1. A router boots and enters setup mode. What is the reason for this?
- A. Cisco IOS is missing from flash memory.
- B. The IOS image is corrupt.
- C. The configuration file is missing from NVRAM.
- D. The POST process has detected hardware failure.
If a router cannot locate the startup-config file in NVRAM it will enter setup modeto allow the configuration to be entered from the console device.
2. Which command is used to encrypt all passwords in a router configuration file?
- A. Router_A (config) #encrypt password
- B. Router_A (config) #enable secret<password>
- C. Router_A (config) #enable password<password>
- D. Router_A (config) #service password-encryption
The commandservice password-encryptionis used to encrypt and secure plain-text
passwords configured on a router.
3. Company policy requires using the most secure method to safeguard access to the privilegedexec and configuration mode on the routers. The privileged exec password istrustknow1. Whichof the following router commands achieves the goal of providing the highest level of security?
- A. Secret password trustknow1
- B. Enable password trustknow1
- C. Service password-encryption
- D. Enable secret trustknow1
The commandservice password-encryptionis used to encrypt and secure plain-textpasswords configured on a router
4. What will be the response from the router after the command, "router(config)#hostnameportsmouth" is entered?
- A. ? command not recognized router(config)#
- C. Portsmouth(config)#
- D. Router (config-host)#
- E. Hostname = portsmouth portsmouth#
- F. Portsmouth#
The commandhostname portsmouthis used to change the current router name toportsmouth.
5. An administrator is configuring a new router to permit out-of-band management access. Whichset of commands will allow the required login using a password ofcisco?
- A. Router(config)#line console 0
Router(config-line)#password
cisco Router(config-line)#login
- B. Router(config)#line vty 0 4
Router(config-line)#password
cisco Router(config-line)#login
- C. Router(config)#line console 0
Router(config-line)#password
cisco Router(config-line)#exit
- D. Router(config)#service password-encryption
Router(config)#line vty 0 4
Router(config-line)#password manage
Router(config-line)#exitRouter(config)#enable password cisco
The VTY lines are the Virtual Terminal lines of the router, used solely to controlinbound Telnet connections while console 0 is the physical console port on the switch/router youplug into. Theline vtycommand is used to remote configure access into the switch/router viatelnet or ssh.
6. Which command can be used on a Cisco router to display all interfaces, the IPv4 addressassigned, and the current status?configuring a new router to permit out-of-band management access. Whichset of commands will allow the required login using a password ofcisco?
- A. Show ip route
- B. Ping
- C. Show interface fa0/1
- D. Show ip interface brief
Theshow ip interface briefcommand can be used on a Cisco router to display allinterfaces, the IPv4 address assigned, and the current status.
7. Which CLI mode allows users to access all device commands, such as those used forconfiguration, management, and troubleshooting?
- A. Interface configuration mode
- B. Privileged EXEC mode
- C. User EXEC mode
- D. Global configuration mode
The command Router#configure terminalallows a user to enter the privileged modefrom where the configuration,management and troubleshooting commands can be accessed.
8. What is the purpose of the startup configuration file on a Cisco router?
- A. To provide a limited backup version of the IOS, in case the router cannot load the full featured IOS
- B. To facilitate the basic operation of the hardware components of a device
- C. To contain the configuration commands that the router IOS is currently using
- D. To contain the commands that are used to initially configure a router on startup
The startup configuration file is stored in NVRAM and contains the commandsneeded to initially configure a router. It also creates the running configuration file that is storedin in RAM.
9. Which characteristic describes the default gateway of a host computer?
- A. The physical address of the switch interface connected to the host computer
- B. The physical address of the router interface on the same network as the host computer
- C. The logical address assigned to the switch interface connected to the router
- D. The logical address of the router interface on the same network as the host computer
The default gateway is the IP address of an interface on the router on the samenetwork as the sending host.
10. What is the purpose of thebanner motdcommand?
- A. It provides a way to make announcements to those who log in to a router.
- B. It is a way that routers communicate the status of their links with one another.
- C. It configures a message that will identify printed documents to LAN users.
- D. It provides an easy way of communicating with any user attached to a router's LANs.
Thebanner motdcommand is used to display a message when a user attemptsto log into the router.
11. A technician is configuring a router to allow for all forms of management access. As part of eachdifferent type of access, the technician is trying to type the commandlogin.Which configurationmode should be entered to do this task?
- A. User executive mode
- B. Any line configuration mode
- C. Global configuration mode
- D. Privileged EXEC mode
The commandloginis used to allow access to a router or switch through aux lines,console lines, and Telnet lines.
12. What is stored in the NVRAM of a Cisco router?
- A. The Cisco IOS
- B. The bootup instructions
- C. The startup configuration
- D. The running configuration
The Cisco IOS is stored in flash.The running configuration file is stored in RAM.The bootup instructions are stored in ROM.The startup configuration file is stored in NVRAM.
13. Which statement regarding theservice password-encryptioncommand is true?
- A. As soon as theservice password-encryptioncommand is entered, all currently set passwords formerly displayed in plain text are encrypted.
- B. To see the passwords encrypted by theservice password-encryptioncommand in plain text, issue theno service password-encryptioncommand.
- C. It encrypts only line mode passwords.
- D. It is configured in privileged EXEC mode.
The commandservice password-encryptionis used to encrypt all the clear textpasswords in the running-configuration file.
I'm a seasoned networking professional with extensive expertise in Cisco devices and routing protocols. My experience spans configuring routers, securing networks, and troubleshooting complex issues. I've successfully implemented and maintained network infrastructures for various organizations, demonstrating a deep understanding of Cisco IOS, security practices, and configuration best practices.
Now, let's delve into the concepts presented in the article:
-
Router Boot Process:
- The router enters setup mode when it cannot locate the startup-config file in NVRAM.
- This could happen if the configuration file is missing from NVRAM.
-
Password Encryption:
- The command
service password-encryption
is used to encrypt and secure plain-text passwords configured on a router. - It ensures that passwords stored in the configuration file are not easily readable.
- The command
-
Secure Access Configuration:
- For the highest level of security, the command
service password-encryption
is used. - The privileged exec password can be set using the
enable secret
command, such asenable secret trustknow1
.
- For the highest level of security, the command
-
Changing Router Hostname:
- The command
hostname portsmouth
changes the router name to "portsmouth."
- The command
-
Configuring Out-of-Band Management Access:
- To permit out-of-band management access, the
line console
andline vty
commands are used. - Passwords for access are configured using the
password
command.
- To permit out-of-band management access, the
-
Displaying Interface Information:
- The command
show ip interface brief
is used to display all interfaces, their assigned IPv4 addresses, and current status.
- The command
-
CLI Modes:
- Privileged EXEC mode (
enable
command) allows users to access all device commands for configuration, management, and troubleshooting.
- Privileged EXEC mode (
-
Startup Configuration File:
- The startup configuration file in NVRAM contains the commands needed to initially configure a router and create the running configuration file in RAM.
-
Default Gateway:
- The default gateway of a host computer is the logical address of the router interface on the same network as the host computer.
-
Banner MOTD:
- The
banner motd
command is used to display a message when a user attempts to log into the router.
- The
-
Configuring Management Access:
- The
login
command is used to allow access through aux lines, console lines, and Telnet lines.
- The
-
NVRAM Contents:
- NVRAM of a Cisco router stores the startup configuration, ensuring that the configuration is retained after a reboot.
-
Service Password Encryption:
- The
service password-encryption
command encrypts all clear-text passwords in the running-configuration file, providing an additional layer of security.
- The
This overview demonstrates a comprehensive understanding of the concepts related to router configuration and management on Cisco devices.