CCNA Devnet Network Fundamentals Questions

75 of 99 questions · Page 1/2 · Devnet Network Fundamentals topic · Answers revealed

1
MCQhard

In an SDN architecture, which API is used by the controller to communicate with network devices to install forwarding rules?

AnswerA

Correct. Southbound APIs push rules to devices.

Why this answer

In SDN, the southbound API is the interface between the controller and the network devices (switches, routers). It allows the controller to install forwarding rules, such as flow entries in OpenFlow switches, enabling centralized control of the data plane.

Exam trap

Cisco often tests the distinction between northbound and southbound APIs; the trap here is confusing the REST API (commonly northbound) with the southbound API that directly programs device forwarding tables.

How to eliminate wrong answers

Option B (REST API) is wrong because REST APIs are typically used as northbound APIs for applications to communicate with the SDN controller, not for the controller to program network devices. Option C (East-West API) is wrong because east-west APIs are used for communication between multiple SDN controllers in a distributed control plane, not for device rule installation. Option D (Northbound API) is wrong because northbound APIs allow applications and orchestration tools to interact with the controller, abstracting the underlying network; they do not directly install forwarding rules on devices.

2
MCQmedium

A network administrator is configuring DNS for a corporate domain. An MX record is required to specify the mail server responsible for handling email. Which of the following is a correct example of an MX record?

A.mail.example.com. A 192.0.2.1
B.example.com. MX 10 mail.example.com.
C.example.com. CNAME mail.example.com.
D.example.com. TXT "v=spf1 include:_spf.google.com ~all"
AnswerB

This is the standard format with priority and server.

Why this answer

Option B is correct because an MX record specifies the mail server responsible for handling email for a domain, using the format: domain. MX priority mailserver. The priority value (10) indicates preference, with lower values being higher priority.

This record directs email delivery to mail.example.com for the example.com domain.

Exam trap

Cisco often tests the distinction between record types by presenting an A or CNAME record as a distractor, exploiting the common misconception that any record pointing to a mail server is sufficient for email routing.

How to eliminate wrong answers

Option A is wrong because it uses an 'A' record type, which maps a hostname to an IPv4 address, not a mail exchanger; MX records require the 'MX' type and a priority value. Option C is wrong because a CNAME record creates an alias for a hostname, but MX records cannot point to a CNAME per RFC 2181; they must point directly to an A or AAAA record. Option D is wrong because a TXT record stores text data like SPF policies, not mail server routing information; MX records are specifically for mail exchange.

3
MCQmedium

An application requires reliable, ordered delivery of data with error checking. Which transport protocol should be used, and what is a key characteristic of this protocol?

A.TCP, because it uses a 3-way handshake to establish a connection
B.TCP, because it has lower overhead than UDP
C.UDP, because it is connectionless and low-overhead
D.UDP, because it provides flow control
AnswerA

TCP's 3-way handshake (SYN, SYN-ACK, ACK) establishes a reliable connection.

Why this answer

TCP (Transmission Control Protocol) is the correct choice because it provides reliable, ordered delivery of data with error checking. Its key characteristic is the 3-way handshake (SYN, SYN-ACK, ACK) used to establish a connection before data transfer, ensuring both endpoints are synchronized and ready for reliable communication.

Exam trap

Cisco often tests the misconception that TCP has lower overhead than UDP, or that UDP provides reliability or flow control, leading candidates to confuse the characteristics of connection-oriented vs. connectionless protocols.

How to eliminate wrong answers

Option B is wrong because TCP has higher overhead than UDP due to its connection establishment, acknowledgments, and sequencing mechanisms, not lower overhead. Option C is wrong because UDP is connectionless and low-overhead, but it does not provide reliable, ordered delivery or error checking—it offers no guarantees for delivery or ordering. Option D is wrong because UDP does not provide flow control; flow control is a feature of TCP, implemented via sliding window and advertised window mechanisms.

4
MCQhard

A network administrator notices that a host with IP 192.168.1.10/25 cannot communicate with a host at 192.168.1.200/25. What is the most likely reason?

A.The default gateway is missing.
B.The subnet mask is incorrect; they are on different subnets.
C.The ARP cache is corrupted.
D.The hosts are using different DNS servers.
AnswerB

192.168.1.10 is in subnet 0, 192.168.1.200 is in subnet 128.

Why this answer

With a /25 mask (255.255.255.128), the network is divided into two subnets: 192.168.1.0-127 and 192.168.1.128-255. The two hosts are in different subnets and require a router to communicate.

5
MCQhard

During a TCP three-way handshake, which sequence of flags is sent from the client to initiate the connection?

A.SYN-ACK
B.SYN
C.ACK
D.FIN
AnswerB

Correct. The client sends SYN to initiate.

Why this answer

The client sends a SYN segment to start the handshake.

7
MCQeasy

In the OSI model, which layer is responsible for logical addressing and routing of packets between networks?

A.Layer 1 (Physical)
B.Layer 3 (Network)
C.Layer 4 (Transport)
D.Layer 2 (Data Link)
AnswerB

Correct. Layer 3 uses IP addresses and routers.

Why this answer

Layer 3 (Network layer) handles IP addressing and routing decisions.

8
Multi-Selecteasy

Which TWO of the following protocols use UDP as the transport layer protocol? (Choose two.)

Select 2 answers
AnswersA, C

DNS uses UDP for queries (and TCP for zone transfers).

Why this answer

DNS and DHCP use UDP because they are lightweight and can tolerate some loss. HTTP uses TCP, and SMTP uses TCP.

9
MCQmedium

In the TCP three-way handshake, which sequence of flags is exchanged to establish a connection?

A.SYN, ACK, SYN-ACK
B.ACK, SYN, SYN-ACK
C.SYN-ACK, SYN, ACK
D.SYN, SYN-ACK, ACK
AnswerD

Correct sequence.

Why this answer

The TCP three-way handshake consists of SYN, SYN-ACK, ACK.

10
MCQeasy

Which transport protocol is connection-oriented and ensures reliable delivery through acknowledgments and retransmissions?

A.IP
C.TCP
D.UDP
AnswerC

Correct. TCP uses three-way handshake and retransmission.

Why this answer

TCP is connection-oriented and provides reliability.

11
Multi-Selectmedium

A network engineer is designing a wireless network for an office that requires high throughput and minimal interference. Which two channels should be used for the 2.4 GHz band to avoid overlap? (Choose two.)

Select 2 answers
A.Channel 11
B.Channel 9
C.Channel 6
D.Channel 3
E.Channel 1
AnswersC, E

Channel 6 is non-overlapping with channels 1 and 11.

Why this answer

In the 2.4 GHz band, channels 1, 6, and 11 are the only non-overlapping channels when using 20 MHz channel spacing, as each channel occupies 22 MHz of bandwidth and these three are spaced 25 MHz apart. Channels 1 and 6 are correct because they do not overlap, minimizing co-channel interference and maximizing throughput.

Exam trap

Cisco often tests the misconception that any three channels (e.g., 1, 4, 8) are non-overlapping, but the correct non-overlapping set is strictly 1, 6, and 11 due to the 22 MHz channel width and 5 MHz spacing.

12
Multi-Selecthard

A DevOps engineer is automating network configuration using REST APIs. The engineer needs to choose between NETCONF and OpenFlow as southbound protocols. Which TWO statements are correct?

Select 2 answers
A.OpenFlow allows the controller to install flow entries in switches
B.NETCONF provides real-time packet forwarding control
C.Both protocols are used exclusively for northbound APIs
D.OpenFlow is primarily used for configuration management
E.NETCONF uses YANG data models and XML encoding
AnswersA, E

OpenFlow enables dynamic flow table modification.

Why this answer

NETCONF uses XML and is used for configuration management, while OpenFlow pushes flow entries to switches.

13
MCQmedium

Which DNS record type is used to map a domain name to an IPv6 address?

A.CNAME
B.MX
C.A
D.AAAA
AnswerD

Correct. AAAA maps to IPv6.

Why this answer

The AAAA record is used for IPv6 address mapping.

14
Multi-Selectmedium

Which TWO of the following are southbound protocols in SDN?

Select 2 answers
B.NETCONF
D.OpenFlow
AnswersB, D

NETCONF is a southbound configuration protocol.

Why this answer

OpenFlow and NETCONF are southbound protocols used between controller and network devices.

15
MCQeasy

What is the primary function of a switch in a network?

A.Forward frames based on MAC addresses
B.Amplify wireless signals
C.Forward packets based on IP addresses
D.Convert data to electrical signals
AnswerA

Correct. Switches use MAC addresses.

Why this answer

Switches operate at Layer 2 and forward frames based on MAC addresses within a LAN.

16
MCQeasy

Which wireless standard is commonly known as Wi-Fi 6 and operates in both 2.4 GHz and 5 GHz bands?

A.802.11g
B.802.11n
C.802.11ac
D.802.11ax
AnswerD

802.11ax (Wi-Fi 6) supports both 2.4 GHz and 5 GHz.

Why this answer

802.11ax, marketed as Wi-Fi 6, is the correct answer because it is the only standard among the options that operates in both the 2.4 GHz and 5 GHz bands and introduces OFDMA, 1024-QAM, and improved MU-MIMO for higher efficiency and throughput. Wi-Fi 6 is backward compatible with previous standards but requires compatible clients to leverage its full capabilities.

Exam trap

Cisco often tests the misconception that 802.11ac (Wi-Fi 5) operates in both bands, but it is strictly 5 GHz only, while 802.11ax is the first to bring high-efficiency features to the 2.4 GHz band as well.

How to eliminate wrong answers

Option A is wrong because 802.11g operates only in the 2.4 GHz band, supports up to 54 Mbps, and is not known as Wi-Fi 6. Option B is wrong because 802.11n (Wi-Fi 4) operates in both 2.4 GHz and 5 GHz bands but uses MIMO and up to 40 MHz channels, not OFDMA or 1024-QAM, and is not Wi-Fi 6. Option C is wrong because 802.11ac (Wi-Fi 5) operates exclusively in the 5 GHz band, uses up to 160 MHz channels and MU-MIMO (downlink only), but does not support the 2.4 GHz band and is not Wi-Fi 6.

17
MCQmedium

Which DNS record type is used to verify domain ownership for email security (SPF) and is stored as a text string?

A.TXT record
B.CNAME record
C.A record
D.MX record
AnswerA

TXT records can hold any text, including SPF and DKIM data.

Why this answer

TXT records store arbitrary text, commonly used for SPF, DKIM, and domain verification.

18
MCQeasy

A network administrator needs to assign IP addresses to devices on a subnet with a /25 prefix. How many usable host addresses are available?

A.254
B.126
C.64
D.128
AnswerB

2^(32-25) - 2 = 128 - 2 = 126.

Why this answer

A /25 subnet has 7 bits for hosts (32-25=7), giving 2^7 = 128 total addresses, minus 2 (network and broadcast) = 126 usable hosts.

19
Multi-Selecthard

Which THREE of the following are features of HTTP/2?

Select 3 answers
A.Header compression (HPACK)
B.Plain text headers
C.Persistent connections
D.Binary framing
E.Multiplexed streams
AnswersA, D, E

HPACK reduces header overhead.

Why this answer

HTTP/2 is binary, supports multiplexed streams, and uses HPACK for header compression.

20
Multi-Selecthard

An organization is planning to implement HTTPS for their web services. Which three statements accurately describe the HTTPS protocol? (Choose three.)

Select 3 answers
A.HTTPS uses UDP as the transport protocol.
B.HTTPS uses TLS to encrypt HTTP traffic.
C.HTTPS is stateless after the initial handshake.
D.HTTPS uses a certificate to verify the server's identity.
E.HTTPS negotiates a symmetric session key for encryption.
AnswersB, D, E

HTTPS is HTTP over TLS, providing encryption.

Why this answer

HTTPS uses TLS for encryption, involves certificate verification, and negotiates a symmetric session key. It does not use UDP typically (TCP is used) and it is not stateless after the handshake.

21
MCQeasy

What is the primary benefit of using HTTP/2 over HTTP/1.1?

A.It is connectionless
B.It uses plain text for headers
C.It eliminates the need for TLS
D.It supports multiplexing
AnswerD

Multiplexing reduces latency by enabling concurrent streams.

Why this answer

HTTP/2 introduces multiplexed streams, allowing multiple requests/responses in parallel over a single connection.

22
Multi-Selecthard

Which THREE of the following are true about HTTP/2 compared to HTTP/1.1? (Select three.)

Select 3 answers
A.Text-based protocol
B.Requires TLS/SSL encryption
C.Header compression using HPACK
D.Server push capability
E.Multiplexing multiple streams over a single connection
AnswersC, D, E

Correct. HPACK reduces header overhead.

Why this answer

HTTP/2 is binary, multiplexes streams, and uses HPACK for header compression.

23
MCQeasy

Which of the following is a private IPv4 address range as defined by RFC 1918?

A.192.168.0.0/16
B.169.254.0.0/16
C.11.0.0.0/8
D.172.32.0.0/12
AnswerA

This is a private range for internal networks.

Why this answer

Option A is correct because RFC 1918 reserves the 192.168.0.0/16 block (192.168.0.0 – 192.168.255.255) as a private IPv4 address range, meaning these addresses are not routable on the public internet and are intended for use within private networks.

Exam trap

Cisco often tests the exact prefix boundaries of RFC 1918, and the trap here is confusing the 172.16.0.0/12 range (which includes 172.16.0.0 – 172.31.255.255) with the similar-looking 172.32.0.0/12, which is a public block.

How to eliminate wrong answers

Option B is wrong because 169.254.0.0/16 is the Automatic Private IP Addressing (APIPA) range, used by DHCP clients when they fail to obtain a lease; it is not a private range per RFC 1918. Option C is wrong because 11.0.0.0/8 is a public IPv4 address range (assigned to the US Department of Defense) and is not reserved for private use. Option D is wrong because 172.32.0.0/12 falls outside the RFC 1918 private block 172.16.0.0/12 (which covers 172.16.0.0 – 172.31.255.255); 172.32.0.0/12 is a public range.

24
MCQmedium

In Software-Defined Networking (SDN), which interface is used for communication between the controller and the network devices (e.g., switches) to forward traffic?

B.Control plane
D.East-West API
AnswerC

Southbound API communicates with devices.

Why this answer

The southbound API (e.g., OpenFlow, NETCONF) is used to communicate between the SDN controller and the data plane devices.

25
Multi-Selectmedium

Which TWO of the following are characteristics of UDP compared to TCP? (Select two.)

Select 2 answers
A.Ordered data delivery
B.Reliable delivery with retransmission
C.Connection-oriented communication
D.Lower overhead
E.No flow control or congestion control
AnswersD, E

Correct. UDP has minimal header and no handshake.

Why this answer

UDP is connectionless and has lower overhead, but is unreliable.

26
MCQmedium

A network engineer is designing a subnet that needs to support 30 usable hosts. Which subnet mask should be used?

A.255.255.255.240 (/28)
B.255.255.255.0 (/24)
C.255.255.255.224 (/27)
D.255.255.255.192 (/26)
AnswerC

Correct. /27 provides 32 addresses, 30 usable.

Why this answer

Option C (255.255.255.224, /27) provides 5 host bits, yielding 2^5 = 32 total addresses per subnet. Subtracting the network and broadcast addresses leaves exactly 30 usable hosts, meeting the requirement precisely.

Exam trap

Cisco often tests the formula 2^n - 2 for usable hosts, and the trap here is that candidates may forget to subtract the network and broadcast addresses, or they may confuse the number of host bits with the subnet mask value (e.g., thinking /28 supports 16 usable hosts instead of 14).

How to eliminate wrong answers

Option A is wrong because 255.255.255.240 (/28) provides only 4 host bits, giving 2^4 - 2 = 14 usable hosts, which is insufficient for 30 hosts. Option B is wrong because 255.255.255.0 (/24) provides 8 host bits, yielding 2^8 - 2 = 254 usable hosts, which is far more than needed and wastes address space. Option D is wrong because 255.255.255.192 (/26) provides 6 host bits, giving 2^6 - 2 = 62 usable hosts, which exceeds the requirement but is not the most efficient choice for exactly 30 hosts.

27
MCQmedium

A network administrator is configuring subnetting for a new branch office that requires 50 usable host addresses per subnet. The available network is 192.168.10.0/24. What subnet mask should be used to meet the requirement with minimal waste?

A.255.255.255.128 (/25)
B.255.255.255.224 (/27)
C.255.255.255.192 (/26)
D.255.255.255.240 (/28)
AnswerC

/26 provides 62 usable hosts, suitable for 50 hosts.

Why this answer

A /26 mask provides 62 usable hosts (2^(32-26)-2=62), which is the smallest subnet that supports 50 hosts.

28
MCQeasy

At which layer of the OSI model do switches operate when forwarding frames based on MAC addresses?

A.Layer 1 (Physical)
B.Layer 3 (Network)
C.Layer 2 (Data Link)
D.Layer 4 (Transport)
AnswerC

Switches use MAC addresses to forward frames at Layer 2.

Why this answer

Switches operate at Layer 2 (Data Link layer) because they use MAC addresses to forward frames.

29
MCQmedium

Which TCP flag is set in the second step of the three-way handshake?

A.ACK
B.SYN and ACK
C.SYN
D.FIN
AnswerB

The server responds with SYN-ACK.

Why this answer

The TCP three-way handshake begins with the client sending a SYN segment to initiate a connection. In the second step, the server responds with a SYN-ACK segment, which both acknowledges the client's SYN (using the ACK flag) and synchronizes its own sequence number (using the SYN flag). This combined flag is essential for establishing a reliable, bidirectional connection.

Exam trap

Cisco often tests the misconception that the second step uses only an ACK flag, confusing it with the third step where the client sends an ACK to complete the handshake.

How to eliminate wrong answers

Option A is wrong because the ACK flag alone is used in later stages of the handshake (e.g., the third step) or in subsequent data transfers, not in the second step where both synchronization and acknowledgment are required. Option C is wrong because a pure SYN flag is only sent in the first step by the client to initiate the connection; the server must also acknowledge that SYN, so a standalone SYN in the second step would leave the client's initial sequence number unacknowledged. Option D is wrong because the FIN flag is used to gracefully terminate a connection, not to establish one; it appears in the four-way teardown process.

30
MCQmedium

An organization has a web server that needs to be reachable via both 'www.example.com' and 'example.com'. Which DNS record type should be used to make 'example.com' an alias for 'www.example.com'?

A.A record
B.MX record
C.NS record
D.CNAME record
AnswerD

CNAME maps an alias to the canonical name.

Why this answer

A CNAME record creates an alias that points to the canonical name. The A record points to an IP address, not another domain.

31
MCQeasy

A web application uses HTTPS to secure communications between client and server. What does HTTPS add on top of HTTP to provide encryption and authentication?

A.SSH
C.SSL/TLS
D.VPN
AnswerC

HTTPS = HTTP over TLS (formerly SSL).

Why this answer

HTTPS uses TLS (Transport Layer Security) to encrypt HTTP traffic and verify server identity.

32
Multi-Selecteasy

A DevOps team is deploying a microservices application that requires both reliable data transfer and low-latency real-time communication. Which two protocols should be used for these respective requirements? (Choose two.)

Select 2 answers
AnswersC, E

TCP is reliable and connection-oriented, suitable for reliable data transfer.

Why this answer

TCP (Transmission Control Protocol) is correct for reliable data transfer because it provides connection-oriented communication with sequencing, acknowledgments, and retransmission of lost packets, ensuring data arrives intact and in order. This makes it ideal for microservices that need guaranteed delivery, such as database transactions or order processing.

Exam trap

Cisco often tests the distinction between transport-layer protocols (TCP/UDP) and application-layer protocols (HTTP), so candidates mistakenly pick HTTP for reliability instead of recognizing that HTTP relies on TCP underneath.

33
MCQeasy

Which of the following is a private IPv4 address range as defined by RFC 1918?

A.192.167.0.0/16
B.169.254.0.0/16
C.10.0.0.0/8
D.172.32.0.0/12
AnswerC

10.0.0.0/8 is a private range.

Why this answer

The private IPv4 ranges are 10.0.0.0/8, 172.16.0.0/12, and 192.168.0.0/16. 169.254.0.0/16 is link-local (APIPA).

34
Multi-Selectmedium

Which THREE of the following are characteristics of the UDP protocol?

Select 3 answers
A.Used by DNS and DHCP
B.Low overhead
C.Connection-oriented
D.Reliable delivery
E.No flow control
AnswersA, B, E

DNS and DHCP commonly use UDP.

Why this answer

UDP is a connectionless transport layer protocol that provides minimal overhead, making it ideal for applications like DNS and DHCP that require fast, lightweight communication. DNS uses UDP for queries (port 53) and DHCP uses UDP for client-server exchanges (ports 67/68) because they can tolerate occasional packet loss and benefit from the reduced latency.

Exam trap

Cisco often tests the distinction between connection-oriented (TCP) and connectionless (UDP) protocols, and candidates mistakenly associate 'reliable delivery' with UDP because some application-layer protocols (e.g., DNS with retries) can achieve reliability, but UDP itself does not provide it.

35
MCQeasy

Which layer of the OSI model uses MAC addresses to deliver frames within the same network segment?

A.Layer 2 (Data Link)
B.Layer 1 (Physical)
C.Layer 3 (Network)
D.Layer 4 (Transport)
AnswerA

Correct. Switches use MAC addresses at Layer 2.

Why this answer

Layer 2 (Data Link) uses MAC addresses for local delivery.

36
MCQeasy

Which non-overlapping channels are available in the 2.4 GHz band for Wi-Fi to minimize interference?

A.1, 3, 5, 7, 9, 11
B.1, 5, 9, 13
C.2, 7, 12
D.1, 6, 11
AnswerD

These three channels do not overlap.

Why this answer

Channels 1, 6, and 11 are the only non-overlapping channels in 2.4 GHz.

37
MCQmedium

Which IP address is a valid host address in the 192.168.1.0/24 network?

A.192.168.1.128
B.192.168.2.1
C.192.168.1.255
D.192.168.1.0
AnswerA

192.168.1.128 is within the usable range 1-254.

Why this answer

/24 means subnet mask 255.255.255.0. Network address is 192.168.1.0, broadcast is 192.168.1.255. Usable hosts range from .1 to .254.

38
Multi-Selectmedium

A software-defined networking (SDN) controller is being deployed to manage network devices. Which two components are part of the SDN architecture? (Choose two.)

Select 2 answers
A.Data plane
B.Control plane
C.Application plane
D.Forwarding plane
E.Management plane
AnswersA, B

The data plane forwards traffic based on decisions from the control plane.

Why this answer

The control plane (decides traffic flow) and data plane (forwards traffic) are the two key planes in SDN, with the controller centralizing the control plane.

39
MCQhard

A network engineer is subnetting the network 192.168.1.0/24 into subnets that each support at least 50 hosts. What subnet mask should be used?

A.255.255.255.192 (/26)
B.255.255.255.224 (/27)
C.255.255.255.240 (/28)
D.255.255.255.128 (/25)
AnswerA

/26 provides 62 hosts, meeting the requirement.

Why this answer

To support at least 50 hosts, you need 6 host bits (2^6 - 2 = 62 usable addresses). A /26 subnet mask (255.255.255.192) provides exactly 6 host bits, meeting the requirement. The original /24 network is borrowed with 2 subnet bits, yielding 4 subnets of 64 addresses each.

Exam trap

Cisco often tests the distinction between the number of host bits needed versus the number of subnet bits, and the trap here is that candidates may choose /25 because it supports more hosts, overlooking that /26 is the minimum mask that meets the 50-host requirement and is the correct answer per the question's wording.

How to eliminate wrong answers

Option B (255.255.255.224, /27) is wrong because it provides only 5 host bits (2^5 - 2 = 30 usable addresses), which is insufficient for 50 hosts. Option C (255.255.255.240, /28) is wrong because it provides only 4 host bits (2^4 - 2 = 14 usable addresses), far below the requirement. Option D (255.255.255.128, /25) is wrong because although it provides 7 host bits (126 usable addresses), it uses only 1 subnet bit, creating only 2 subnets; the question asks for subnets that each support at least 50 hosts, and while /25 meets the host count, it is not the most efficient choice and the correct answer is the smallest mask that satisfies the host requirement, which is /26.

40
MCQhard

In Software-Defined Networking (SDN), the control plane is separated from the data plane. Which of the following best describes the function of the southbound API?

A.Interface between applications and the controller
B.Interface between the controller and network devices
C.Communication between two controllers
D.Interface between the control plane and management plane
AnswerB

Southbound API (e.g., OpenFlow) allows the controller to configure devices.

Why this answer

Southbound API is used by the SDN controller to communicate with network devices (e.g., switches, routers) to enforce forwarding rules.

41
MCQhard

In the OSI model, which layer is responsible for session management, including establishing, maintaining, and terminating connections between applications?

A.Layer 4 (Transport)
B.Layer 7 (Application)
C.Layer 5 (Session)
D.Layer 6 (Presentation)
AnswerC

Session layer manages dialog control and session establishment.

Why this answer

The Session layer (Layer 5) manages sessions between applications. The Transport layer handles end-to-end communication.

42
MCQeasy

A network engineer is troubleshooting connectivity issues and wants to verify the path that packets take from a source to a destination IP address. Which OSI layer is primarily responsible for packet forwarding and routing?

A.Layer 4 - Transport
B.Layer 3 - Network
C.Layer 1 - Physical
D.Layer 2 - Data Link
AnswerB

Network layer is responsible for packet forwarding, routing, and logical addressing.

Why this answer

The Network layer (Layer 3) is responsible for packet forwarding and routing, using logical IP addresses to determine the best path from source to destination. Protocols like IP (IPv4/IPv6) and routing protocols (e.g., OSPF, BGP) operate at this layer to make forwarding decisions. The traceroute command is a common tool that leverages Layer 3 TTL (Time-to-Live) fields to map the path packets take.

Exam trap

Cisco often tests the distinction between Layer 2 switching (MAC-based forwarding within a LAN) and Layer 3 routing (IP-based forwarding between networks), and the trap here is that candidates confuse the Data Link layer's local forwarding with the Network layer's path determination.

How to eliminate wrong answers

Option A is wrong because Layer 4 (Transport) handles end-to-end communication, segmentation, and reliability (e.g., TCP/UDP), not packet forwarding or routing. Option C is wrong because Layer 1 (Physical) deals with the physical transmission of raw bits over a medium (e.g., cables, signals) and has no awareness of paths or addresses. Option D is wrong because Layer 2 (Data Link) is responsible for node-to-node delivery within a single network segment using MAC addresses, not for routing across multiple networks.

43
MCQeasy

An application developer is using a protocol that does not require a connection setup and has minimal header overhead. Which transport protocol is being used?

AnswerB

UDP is connectionless and has minimal overhead.

Why this answer

UDP (User Datagram Protocol) is a connectionless transport-layer protocol that does not require a handshake (no SYN/SYN-ACK/ACK) and has minimal header overhead (only 8 bytes, compared to TCP's 20 bytes). This makes it ideal for applications like DNS queries, streaming media, or real-time communications where low latency is more critical than guaranteed delivery.

Exam trap

Cisco often tests the distinction between transport-layer and application-layer protocols, so candidates mistakenly choose HTTP (an application protocol) instead of recognizing that the question explicitly asks for the transport protocol.

How to eliminate wrong answers

Option A is wrong because TCP requires a three-way handshake to establish a connection and has a larger header (20–60 bytes) with fields for sequence numbers, acknowledgments, and flow control, contradicting the 'no connection setup' and 'minimal header overhead' criteria. Option C is wrong because HTTP is an application-layer protocol, not a transport-layer protocol; it relies on TCP (or rarely UDP via HTTP/3) for transport, so it does not itself define connection setup or header overhead at the transport level. Option D is wrong because ICMP (Internet Control Message Protocol) is a network-layer protocol used for error reporting and diagnostics (e.g., ping), not a transport-layer protocol; it has no concept of port numbers or connection setup, but it is not a transport protocol.

44
MCQhard

An HTTP/2 connection uses multiple concurrent streams over a single TCP connection. Which feature of HTTP/2 enables this?

A.Binary framing layer
B.Multiplexing
C.Server push
D.Header compression (HPACK)
AnswerB

Correct. Multiplexing allows multiple streams over one TCP connection.

Why this answer

Multiplexing is the HTTP/2 feature that allows multiple concurrent streams to share a single TCP connection. This eliminates head-of-line blocking at the application layer by enabling the interleaving of frames from different streams, so a slow response on one stream does not block others.

Exam trap

Cisco often tests the distinction between the enabling mechanism (binary framing) and the resulting capability (multiplexing), so candidates mistakenly choose 'binary framing layer' because it sounds technical, but it is the foundation, not the feature that directly enables concurrency.

How to eliminate wrong answers

Option A is wrong because the binary framing layer is the mechanism that encodes frames into binary format, but it does not itself enable concurrency; multiplexing uses the framing layer to interleave streams. Option C is wrong because server push is a feature that allows the server to proactively send resources to the client, but it does not enable multiple concurrent streams. Option D is wrong because header compression (HPACK) reduces overhead by compressing HTTP headers, but it has no role in enabling concurrent streams.

45
MCQmedium

A developer is writing a script that uses a REST API to configure network devices via NETCONF. Which layer of the SDN architecture does NETCONF belong to?

C.Application layer
D.Control layer
AnswerB

Correct. NETCONF is a southbound protocol.

Why this answer

NETCONF is a network management protocol used to install, manipulate, and delete the configuration of network devices. In the SDN architecture, the southbound interface is the layer that connects the control plane to the data plane, and NETCONF operates as a southbound protocol by carrying configuration data from a controller or management system down to network devices.

Exam trap

Cisco often tests the distinction between the protocol itself (NETCONF) and the architectural layer it belongs to, leading candidates to mistakenly select 'Control layer' because they associate NETCONF with the controller, rather than recognizing it as a southbound interface protocol.

How to eliminate wrong answers

Option A is wrong because the northbound interface is the API layer that connects the SDN controller to applications and business logic, not to network devices; NETCONF does not operate at this level. Option C is wrong because the application layer contains the business applications and services that consume northbound APIs, not the protocols that directly configure devices. Option D is wrong because the control layer is the SDN controller itself, which uses southbound protocols like NETCONF to communicate with devices, but NETCONF is not the control layer; it is a protocol used by that layer.

46
MCQeasy

Which OSI layer is responsible for routing packets across different networks?

A.Layer 1 (Physical)
B.Layer 3 (Network)
C.Layer 4 (Transport)
D.Layer 2 (Data Link)
AnswerB

Layer 3 uses IP addresses to route packets across networks.

Why this answer

The Network layer (Layer 3) is responsible for logical addressing and routing packets between different networks. Protocols like IP (IPv4/IPv6) use routing tables and algorithms (e.g., OSPF, BGP) to determine the best path for forwarding packets across multiple hops. Without Layer 3, traffic could not leave a local broadcast domain.

Exam trap

Cisco often tests the distinction between Layer 2 switching (MAC-based, same network) and Layer 3 routing (IP-based, between networks), and the trap here is confusing the Data Link layer's local forwarding with the Network layer's internetwork routing.

How to eliminate wrong answers

Option A is wrong because Layer 1 (Physical) handles raw bit transmission over physical media (e.g., voltages, frequencies, cables) and has no concept of addressing or routing. Option C is wrong because Layer 4 (Transport) provides end-to-end communication, segmentation, and reliability (e.g., TCP/UDP), but does not perform network-level routing between different subnets. Option D is wrong because Layer 2 (Data Link) uses MAC addresses to forward frames within a single network segment or VLAN, and relies on Layer 3 to route across different networks.

47
MCQmedium

Which of the following is a private IPv4 address range as defined by RFC 1918?

A.169.254.0.0/16
B.192.167.0.0/16
C.10.0.0.0/8
D.172.32.0.0/16
AnswerC

10.0.0.0/8 is a private IP range.

Why this answer

Option C (10.0.0.0/8) is correct because RFC 1918 reserves this range, along with 172.16.0.0/12 and 192.168.0.0/16, for private IPv4 addressing. These addresses are not routable on the public internet and are intended for use within private networks, such as corporate LANs or home networks.

Exam trap

Cisco often tests the exact boundaries of RFC 1918 ranges, and the trap here is confusing the 172.16.0.0/12 range with the broader 172.0.0.0/8, leading candidates to select 172.32.0.0/16 as a valid private range.

How to eliminate wrong answers

Option A is wrong because 169.254.0.0/16 is the Automatic Private IP Addressing (APIPA) range, used by hosts when DHCP fails, not a private RFC 1918 range. Option B is wrong because 192.167.0.0/16 is not a private range; the correct private range is 192.168.0.0/16, and 192.167.0.0/16 is part of the public address space. Option D is wrong because 172.32.0.0/16 falls outside the RFC 1918 private range 172.16.0.0/12; the private block covers 172.16.0.0 through 172.31.255.255, not 172.32.0.0.

48
Multi-Selectmedium

Which TWO of the following are characteristics of TLS (Transport Layer Security) used in HTTPS? (Choose two.)

Select 2 answers
A.It supports multiplexing of multiple streams.
B.It uses asymmetric encryption to exchange a symmetric session key.
C.It is an application layer protocol like HTTP.
D.It uses port 443 by default.
E.It provides server (and optionally client) certificate verification.
AnswersB, E

TLS uses asymmetric encryption (public key) to securely exchange a symmetric key for bulk encryption.

Why this answer

TLS provides encryption and uses certificates for authentication. HTTP/2 is an application layer protocol, not a TLS feature. Port 443 is the default for HTTPS, but TLS itself does not define the port.

TLS uses symmetric encryption for session keys.

49
MCQhard

Which wireless security standard provides the strongest encryption and is recommended for enterprise networks as of 2023?

A.WEP
B.TKIP
AnswerC

Correct. WPA3 provides the best security.

Why this answer

WPA3 is the latest standard with stronger encryption (SAE) and is recommended for modern networks.

50
Multi-Selectmedium

An administrator is configuring DNS records for a company's domain. Which three DNS record types are most commonly used to map hostnames to IP addresses or aliases? (Choose three.)

Select 3 answers
A.AAAA
B.CNAME
C.A
D.MX
E.PTR
AnswersA, B, C

AAAA record maps a hostname to an IPv6 address.

Why this answer

The A record maps a hostname to an IPv4 address, the AAAA record maps a hostname to an IPv6 address, and the CNAME record maps an alias hostname to the canonical (true) hostname. These three are the most common DNS record types used for hostname-to-IP or alias resolution in both IPv4 and IPv6 networks.

Exam trap

Cisco often tests the distinction between forward-mapping records (A, AAAA, CNAME) and service-specific or reverse records (MX, PTR), leading candidates to mistakenly include MX or PTR when the question explicitly asks for hostname-to-IP or alias mapping.

51
MCQmedium

In HTTP/2, which feature allows multiple concurrent requests and responses to be interleaved on a single connection, improving performance?

A.Header compression (HPACK)
B.Server push
C.Multiplexing
D.Binary framing
AnswerC

Multiplexing allows multiple streams on one connection.

Why this answer

HTTP/2 multiplexing allows multiple streams to be sent concurrently over a single TCP connection, reducing head-of-line blocking.

52
MCQeasy

Which of the following is a private IPv4 address range as defined by RFC 1918?

A.10.0.0.0/8
B.172.32.0.0/12
C.172.15.0.0/12
D.192.167.0.0/16
AnswerA

10.0.0.0/8 is a private range.

Why this answer

Private IPv4 ranges: 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16.

53
MCQmedium

A network application requires reliable, ordered delivery of data and uses a three-way handshake to establish a connection. Which transport protocol is being used?

A.UDP
C.TCP
D.IP
AnswerC

TCP provides reliable, ordered delivery and uses a three-way handshake.

Why this answer

TCP is a connection-oriented protocol that provides reliable, ordered delivery and uses a three-way handshake (SYN, SYN-ACK, ACK) to establish a connection.

54
MCQmedium

A developer is creating a REST API client that needs to authenticate using credentials passed in the HTTP header. Which header should be used?

A.Authorization
B.Host
C.Content-Type
D.Cookie
AnswerA

Authorization header carries credentials like Basic or Bearer tokens.

Why this answer

The Authorization header is the standard HTTP header used to transmit credentials (such as Basic, Bearer, or Digest tokens) to authenticate a REST API client. RFC 7235 defines this header as the mechanism for carrying authentication information from the client to the server, making it the correct choice for passing credentials in the HTTP header.

Exam trap

The trap here is that candidates often confuse the Cookie header with the Authorization header because both can carry tokens, but Cisco tests the specific RFC-defined purpose of the Authorization header for direct credential transmission in REST APIs.

How to eliminate wrong answers

Option B (Host) is wrong because the Host header specifies the target domain and port of the request, as defined in RFC 7230, and has no role in authentication. Option C (Content-Type) is wrong because it indicates the media type of the request body (e.g., application/json) and is used for content negotiation, not for passing credentials. Option D (Cookie) is wrong because while cookies can carry session tokens, they are designed for state management and are not the standard header for direct credential transmission in REST API authentication; the Authorization header is the explicit and preferred method.

55
Multi-Selectmedium

A network administrator is deploying a wireless network that supports the latest security standards and high throughput. Which TWO of the following are true regarding Wi-Fi 6 (802.11ax) compared to Wi-Fi 5 (802.11ac)?

Select 2 answers
A.Uses OFDMA for improved efficiency
B.Uses only 20 MHz channels
C.Supports WPA3 as the mandatory security standard
D.Maximum theoretical speed is lower than Wi-Fi 5
E.Operates only on the 5 GHz band
AnswersA, C

OFDMA allows multiple users to share channels efficiently.

Why this answer

Option A is correct because Wi-Fi 6 (802.11ax) introduces Orthogonal Frequency Division Multiple Access (OFDMA), which subdivides a channel into smaller resource units (RUs) to serve multiple clients simultaneously, significantly improving efficiency in dense environments compared to Wi-Fi 5's OFDM that allocates the entire channel to a single user per transmission.

Exam trap

Cisco often tests the misconception that Wi-Fi 6 only uses 20 MHz channels or only operates on 5 GHz, confusing it with older standards like 802.11b/g or 802.11a, while the key differentiator is OFDMA and mandatory WPA3 support.

56
MCQmedium

An application requires reliable, ordered delivery of data. Which transport protocol should be used?

A.UDP
C.TCP
D.IP
AnswerC

TCP ensures reliable, ordered data transfer.

Why this answer

TCP provides reliability, ordered delivery, and connection-oriented communication.

57
MCQmedium

An application requires reliable, ordered delivery of data with flow control and retransmission of lost segments. Which transport layer protocol should the developer choose and what is a key characteristic of this protocol?

A.TCP; it uses a three-way handshake for connection establishment
B.UDP; it provides ordered delivery through sequence numbers
C.TCP; it has lower overhead than UDP
D.UDP; it uses a three-way handshake for connection establishment
AnswerA

TCP is connection-oriented and uses a SYN-SYN/ACK-ACK handshake.

Why this answer

TCP provides reliability, ordering, flow control, and retransmission. It uses a three-way handshake to establish a connection.

58
Multi-Selectmedium

Which TWO of the following are valid private IPv4 address ranges? (Select two.)

Select 2 answers
A.172.15.0.0/12
B.10.0.0.0/8
C.172.32.0.0/12
D.169.254.0.0/16
E.192.168.0.0/16
AnswersB, E

Correct. 10.0.0.0/8 is private.

Why this answer

RFC 1918 defines 10.0.0.0/8, 172.16.0.0/12, and 192.168.0.0/16.

59
MCQmedium

A DNS AAAA record is used to resolve a hostname to what type of address?

A.Mail exchange server
B.IPv4 address
C.Canonical name alias
D.IPv6 address
AnswerD

Correct. AAAA stands for quad-A and maps to IPv6.

Why this answer

AAAA records map hostnames to IPv6 addresses.

60
Multi-Selecthard

Which THREE of the following are benefits of using an SDN (Software-Defined Networking) architecture compared to traditional networking? (Choose three.)

Select 3 answers
A.Reduced need for network engineers.
B.Automation of network configuration changes.
C.Faster deployment of new network services.
D.Centralized control and visibility of the network.
E.Built-in encryption for all network traffic.
AnswersB, C, D

Programmability allows automated changes via APIs.

Why this answer

Option B is correct because SDN separates the control plane from the data plane, allowing network administrators to automate configuration changes through a centralized controller (e.g., OpenFlow or Cisco APIC-EM). This eliminates the need for manual, device-by-device CLI changes, reducing human error and enabling rapid, consistent updates across the entire network.

Exam trap

Cisco often tests the misconception that SDN eliminates the need for network engineers entirely, but the correct understanding is that SDN automates tasks and centralizes control, not that it removes the human role in network design and troubleshooting.

61
MCQmedium

A developer is troubleshooting an HTTP API call that returns a 404 status code. Which of the following is the most likely cause?

A.The server is unavailable due to maintenance
B.The requested URL endpoint does not exist
C.The server encountered an internal error
D.The client lacks proper authentication
AnswerB

404 Not Found means the server cannot find the requested resource.

Why this answer

HTTP 404 indicates the requested resource could not be found on the server.

62
MCQhard

A network engineer is configuring a wireless network for a hospital that requires high throughput and minimal interference from neighboring networks. Which set of 2.4 GHz channels should be used for non-overlapping coverage?

A.1, 6, 11
B.2, 7, 12
C.1, 5, 9
D.1, 3, 5
AnswerA

These are the standard non-overlapping channels.

Why this answer

In the 2.4 GHz ISM band, channels 1, 6, and 11 are the only three non-overlapping channels, each separated by 25 MHz, which prevents co-channel interference. This configuration maximizes throughput and minimizes interference from neighboring networks, making it ideal for high-density environments like hospitals.

Exam trap

Cisco often tests the misconception that any set of channels spaced 5 apart (e.g., 1, 6, 11) is the only valid set, but candidates may mistakenly think channels like 2, 7, 12 or 1, 5, 9 are also non-overlapping due to misunderstanding of channel width and regulatory restrictions.

How to eliminate wrong answers

Option B is wrong because channels 2, 7, and 12 are not all non-overlapping; channel 12 is not available for use in the United States (FCC restricts it to low-power or indoor-only use) and overlaps with channel 11. Option C is wrong because channels 1, 5, and 9 overlap; channel 5 overlaps with channels 1 and 9, causing interference. Option D is wrong because channels 1, 3, and 5 all overlap; adjacent channels (e.g., 1 and 3) have significant frequency overlap, leading to co-channel interference.

63
MCQeasy

At which layer of the OSI model do MAC addresses operate?

A.Layer 2 – Data Link
B.Layer 1 – Physical
C.Layer 4 – Transport
D.Layer 3 – Network
AnswerA

Correct. MAC addresses are Layer 2 identifiers.

Why this answer

MAC addresses operate at Layer 2 (Data Link) of the OSI model because they are used for local network addressing and frame delivery between directly connected devices. The Data Link layer encapsulates packets into frames and uses MAC addresses to identify source and destination interfaces on the same network segment, as defined by IEEE 802 standards.

Exam trap

Cisco often tests the confusion between Layer 2 MAC addresses and Layer 3 IP addresses, where candidates mistakenly associate MAC addresses with routing or network-layer functions instead of local data-link delivery.

How to eliminate wrong answers

Option B is wrong because Layer 1 (Physical) deals with raw bit transmission over physical media, such as voltages, cables, and connectors, not addressing. Option C is wrong because Layer 4 (Transport) uses port numbers (e.g., TCP/UDP) to identify applications and manage end-to-end communication, not MAC addresses. Option D is wrong because Layer 3 (Network) uses logical IP addresses (e.g., IPv4 or IPv6) for routing between networks, while MAC addresses are used for local delivery within a broadcast domain.

64
MCQhard

A network administrator is configuring a wireless network and wants to minimize interference. In the 2.4 GHz band, which set of channels are non-overlapping?

A.1, 5, 9, 13
B.1, 3, 5, 7, 9, 11
C.1, 6, 11
D.2, 7, 12
AnswerC

Correct. These are the standard non-overlapping channels.

Why this answer

Channels 1, 6, and 11 are the only non-overlapping channels in the 2.4 GHz band.

65
Multi-Selecthard

An engineer is configuring a new IPv4 subnet with the address 172.16.5.0/25. Which three statements are true about this subnet? (Choose three.)

Select 3 answers
A.The subnet mask is 255.255.255.192.
B.There are 126 usable host addresses.
C.The broadcast address is 172.16.5.127.
D.The subnet mask is 255.255.255.128.
E.The network address is 172.16.5.128.
AnswersB, C, D

2^(32-25) - 2 = 126.

Why this answer

Option B is correct because a /25 prefix length corresponds to a subnet mask of 255.255.255.128, which provides 2^(32-25) - 2 = 128 - 2 = 126 usable host addresses. The network address is 172.16.5.0, and the broadcast address is 172.16.5.127, leaving addresses 172.16.5.1 through 172.16.5.126 for hosts.

Exam trap

Cisco often tests the confusion between the network address and the first usable host address, or the tendency to misapply the subnet mask by using 255.255.255.192 (/26) instead of 255.255.255.128 (/25) when the prefix length is given.

66
Multi-Selecthard

An engineer is troubleshooting a network issue where a client cannot reach a server. The client uses HTTPS. Which TWO factors are essential for a successful TLS handshake?

Select 2 answers
A.The server must have a valid digital certificate
B.The handshake uses UDP for faster negotiation
C.The client must present a certificate to the server
D.The client must have a public key to encrypt the session
E.The server's private key is used to decrypt the pre-master secret
AnswersA, E

The certificate proves the server's identity.

Why this answer

Option A is correct because the server must present a valid digital certificate during the TLS handshake to prove its identity to the client. This certificate contains the server's public key and is signed by a trusted Certificate Authority (CA), enabling the client to verify the server's authenticity before proceeding with encrypted communication.

Exam trap

Cisco often tests the misconception that the client must always present a certificate or that the handshake uses UDP, when in reality client certificates are optional and TLS relies on TCP.

67
Multi-Selectmedium

Which TWO of the following are benefits of using UDP over TCP for real-time applications?

Select 2 answers
A.Lower latency due to no connection setup
B.Guaranteed delivery of all packets
C.Reduced overhead from smaller header size
D.In-order packet delivery
E.Congestion control to avoid network overload
AnswersA, C

UDP is connectionless, reducing latency.

Why this answer

Option A is correct because UDP does not require a three-way handshake (SYN, SYN-ACK, ACK) before data transmission, eliminating the connection setup latency inherent in TCP. This makes UDP ideal for real-time applications like VoIP or video streaming where low delay is critical.

Exam trap

Cisco often tests the misconception that 'reliable' means 'better' for all applications, but candidates must recognize that real-time apps prioritize low latency over reliability, making UDP's lack of guarantees a feature, not a flaw.

68
MCQhard

A network engineer is tasked with segmenting a large broadcast domain into smaller ones using VLANs. In the OSI model, at which layer does a VLAN operate?

A.Layer 2 - Data Link
B.Layer 4 - Transport
C.Layer 1 - Physical
D.Layer 3 - Network
AnswerA

VLANs work by adding tags to Ethernet frames at Layer 2.

Why this answer

VLANs operate at Layer 2 (Data Link) by tagging frames with VLAN IDs to separate broadcast domains.

69
MCQmedium

An application uses UDP. Which characteristic is true about this application's communication?

A.It guarantees packet delivery
B.It retransmits lost packets
C.It is connectionless
D.It performs a three-way handshake
AnswerC

UDP sends datagrams without establishing a connection.

Why this answer

UDP is a connectionless transport protocol, meaning it does not establish a dedicated end-to-end connection before sending data. This characteristic allows for low-latency, best-effort delivery without the overhead of connection setup, which is ideal for applications like DNS queries or streaming media where speed is prioritized over reliability.

Exam trap

Cisco often tests the misconception that all transport protocols provide reliability, leading candidates to associate UDP with features like guaranteed delivery or retransmission, when in fact those are exclusive to TCP.

How to eliminate wrong answers

Option A is wrong because UDP does not guarantee packet delivery; it is a best-effort protocol that provides no acknowledgment or retransmission mechanisms. Option B is wrong because UDP does not retransmit lost packets; retransmission is a feature of TCP, which uses sequence numbers and acknowledgments to ensure reliable delivery. Option D is wrong because a three-way handshake is a connection-establishment process used by TCP (SYN, SYN-ACK, ACK), not by UDP, which sends datagrams without prior setup.

70
MCQmedium

A network engineer is configuring a wireless network for a new office. To maximize performance and minimize interference, the engineer decides to use the 5 GHz band. Which of the following is a key advantage of 5 GHz over 2.4 GHz?

A.Less interference and more channels
B.Better range through walls
C.Larger coverage area
D.Higher compatibility with older devices
AnswerA

5 GHz has more non-overlapping channels and less common interference.

Why this answer

5 GHz offers more non-overlapping channels and less interference from common devices like microwaves and Bluetooth.

71
Multi-Selectmedium

A developer is designing a system that requires high reliability and ordered data delivery. The developer chooses TCP. Which THREE features are provided by TCP?

Select 3 answers
A.Flow control using window size
B.Multicast support
C.Simple header with minimal overhead
D.Connection-oriented communication using a three-way handshake
E.Sequencing and retransmission of lost packets
AnswersA, D, E

TCP uses sliding window for flow control.

Why this answer

TCP provides a three-way handshake, sequence numbering for ordering, and flow control.

72
MCQmedium

An engineer is troubleshooting a VoIP call quality issue. The call uses UDP and experiences packet loss. Which characteristic of UDP most likely contributes to the problem?

A.Ordered delivery guarantee
B.Connection-oriented setup
C.No retransmission of lost packets
D.Flow control mechanism
AnswerC

Correct. UDP does not retransmit, causing gaps in audio.

Why this answer

UDP is a connectionless transport protocol that does not provide retransmission of lost packets. In VoIP, packet loss directly degrades call quality because lost audio data is never resent, leading to gaps or distortion in the conversation.

Exam trap

Cisco often tests the misconception that UDP's lack of reliability is always a flaw, but the trap here is that candidates may incorrectly attribute the problem to UDP's lack of ordered delivery or flow control, when the core issue is the absence of retransmission for lost packets.

How to eliminate wrong answers

Option A is wrong because UDP does not guarantee ordered delivery; it is a best-effort protocol that may deliver packets out of order, and VoIP codecs typically handle sequencing at the application layer. Option B is wrong because UDP is connectionless and does not use a connection-oriented setup like TCP's three-way handshake; this lack of setup reduces latency but contributes to packet loss. Option D is wrong because UDP has no built-in flow control mechanism; flow control is a TCP feature that manages data transmission rates to prevent congestion, and its absence in UDP means the sender can overwhelm the network.

73
MCQmedium

Which wireless standard operates in both 2.4 GHz and 5 GHz bands and is commonly known as Wi-Fi 6?

A.802.11n
B.802.11ac
C.802.11ax
D.802.11g
AnswerC

802.11ax is Wi-Fi 6, dual-band.

Why this answer

802.11ax (Wi-Fi 6) supports both 2.4 GHz and 5 GHz bands, offering improved efficiency.

74
MCQmedium

In an SDN architecture, which layer is responsible for making decisions about where traffic should be forwarded?

A.Data plane
B.Application plane
C.Management plane
D.Control plane
AnswerD

The control plane decides how traffic should be routed.

Why this answer

In SDN architecture, the control plane is responsible for making forwarding decisions by maintaining the network topology and computing paths for traffic flows. It communicates these decisions to the data plane via southbound protocols like OpenFlow or NETCONF, ensuring that packets are forwarded according to the desired policies.

Exam trap

Cisco often tests the distinction between the control plane and management plane, where candidates mistakenly think that configuration (management plane) is the same as making forwarding decisions, but the control plane is the one that dynamically determines traffic paths.

How to eliminate wrong answers

Option A is wrong because the data plane (or forwarding plane) is responsible only for the actual forwarding of packets based on flow tables or forwarding information bases (FIBs), not for making routing decisions. Option B is wrong because the application plane contains network applications (e.g., load balancers, firewalls) that express high-level policies, but it does not directly make per-packet forwarding decisions; it relies on the control plane to translate those policies into forwarding rules. Option C is wrong because the management plane handles administrative tasks such as configuration, monitoring, and fault management (e.g., via CLI, SNMP, or REST APIs), but it does not dynamically decide traffic paths in real time.

75
MCQmedium

An engineer is troubleshooting a connectivity issue between two devices on different VLANs. The switch connecting the devices is configured with 802.1Q trunking. At which OSI layer do VLANs operate?

A.Layer 2
B.Layer 4
C.Layer 1
D.Layer 3
AnswerA

VLANs are a Layer 2 concept used to separate traffic on a switch.

Why this answer

VLANs operate at Layer 2 (Data Link) because they segment broadcast domains based on MAC addresses and logical grouping, but they do not involve IP routing (Layer 3).

Page 1 of 2 · 99 questions totalNext →

Ready to test yourself?

Try a timed practice session using only Devnet Network Fundamentals questions.

CCNA Devnet Network Fundamentals Questions — Page 1 of 2 | Courseiva