CCNA INCD1 640-822 Real Exam Questions

The 640-822 Interconnecting Cisco Networking Devices Part 1 (ICND1) is the exam associated with the Cisco Certified Entry Network Technician certification and a tangible first step in achieving the Cisco Certified Network Associate certification. Candidates can prepare for this exam by taking the Interconnecting Cisco Networking Devices Part 1 (ICND1) v1.0 course. This exam tests a candidate’s knowledge and skills required to successfully install, operate, and troubleshoot a small branch office network. The exam includes topics on networking fundamentals; connecting to a WAN; basic security and wireless concepts; routing and switching fundamentals; the TCP/IP and OSI models; IP addressing; WAN technologies; operating and configuring IOS devices; configuring RIPv2, static and default routing; implementing NAT and DHCP; and configuring simple networks.

1: Why would a network administrator configure port security on a switch? prevent unauthorized Telnet access to a switch port limit the number of Layer 2 broadcasts on a particular switch port prevent unauthorized hosts from accessing the LAN protect the IP and MAC address of the switch and associated ports block unauthorized access to the switch management interfaces over common TCP ports
Correct Answers: C

2: Which two statements best describe the wireless security standard that is defined by WPA? (Choose two.)

A.It specifies use of a static encryption key that must be changed frequently to enhance security.
B.It requires use of an open authentication method.
C.It specifies the use of dynamic encryption keys that change each time a client establishes a connection.
D.It requires that all access points and wireless devices use the same encryption key.
E.It includes authentication by PSK.
Correct Answers: C E

3: Which form of NAT maps multiple private IP addresses to a single registered IP address by using different ports?

A.static NAT
B.dynamic NAT
E.port loading
Correct Answers: C

4: What should be part of a comprehensive network security plan?

A.Allow users to develop their own approach to network security.
B.Physically secure network equipment from potential access by unauthorized individuals.
C.Encourage users to use personal information in their passwords to minimize the likelihood of passwords being forgotten.
D.Delay deployment of software patches and updates until their effect on end-user equipment is well known and widely reported.
E.Minimize network overhead by deactivating automatic antivirus client updates.
Correct Answers: B

5: A single 802.11g access point has been configured and installed in the center of a square office. A few wireless users are experiencing slow performance and drops while most users are operating at peak efficiency. What are three likely causes of this problem? (Choose three.)

A.mismatched TKIP encryption
B.null SSID
C.cordless phones
D.mismatched SSID
E.metal file cabinets
F.antenna type or direction
Correct Answers: C E F

6: What two actions must a router take in order to route incoming packets? (Choose two.)

A.Identify the destination network address of each packet.
B.Identify the source network address of each packet.
C.Validate sources of routing information.
D.Inspect the routing table to select the best path to the destination network address.
E.Verify the receipt of routed packets by the next hop router.
F.Inspect the ARP table to verify a legitimate source MAC address for each packet.
Correct Answers: A D

7: What is the effect of using the service password-encryption command?

A.Only the enable password will be encrypted.
B.Only the enable secret password will be encrypted.
C.Only passwords configured after the command has been entered will be encrypted.
D.It will encrypt the secret password and remove the enable secret password from the configuration.
E.It will encrypt all current and future passwords.
Correct Answers: E

8: Which command will set the default gateway to on a Cisco switch?

A.Switch(config)# ip default-network
B.Switch(config)# ip route-default
C.Switch(config)# ip default-gateway
D.Switch(config)# ip route
Correct Answers: C

9: From where does a small network get its IP network address?

A.Internet Assigned Numbers Authority (IANA)
B.Internet Architecture Board (IAB)
C.Internet Service Provider (ISP)
D.Internet Domain Name Registry (IDNR)
Correct Answers: C

10: The system LED is amber on a Cisco Catalyst 2950 series switch. What does this indicate?

A.The system is malfunctioning.
B.The system is not powered up.
C.The system is powered up and operational.
D.The system is forwarding traffic.
E.The system is sensing excessive collisions.
Correct Answers: A

11: What are two recommended ways of protecting network device configuration files from outside network security threats? (Choose two.)

A.Allow unrestricted access to the console or VTY ports.
B.Use a firewall to restrict access from the outside to the network devices.
C.Always use Telnet to access the device command line because its data is automatically encrypted.
D.Use SSH or another encrypted and authenticated transport to access device configurations.
E.Prevent the loss of passwords by disabling password encryption.
Correct Answers: B D

Download Password: