Refer to the graphic.Host A is communicating with the seiver. What will be the source MAC address of the frames received by Host A from the server?()A.the MAC address of the seiver network interfaceB.the MAC address of host AC.the MAC address of router in

第1题：

第2题：

第3题：

第4题：

Host 1 has just started up and requests a web page from web server 2. Which two statements describe steps in the process Host 1 uses to send the request to web server 2 (choose two)（）。

• A、Host 1 addresses the frames to the MAC address of router R1
• B、Host 1 looks in its ARP cache for the MAC address of router R1
• C、Host 1 addresses the frames to the MAC address of web server 2
• D、Host 1 sends the packets to router R1 to be forwarded to web server 2
• E、Host 1 sends a broadcast ARP request to obtain the MAC address of webserver2

第5题：

You suspect that a hacker may be performing a MAC address flooding attack somewhere within the    network.  Which description correctly describes a MAC address flooding attack？（）

• A、The attacking device spoofs a source MAC address of a valid host currently in the CAM table. The switch then forwards frames destined for the valid host to the attacking device.
• B、Frames with unique， invalid destination MAC addresses flood the switch and exhaust CAM table space. The result is that new entries cannot be inserted because of the exhausted CAM table space， and traffic is subsequently flooded out all ports.
• C、The attacking device crafts ARP replies intended for valid hosts. The MAC address of the attacking device then becomes the destination address found in the Layer 2 frames sent by the valid network device.
• D、The attacking device crafts ARP replies intended for valid hosts. The MAC address of the attacking device then becomes the source address found in the Layer 2 frames sent by the valid network device.
• E、The attacking device spoofs a destination MAC address of a valid host currently in the CAM table. The switch then forwards frames destined for the valid host to the attacking device.
• F、Frames with unique， invalid source MAC addresses flood the switch and exhaust CAM table space. The result is that new entries cannot be inserted because of the exhausted CAM table space， and traffic is subsequently flooded out all ports.
• G、None of the other alternatives apply

第6题：

What will an Ethernet switch do if it receives a unicast frame with a destination MAC that is listed in the switch table?（）

• A、The switch will not forward unicast frames.
• B、The switch will forward the frame to a specific port.
• C、The switch will return a copy of the frame out the source port.
• D、The switch will remove the destination MAC from the switch table.
• E、The switch will forward the frame to all ports except the port on which it was received.

第7题：

What three pieces of information can be used in an extended access list to filter traffic (Choose three.)（）。

• A、protocol
• B、VLAN number
• C、TCP or UDP port numbers
• D、source switch port number
• E、source IP address and destination IP address
• F、source MAC address and destination MAC address

第8题：

Select the action that results from executing these commands.（）Switch(config-if)# switchport port-securitySwitch(config-if)# switchport port-security mac-address sticky

• A、A dynamically learned MAC address is saved in the startup-configuration file.
• B、A dynamically learned MAC address is saved in the running-configuration file.
• C、A dynamically learned MAC address is saved in the VLAN database.
• D、Statically configured MAC addresses are saved in the startup-configuration file if frames from that address are received.
• E、Statically configured MAC addresses are saved in the running-configuration file if frames from that address are received.

第9题：

第10题：

第11题：

第12题：

第13题：

第14题：

第15题：

Host 1 receives a file from remote server 1. Which MAC address appears as the source address in the header of the frames received by Host 1（）。

• A、The MAC address of the NIC in Host 1
• B、The MAC address of the NIC in server 1
• C、The MAC address of the Fa0/0 interface of router R1
• D、The MAC address of the s0/0/0 interface of the router R2

第16题：

A network administrator wants to permit Telnet traffic initiated from the address book entry the10net in a zone called UNTRUST to the address book entry Server in a zone called TRUST. However, the administrator does not want the server to be able to initiate any type of traffic from the TRUST zone to the UNTRUST zone. Which configuration statement would correctly accomplish this task?（）

• A、from-zone UNTRUST to-zone TRUST { policy DenyServer { match { source-address any; destination-address any; application any; } then { deny; } } } from-zone TRUST to-zone UNTRUST { policy AllowTelnetin { match { source-address the10net; destination-address Server; application junos-telnet; } then { permit; } } }
• B、from-zone TRUST to-zone UNTRUST { policy DenyServer { match { source-address Server; destination-address any; application any; } then {deny; } } } from-zone UNTRUST to-zone TRUST { policy AllowTelnetin { match { source-address the10net; destination-address Server; application junos-telnet; } then { permit; } } }
• C、from-zone UNTRUST to-zone TRUST { policy AllowTelnetin { match { source-address the10net; destination-address Server; application junos-ftp; } then { permit; } } }
• D、from-zone TRUST to-zone UNTRUST { policy DenyServer { match { source-address Server; destination-address any; application any; } then { permit; } } } from-zone UNTRUST to-zone TRUST { policy AllowTelnetin { match {source-address the10net; destination-address Server; application junos-telnet; } then { permit; } } }

第17题：

What does a Layer 2 switch use to decide where to forward a received frame?（）

• A、source MAC address
• B、source IP address
• C、source switch port
• D、destination IP address
• E、destination port address
• F、destination MAC address

第18题：

Which statement about vlan operation on cisco catalyst switches is true?（）

• A、when a packet is received from an 802.1Q trunk,the vlan id can be determined from the source MAC address table.
• B、unkown unicast frames are retransmitted only to the ports that belong to the same vlan
• C、ports between switches should be configured in access mode so that vlans can span across the ports
• D、broadcast and multicast frames are retransmitted to ports that are configured on different vlan.

第19题：

A network administrator wants to ensure that only the server can connect to port Fa0/1 on a Catalyst switch. The server is plugged into the switch Fa0/1 port and the network administrator is about to bring the server online. What can the administrator do to ensure that only the MAC address of the server is allowed by switch port Fa0/1?（）

• A、Configure port Fa0/1 to accept connections only from the static IP address of the server.
• B、Employ a proprietary connector type on Fa0/1 that is incompatible with other host connectors.
• C、Configure the MAC address of the server as a static entry associated with port Fa0/1.
• D、Bind the IP address of the server to its MAC address on the switch to prevent other hosts from spoofing the server IP address.
• E、Configure port security on Fa0/1 to reject traffic with a source MAC address other than that of the server.
• F、Configure an access list on the switch to deny server traffic from entering any port other than Fa0/1.

第20题：

Which of the following devices is used to move frames between a source and destination basedon a MAC address?（）

• A、Repeater
• B、Hub
• C、Router
• D、Switch

第21题：

第22题：

第23题：