CHAPTER 1

Virtual LANs
Chapter 1 Definitions of Key Terms
Define the following key terms from this chapter, and check your answers in the glossary:

802.1Q - IEEE 802.1Q The IEEE-standard VLAN trunking protocol 802.1Q includes the concept of a native
VLAN, for which no VLAN header is added, and a 4-byte VLAN header is inserted after the original frame’s
type/length field.

ISL - Inter-Switch Link (ISL) the Cisco-proprietary VLAN trunking protocol that predated 802.1Q by many years.
ISL defines a 26-byte header that encapsulates the original Ethernet frame.

Trunk - In campus LANs, an Ethernet segment over which the devices add a VLAN header that identifies the
VLAN in which the frame exists.

Trunking Also called VLAN trunking. A method (using either the Cisco ISL protocol or the IEEE 802.1Q protocol)
to support multiple VLANs that have members on more than one switch

Trunking administrative mode The configured trunking setting on a Cisco switch interface, as configured with the
switchport mode command. Trunking operational mode,

VLAN - virtual LAN (VLAN) A group of devices connected to one or more switches that are grouped into a single
broadcast domain through configuration. VLANs allow switch administrators to place the devices connected to the
switches in separate VLANs without requiring separate physical switches. This creates design advantages of
separating the traffic without the expense of buying additional hardware.

VLAN configuration database The name of the collective configuration of VLAN IDs and names on a Cisco
switch. vlan.dat,

VLAN Trunking Protocol (VTP) A Cisco-proprietary messaging protocol used between Cisco switches to
communicate configuration information about the existence of VLANs, including the VLAN ID and VLAN name.

VTP client mode One of three VTP operational modes for a switch with which switches learn about VLAN
numbers and names from other switches, but which does not allow the switch to be directly configured with VLAN
information.

VTP pruning The VTP feature by which switches dynamically choose interfaces on which to prevent the flooding
of frames in certain VLANs when the frames do not need to go to every switch in the network.

VTP server mode One of three sets of operating characteristics (modes) in VTP. Switches in server mode can
configure VLANs, tell other switches about the changes, and learn about VLAN changes from other switches.

VTP transparent mode One of three sets of operating characteristics (modes) in VTP. Switches in transparent
mode can configure VLANs, but they do not tell other switches about the changes, and they do not learn about
VLAN changes from other switches.
“Do I Know This Already?” Quiz
1. Ina LAN, which of the following terms best equates a. Collision domain
to the term VLAN? b. Broadcast domain
c. Subnet domain
d. Single switch
e. Trunk
Answer: B
2. Imaginea switch with three configured VLANs. How a. 0
many IP subnets are required, assuming that all hosts in b. 1
all VLANs want to use TCP/IP? c. 2
d. 3
e. You can’t tell from the information provided.

Answer D. While a subnet and a VLAN are not

equivalent concepts, the devices in one VLAN are
typically in the same subnet, and vice versa.
3. Which of the following fully encapsulates the original a. VTP
Ethernet frame in a trunking header rather than inserting b. ISL
another header inside the original Ethernet header? c. 802.1Q
d. Both ISL and 802.1Q
e. None of the other answers are correct.
Answer: B
4. Whichof the following adds the trunking header for a. VTP
all VLANs except one? b. ISL
c. 802.1Q
d. Both ISL and 802.1Q
e. None of the other answers are correct.
Answer C
5. Which of the following VTP modes allow VLANs to a. Client
be configured on a switch? b. Server
c. Transparent
d. Dynamic
e. None of the other answers are correct.
Answer B and C
6. Imagine that you are told that switch 1 is configured a. Trunking turned on
with the auto parameter for trunking on its Fa0/5 b. Auto
interface, which is connected to switch 2. You have to c. Desirable
configure switch 2. Which of the following settings for d. Access
trunking could allow trunking to work? e. None of the other answers are correct.

Answer A and C. The auto setting means that the

7. A switch has just arrived from Cisco. The switch has
never been configured with any VLANs, VTP
configuration, or any other configuration. An engineer
gets into configuration mode and issues the vlan 22
command, followed by the name Hannahs-
switch can negotiate trunking, but it can only respond to
negotiation messages, and it cannot initiate the
negotiation process. So, the other switch must be
configured to trunk or to initiate the negotiation process
(based on being configured with the dynamic desirable
option.)
A VLAN 22 is listed in the output of the show vlan brief
command.
B VLAN 22 is listed in the output of the show running-
config command.
C VLAN 22 is not created by this process.
VLAN command. Which of the following are true?
8. Which of the following commands list the operational
state of interface Gigabit 0/1 in regard to VLAN
trunking?
9. An engineer has just installed four new 2960 switches
and connected the switches to each other using crossover
cables. All the interfaces are in an “up and up” state. The
engineer configures each switch with the VTP domain
name Fred and leaves all fours witches in VTP server
mode. The engineer adds VLAN 33 at 9:00 a.m., and
then within 30 seconds, issues a show vlan brief
command on the other three switches, but does not find
VLAN 33 on the other three switches. Which answer
gives the most likely reason for the problem in this case?
10. Switches SW1 and SW2 connect through an
operational trunk. The engineer wants to use VTP to
communicate VLAN configuration changes. The
engineer configures a new VLAN on SW1, VLAN 44,
but SW2 does not learn about the new VLAN. Which of
the following configuration settings on SW1 and SW2
would not be a potential root cause why SW2 does not
learn about VLAN 44?
D VLAN 22 does not exist in that switch until at least
one interface is assigned to that VLAN.
Answer A. The default VTP setting of VTP server mode
means that the switch can configure VLANs, so the
VLAN is configured. However, being in server mode,
the configuration commands only show up in the show
vlan brief command output, and are not listed as part of
the running-config file.
a. show interfaces gi0/1
b. show interfaces gi0/1 switchport
c. show interfaces gi0/1 trunk
d. show trunks
Answer B and C
a. VTP requires that all switches have the same VTP
password.
b. The engineer should have been more patient and
waited for SW1 to send its next periodic VTP update.
c. None of the links between the switches trunk because
of the default 2960 trunking administrative mode of
auto.
d. None of the other answers are correct.
Answer C. VTP does not require a password, although
if a password is used, the password must match. VTP
sends VTP updates immediately after a VLAN database
change. However, VTP only sends VTP messages over
trunks, and 2960s default to using a trunking
administrative mode of auto, which does not initiate the
trunking negotiation process. So, none of the switches
automatically form a trunk, and no VTP messages are
sent.
a. VTP domain names of larry and LARRY, respectively
b. VTP passwords of bob and BOB, respectively
c. VTP pruning enabled and disabled, respectively
d. VTP modes of server and client, respectively
Answer C and D. The domain name and password must
be equal, and the switches must connect using a trunk
before VTP will work. It is normal to have some
switches as servers and some as clients. A mismatched
pruning configuration setting does not prevent the
synchronization of VLAN databases.
Command Reference to Check Your Memory
CHAPTER 2
Spanning Tree Protocol
Definitions of Key Terms
Define the following key terms from this chapter, and check your answers in the glossary.

Alternate port - In RSTP 802.1w, a port role used to denote an interface that is currently receiving an inferior Hello
BPDU, making it a possible replacement for the root port. Also used in the Cisco 802.1d STP implementation

Backup port - In RSTP 802.1w - a port role used when multiple interfaces on one switch connect to a single
collision domain. This makes one interface the designated port (DP), and one or more others become available to
replace the DP (backup role).

Blocking State In 802.1d STP, a port state in which no received frames are processed, and the switch forwards no
frames out the interface, with the exception of STP messages.,

BPDU (Bridge protocol data unit) - The generic name for Spanning Tree Protocol messages

BPDU Guard A Cisco switch feature that listens for incoming STP BPDU messages, disabling the interface if any
are received. The goal is to prevent loops when a switch connects to a port expected to only have a host connected to
it.

Bridge ID (BID) An 8-byte identifier for bridges and switches used by STP and RSTP. It is composed of a 2-byte
priority field followed by a 6-byte System ID field that is usually filled with a MAC address.

Bridge protocol data unit (BPDU) - The generic name for Spanning Tree Protocol messages
Designated port In both STP and RSTP, a port role used to determine which of multiple interfaces, each connected
to the same segment or collision domain, should forward frames to the segment. The switch advertising the lowest-
cost Hello BPDU onto the segment becomes the DP.

Disabled port In STP, a port role for nonworking interfaces—in other words, interfaces that are not in a connect or
up/up interface state

Discarding State An RSTP interface state in which no received frames are processed, and the switch forwards no
frames out the interface, with the exception of RSTP messages

EtherChannel - A Cisco-proprietary feature in which up to eight parallel Ethernet segments between the same two
devices, each using the same speed, can be combined to act as a single link for forwarding and Spanning Tree
Protocol logic

Forward delay An STP timer, defaulting to 15 seconds, used to dictate how long an interface stays in both the
Listening state and Learning state. Also called the forward delay timer

Forwarding State An STP and RSTP port state in which an interface operates unrestricted by STP.

Hello BPDU The STP and RSTP message used for the majority of STP communications, listing the root’s Bridge
ID, the sending device’s Bridge ID, and the sending device’s cost with which to reach the root

IEEE 802.1d The IEEE standard for the original Spanning Tree Protocol

IEEE 802.1s The IEEE standard for Multiple Instances of Spanning Tree (MIST), which allows for load balancing
of traffic among different VLANs.

IEEE 802.1w The IEEE standard for an enhanced version of STP, called Rapid STP, which speeds convergence.

Inferior Hello When comparing two or more received Hello BPDUs, a Hello that lists a numerically larger root
Bridge ID than another Hello, or a Hello that lists the same root Bridge ID but with a larger cost

Learning State In STP, a temporary port state in which the interface does not forward frames, but it can begin to
learn MAC addresses from frames received on the interface.,

Listening State A temporary STP port state that occurs immediately when a blocking interface must be moved to a
Forwarding state. The switch times out MAC table entries during this state. It also ignores frames received on the
interface and doesn’t forward any frames out the interface.

MaxAge In STP, a timer that states how long a switch should wait when it no longer receives
Hellos from the root switch before acting to reconverge the STP topology. Also called the
MaxAge Timer.

PortFast - a switch STP feature, in which a port is placed in an STP Forwarding state as soon as the interface comes
up, bypassing the Listening and Learning states. This feature is meant for ports connected to end-user devices.

Rapid Spanning Tree Protocol (RSTP) Defined in IEEE 802.1w. Defines an improved version of STP that
converges much more quickly and consistently than STP (802.1d)

Root port In STP, the one port on a nonroot switch in which the least-cost Hello is received.
Switches put root ports in a Forwarding state.

Root bridge See root switch.

Root switch In STP, the switch that wins the election by virtue of having the lowest Bridge
ID, and, as a result, sends periodic Hello BPDUs (the default is 2 seconds).

Root port In STP, the one port on a nonroot switch in which the least-cost Hello is received.
Switches put root ports in a Forwarding state.

Spanning Tree Protocol (STP) A protocol defined by IEEE standard 802.1d. Allows switches and bridges to create
a redundant LAN, with the protocol dynamically causing some ports to block traffic, so that the bridge/switch
forwarding logic will not cause frames to loop indefinitely around the LAN.

“Do I Know This Already?” Quiz

1. Which of the following IEEE 802.1d port states are a. Blocking
stable states used when STP has completed b. Forwarding
convergence? c. Listening
d. Learning
e. Discarding

A &B. Listening and Learning are transitory port states,

used only when moving from the Blocking to the
Forwarding State. Discarding is not an 802.1d STP port
state.
2. Which of the following are transitory IEEE 802.1d a. Blocking
port states used only during the process of STP b. Forwarding
convergence? c. Listening
d. Learning
e. Discarding

C and D. Listening and Learning are transitory port

states, used only when moving from the Blocking to the
Forwarding state. Discarding is not an 802.1d STP port
state. Forwarding and Blocking are stable states.
3. Which of the following bridge IDs would win election a. 32768:0200.1111.1111
as root, assuming that the switches with these bridge IDs b. 32768:0200.2222.2222
were in the same network? c. 200:0200.1111.1111
d. 200:0200.2222.2222
e. 40,000:0200.1111.1111

C. The smallest numeric bridge ID wins the election.

4. Which of the following facts determines how often a
nonroot bridge or switch sends an 802.1d STP Hello
BPDU message?
a. The Hello timer as configured on that switch.
b. The Hello timer as configured on the root switch.
c. It is always every 2 seconds.
d. The switch reacts to BPDUs received from the root
switch by sending another
BPDU 2 seconds after receiving the root BPDU.

B. Non-root switches forward Hellos received from the

root; the root sends these Hellos based on the root’s
configured Hello timer.
5. What STP feature causes an interface to be placed in a. STP
the Forwarding State as soon as the interface is b. RSTP
physically active? c. Root Guard
d. 802.1w
e. PortFast
f. EtherChannel
6. Whichanswer lists the name of the IEEE standard that a. STP
improves the original STP standard and lowers b. RSTP
convergence time? c. Root Guard
d. 802.1w
e. PortFast
f. Trunking

B and D. The IEEE 802.1w standard, called Rapid STP,

provides much faster STP convergence.
7. Whichof the following RSTP port states have the a. Blocking
same name as a similar port state in traditional STP? b. Forwarding
c. Listening
d. Learning
e. Discarding
f. Disabled

B and D. RSTP uses port states of Forwarding,

8. Ona 2960 switch, which of the following commands
change the value of the bridge ID?
Learning, and Discarding, with
Forwarding and Learning States performing the same
basic functions as the STP port states with the same
name.
a. spanning-tree bridge-id value
b. spanning-tree vlan vlan-number root {primary |
secondary}
c. spanning-tree vlan vlan-number priority value
d. set spanning-tree priority value

B and C
9. Examinethe following extract from the show a. The information is about the STP instance for VLAN
spanning-tree command on a Cisco 1.
switch: b. The information is about the STP instance for VLAN
Bridge ID Priority 32771 (priority 32768 sys-id-ext 3) 3.
Address 0019.e86a.6f80
c. The command output confirms that this switch cannot
Which of the following answers is true regarding the
possibly be the root switch.
switch on which this command output was gathered?
d. The command output confirms that this switch is
currently the root switch

B. Cisco switches use the extended system ID format for

bridge IDs by default, in which the priority field is

10. Switch SW3 is receiving only two Hello BPDUs,
both from the same root switch, received on the two
interfaces listed as follows:
SW3#show interfaces status
Port Name Status Vlan Duplex Speed Type
Fa0/13 connected 3 a-half a-100 10/100BaseTX
Gi0/1 connected 1 a-full a-1000 1000BaseTX
SW3 has no STP-related configuration commands. The
Hello received on Fa0/13 lists cost 10, and the Hello
received on Gi0/1 lists cost 20. Which of the following
is true about STP on SW3?
broken down into a base priority value (32,768 in this
case) plus the VLAN ID. The priority of this switch
allows it to be capable of being the root switch, but the
command output does not supply enough information to
know whether this switch is currently root.
a. SW3 will choose Fa0/13 as its root port.
b. SW3 will choose Gi0/1 as its root port.
c. SW3’s Fa0/13 will become a designated port.
d. SW3’s Gi0/1 will become a designated port.
B. The two interfaces default to a port cost of 19
(Fa0/13) and 4 (Gi0/1), making SW3’s cost to reach the
root 10 + 19 = 29 out Fa0/13, and 20 + 4 = 24 over
Gi0/1. SW3 therefore chooses Gi0/1 as its root port.
SW3 could then advertise a cost of 24 (cost to reach the
root) Hello out Fa0/13, but it would be inferior to the
Hello already being received on Fa0/13 (cost 10), so
SW3 would not choose Fa0/13 as a designated port.