on the switches.
5. Switch SW1 is running RPVST+ and is connected via a routed
interface to SW2, which is running Multiple Spanning Tree. If you
add VLAN 2 to both switches and map VLAN 2 to MST1 on SW2,
which switch will necessarily be the root for VLAN 2?
A. SW1
B. SW2
C. The switch with the lowest bridge priority
D. Both SW1 and SW2
6. Which of the following can effectively prune a VLAN from a
trunk?
A. BPDU Guard
B. BPDU Filter
C. Loop Guard
D. UDLD
7. Which of the following is the most scalable physical architecture
for East-West traffic patterns?
A. Two-tier collapsed core
B. Leaf-and-spine architecture
C. Routed
D. Three-tier
8. What are two reasons to choose a routed topology over a switched
topology?
A. Better scalability
Loading page 29...
B. Better use of IP address space
C. The ability to stretch subnets
D. Faster convergence
9. Which protocol does not use multicast?
A. LACP
B. EtherChannel
C. VRRP
D. HSRP
10. An access point running in lightweight mode has clients
connected to two SSIDs. The total number of connected clients is
25. How many CAPWAP tunnels are there between the AP and its
WLAN controller (WLC)?
A. 1
B. 2
C. 25
D. Lightweight mode doesn't use a WLC.
11. A client performs an intra-controller roam, keeping its IP address.
Which of the following is true of this roam?
A. The SSID changes.
B. The VLAN changes.
C. It's a layer 2 roam.
D. It's a layer 3 roam.
12. What are two disadvantages of 5 GHz Wi-Fi versus 2.4 GHz Wi-
Fi?
A. Incompatibility with 802.11g
B. Incompatibility with 802.11n
C. Increased free space path loss
D. Lower throughput
C. The ability to stretch subnets
D. Faster convergence
9. Which protocol does not use multicast?
A. LACP
B. EtherChannel
C. VRRP
D. HSRP
10. An access point running in lightweight mode has clients
connected to two SSIDs. The total number of connected clients is
25. How many CAPWAP tunnels are there between the AP and its
WLAN controller (WLC)?
A. 1
B. 2
C. 25
D. Lightweight mode doesn't use a WLC.
11. A client performs an intra-controller roam, keeping its IP address.
Which of the following is true of this roam?
A. The SSID changes.
B. The VLAN changes.
C. It's a layer 2 roam.
D. It's a layer 3 roam.
12. What are two disadvantages of 5 GHz Wi-Fi versus 2.4 GHz Wi-
Fi?
A. Incompatibility with 802.11g
B. Incompatibility with 802.11n
C. Increased free space path loss
D. Lower throughput
Loading page 30...
13. There are three OSPF routers connected to the same subnet.
Which is the designated router?
A. The one with the lowest router ID
B. The first one that became active
C. The one with the highest router ID
D. The one with the highest priority
14. Two OSPF routers are connected to each other. One router's
interface is configured as a broadcast network type, whereas the
other router's interface is configured as a point-to-point network
type. Which of the following is true of this configuration? (Choose
two.)
A. They won't form an adjacency.
B. They will form an adjacency.
C. They won't exchange routes.
D. They will exchange routes.
15. You have a router with an interface that's connected to a subnet
dedicated to servers. You want to advertise this subnet into OSPF
but don't want any servers running OSPF software to form an
adjacency with the router. How can you accomplish this?
A. Configure null authentication.
B. Use a distribute list.
C. Advertise a default route.
D. Configure the interface as a passive interface.
16. An OSPF autonomous system boundary router (ASBR) is
redistributing the prefix 192.168.0.0/16 into EIGRP AS 1. What is
the administrative distance of the route?
A. 20
B. 110
C. 170
Which is the designated router?
A. The one with the lowest router ID
B. The first one that became active
C. The one with the highest router ID
D. The one with the highest priority
14. Two OSPF routers are connected to each other. One router's
interface is configured as a broadcast network type, whereas the
other router's interface is configured as a point-to-point network
type. Which of the following is true of this configuration? (Choose
two.)
A. They won't form an adjacency.
B. They will form an adjacency.
C. They won't exchange routes.
D. They will exchange routes.
15. You have a router with an interface that's connected to a subnet
dedicated to servers. You want to advertise this subnet into OSPF
but don't want any servers running OSPF software to form an
adjacency with the router. How can you accomplish this?
A. Configure null authentication.
B. Use a distribute list.
C. Advertise a default route.
D. Configure the interface as a passive interface.
16. An OSPF autonomous system boundary router (ASBR) is
redistributing the prefix 192.168.0.0/16 into EIGRP AS 1. What is
the administrative distance of the route?
A. 20
B. 110
C. 170
Loading page 31...
30 more pages available. Scroll down to load them.
Preview Mode
Sign in to access the full document!
100%
Study Now!
XY-Copilot AI
Unlimited Access
Secure Payment
Instant Access
24/7 Support
AI Assistant
Document Details
Subject
Cisco Certified Network Professional