Network and Security Questionaire

1.Broadcast address of 1.1.1.1/30.
1.1.1.3
2.Difference between Cisco Nexus 7000 and Cisco 6500.Where will you use it.
3.What are the advantages which Nexus offers in terms of VPC from regular ether-channels.
VPC offers loadsharing along with node level redundancy.
4. Which state does OSPF gets stuck, due to MTU mismatch.

EXSTART
5.What OSPF message carries the MTU size information.
Database discription
6.In RSVP path message ,what is the source and destination IP address at each hop.
7.In which database is the CSPF calculation stored.
Traffic engineering database or ospf opaque database

8.Draw the network diagram of the current network you are working on.
9.How do set up and entire DMZ with connection to loadbalancer with scratch.
10.What are probes in loadbalancers.
11.In 6500 ,how is the connectivity between the application module (ACE/FWSM) and the main switch chassis.
12.In Nexus 7000 in which modules number is the supervisor card connected.
13.In bluecoat proxy ,how can you block a particular file extension type what kind of policy will you create.
14.How does the flow of packet occur in Juniper firewall.
15.In L3VPN ,how many labels are attached to the packet when in traverses the mpls backbone.
16.Who allocates the vpn label in L3VPN and L2VPN(pswedowire)
17.What is the use of RSVP path and reserve message.
18.What is the difference between Kompella and Martini drafts…or ldp and bgp signalled l2vpn.
19.In a cluster of bluecoat proxy ,you want a group of users to access a particular website only using a specific bluecoat node.How can you achieve that.
20.Junos/IOS upgrade procedure.?
21.AS override and Allow as in ,how do we use it.
22.What is the BGP path selectiron procedure.
23.Which transport layer port is used in ping.
24.Explain all the layers of OSI.
25.Which layer does SSL work on in OSI or TCP/IP model.
26.Redistribution from EIGRP to RIP and OSPF to RIP.
27.What are the components of HLD and LLD.
28.How does Arbor work in DDOS mitigation.
29.Disadvantages of using Arbor in offline mode.
30.How is SSL offloading done in Bluecoat.
31.How is SSL offloading done in F5 loadbalancers.
32.How you to prepare MBSS document for you network.
34.Various domains and controls of ISO27001.
35.Varionous OSPF LSA types.
36.Where is OSPF LSA 10 used,what information is carried in it.
37.How do you enable OSPFv3.
38.What will happen when you join two ends of a switch.
39.Explain the various layers of OSI model.
40.Difference between PAGP and LACP
41.Difference between HSRP and VRRP.
42.Hello time in HSRP and which router sends the Hello(Keepalives in HSRP)
43.False positive and False Negative in IPS.
44.STP load balancing on multiple links(non bundled) between two switches.
45.Scenario where HSRP and STP both are running with one switch as STP root and other as HSRP master.
46.Significance of DN bit and P bit in OSPF.
47.Difference between using BGP confideration and BGP route-reflectors.
48.Difference between next hop of routes received by broadcast next and point to multipoint network.
49.Where do we typically use aggresive mode in IPSec site to site VPN.
50.What problems occurs in MPLS network when a non /32 loopback address is configured as a normal ospf network instead of point to point.
If we have a loopback ip ,say 1.1.1.1/25 and no not configure it as a point to point network ,then during ldp the host router assigns label to the prefix 1.1.1.1/25 and sends it to the ldp neighbor.However in the neighbor’s FIB 1.1.1.1/32 is present and when we check the corresponding LFIB,there is prefix 1.1.1.1/32 is mentioned as unassigned.This is due to the fact that there is label sent by host router for 1.1.1.1/32.In the mpls ldp label bindings ,we can check two entries 1.1.1.1/25 with no label and 1.1.1.1/32 with a local label but no remote bindings.
51.Will there be a DR in a broadcast OSPF network if only 1 router is active)
Yes. An OSPF router waits for the expiry of the WAIT timer (typically equal to dead timer=40 secs),if before that it sees a router with priority higher than itself then that may be a DR candidate ese,it elects itself as DR.
52.How can we filter intra area and inter area OSPF routes.
For inter area – At the ABR create a filter-list to deny the prefix from going out of the desired area.
area 10 filter-list prefix Deny_Test_Route out
For intra-area – At the router for which prefix has to be denied ,create a distribute-list in incoming direction .
distribute-list prefix Deny_Test_Route in
52.How can we use different LSPs for different VRFs.
53.How can we preempt MPLS FRR ,so that primary path is active once this path comes up.
54.If two BGP peers have different keep alive timers, will the neighbor-ship be formed?
Yes. BGP peers using the OPEN message share the keep alive and hold timers,these values is negotiated and the smaller of these is selected.
55.What is the difference between ISIS areas and OSPF areas.
In ISIS backbone area is not mandatory ,however ,in OSPF backbone is mandatory for end to to end communication.In ISIS one router can be part of only one area,in OSPF one router can be part of multiple OSPF areas.
56.Out of the following which statement is true for EBGP but not iBGP
  1. EBGP works to TCP port 180
  2. EBGP updates the AS path at each hop
  3. EBGP

57.What are the mandatory BGP attributes.
Origin,Next-hop,AS-PATH
58.What is the most uncommon BGP attribute used out of following -Weight,Origin Code,Local preference,AS path.
Weight
59.In OSPF what is the area types correponding to the following statements.

  1. ip ospf area 1 nssa
  2. ip ospf area 1 stub no-summary

For first it is not so stubby area.
For second it is totally stubby area.
50.In ASR 9000 how do you check the line card status.

 

 

 

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s