A network administrator is troubleshooting a connectivity issue between two hosts on different subnets. The administrator captures packets on the source host and notices that the frames contain the correct source and destination MAC addresses but the encapsulated packets have incorrect source and destination IP addresses. According to the OSI model, which layer is most likely responsible for this issue?
The Network Layer is responsible for logical addressing (IP addresses) and routing. Incorrect IP addresses indicate a problem at this layer.
Why this answer
The Network Layer (Layer 3) is responsible for logical addressing (IP addresses) and routing packets between different subnets. Since the captured frames have correct MAC addresses (Layer 2) but incorrect source and destination IP addresses, the issue lies in how the IP headers are being constructed or assigned, which is a Layer 3 function. This could be caused by misconfigured IP addresses, subnet masks, or default gateways on the source host.
Exam trap
Cisco often tests the distinction between MAC addresses (Layer 2) and IP addresses (Layer 3) in troubleshooting scenarios, and the trap here is that candidates might incorrectly blame the Data Link Layer because they see 'frames' and 'MAC addresses' in the question, without recognizing that the IP address error points to the Network Layer.
Why the other options are wrong
The issue is with the IP addresses, which are not handled at Layer 1.
The MAC addresses are correct, so the Data Link Layer is functioning properly.
IP addresses are not part of the Transport Layer header; they belong to the Network Layer.