Question 1Which VLAN range is eligible to be pruned when a network engineer enables VTP pruning on a switch?

A. VLANs 1-1001
B. VLANs 1-4094
C. VLANs 2-1001
D. VLANs 2-4094

Answer: C

Explanation

VLAN 1 and VLANs 1002 to 1005 are always pruning-ineligible; traffic from these VLANs cannot be pruned. Extended-range VLANs (VLAN IDs higher than 1005) are also pruning-ineligible. Therefore VTP pruning can be applied only from VLAN 2 to 1001.

Reference: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst2960/software/release/12-2_55_se/configuration/guide/scg_2960/swvtp.html

Question 2Which feature must be enabled to eliminate the broadcasting of all unknown traffic to switches that are not participating in the specific VLAN?

A. VTP pruning
B. port-security
C. storm control
D. bpdguard

Answer: A

Explanation

VTP Pruning makes more efficient use of trunk bandwidth by forwarding broadcast and unknown unicast frames on a VLAN only if the switch on the receiving end of the trunk has ports in that VLAN

Question 3Refer to the exhibit.

Switch1(config)#vlan 10
VTP vlan configuration not allowed when device is in CLIENT mode.
Switch1#show interfaces trunk
Switch1#

The users in an engineering department that connect to the same access switch cannot access the network. The network engineer found that the engineering VLAN is missing from the database. Which action resolves this problem?

A. Disable VTP pruning and disable 802.1q.
B. Update the VTP revision number.
C. Change VTP mode to server and enable 802.1q.
D. Enable VTP pruning and disable 802.1q.

Answer: C

Explanation

In Client mode we cannot create VLAN and Switch1 does not have any trunk links so it cannot receive any VTP updates. There is no answer with configure trunk links so we have to choose the solution “change VTP mode to server and enable 802.1q”. But this is a dangerous solution because this switch can “update” other switches with its VLAN database via VTP.

Question 4Refer to the exhibit.

show_vtp_status_DTP.jpg

The network switches for two companies have been connected and manually configured for the required VLANs, but users in company A are not able to access network resources in company B when DTP is enabled. Which action resolves this problem?

A. Delete vlan.dat and ensure that the switch with lowest MAC address is the VTP server.
B. Disable DTP and document the VTP domain mismatch.
C. Manually force trunking with switchport mode trunk on both switches.
D. Enable the company B switch with the vtp mode server command.

Answer: C

Explanation

From the output above we see Switch Company A cannot receive VTP updates from Switch Company B. Therefore we should check the trunking links connecting two switches. Manually force trunking may be a good solution.

Question 5A network engineer must improve bandwidth and resource utilization on the switches by stopping the inefficient flooding of frames on trunk ports where the frames are not needed. Which Cisco IOS feature can be used to achieve this task?

A. VTP pruning
B. access list
C. switchport trunk allowed VLAN
D. VLAN access-map

Answer: A

Explanation

VTP Pruning makes more efficient use of trunk bandwidth by forwarding broadcast and unknown unicast frames on a VLAN only if the switch on the receiving end of the trunk has ports in that VLAN

Question 6Which action allows a network engineer to limit a default VLAN from being propagated across all trunks?

A. Upgrade to VTP version 3 for advanced feature set support.
B. Enable VTP pruning on the VTP server.
C. Manually prune default VLAN with switchport trunk allowed vlans remove.
D. Use trunk pruning vlan 1.

Answer: C

Explanation

VLANs 2–1000 are eligible for pruning but VLAN 1 has a special meaning because it is normally used as a management VLAN and is not eligible for pruning. The only way we can remove VLAN 1 is through the “switchport trunk allowed vlan remove 1” command. But even when you remove VLAN 1 from a trunk port, the interface continues to sent and receive management traffic, for example, Cisco Discovery Protocol (CDP), Port Aggregation Protocol (PAgP), Link Aggregation Control Protocol (LACP), DTP, and VTP in VLAN 1.

A good thing of clearing VLAN 1 is user data cannot travel via this VLAN anymore. BPDU traffic is also banned on this VLAN.

Note: The Cisco IOS-based Catalyst 2900XL/3500XL switches do not allow you to clear VLAN 1 from a trunk; however, the Catalyst 2950/3550, Cisco IOS 4000/4500, and native IOS 6000/6500 switches allow you to clear VLAN 1.

Question 7Refer to the exhibit.

VTP_Transparent.jpg

Switch A, B, and C are trunked together and have been properly configured for VTP. Switch B has all VLANs, but Switch C is not receiving traffic from certain VLANs. What would cause this issue?

A. A VTP authentication mismatch occurred between Switch A and Switch B.
B. The VTP revision number of Switch B is higher than that of Switch A.
C. VTP pruning is configured globally on all switches and it removed VLANs from the trunk interface that is connected to Switch C.
D. The trunk between Switch A and Switch B is misconfigured.

Answer: C

Question 8
Which statement describes one major issue that VTP can cause in an enterprise network when a new switch is introduced in the network in VTP mode server?

A. It can cause network access ports to go into err-disabled state.
B. It can cause a network-wide VLAN configuration change if the revision number on the new switch is higher.
C. It can cause a network-wide VLAN configuration change if the revision number on the new switch is lower.
D. It can cause routing loops.

Answer: B

Explanation

If the revision number of the new switch is higher than other switches in the same VTP domain then it will overwrite other switches’ VLAN databases even if the new switch operates in VTP Client mode. So we should set the VTP mode of the new switch to Transparent (which will also reset its Revision Number to 0) before plugging to our network.

Question 9
A network administrator configures 10 extended VLANs ranging from VLANs 3051 to 3060 in an enterprise network. Which version of VTP supports these extended VLANs?

A. version 1
B. version 2
C. version 3
D. VTP does not recognize extended VLANs.

Answer: C

Explanation

VTPv3 supports for extended VLAN range (VLANs 1006 to 4094). VTP versions 1 and 2 only supports VLANs 1 to 1005. If extended VLANs are configured, we cannot convert from VTP version 3 to version 1 or 2.

Reference: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3560/software/release/12-2_52_se/configuration/guide/3560scg/swvtp.html

Question 10
Refer to the exhibit.

VTP_with_MST.jpg

DSW1 should share the same MST region with switch DSW2. Which statement is true?

A. Configure DSW1 with the same version number, and VLAN-to-instance mapping as shown on DSW2.
B. DSW2 uses the VTP server mode to automatically propagate the MST configuration to DSW1.
C. DSW1 automatically inherits MST configuration from DSW2 because they have the same domain name.
D. Configure DSW1 with the same region name, revision number, and VLAN-to-instance mapping as shown on DSW2.
E. DSW1 is in VTP client mode with a lower configuration revision number, therefore, it automatically inherits MST configuration from DW2.

Answer: D

Explanation

These switches are running VTPv1 so they cannot share the MST configuration with each other (only VTPv3 supports MST). Therefore in order to share the same MST with DSW2, DSW1 must be manually configured with the same region name, revision number and VLAN-to-instance mapping with DSW2.