Home > CCNA – SNMP Questions

CCNA – SNMP Questions

March 29th, 2015 Go to comments

Note: If you are not sure about SNMP, please read our SNMP tutorial.

Question 1

Explanation

SNMP is an application-layer protocol that provides a message format for communication between SNMP managers and agents. SNMP provides a standardized framework and a common language used for the monitoring and management of devices in a network.
The SNMP framework has three parts:

+ An SNMP manager
+ An SNMP agent
+ A Management Information Base (MIB)

The SNMP manager is the system used to control and monitor the activities of network hosts using SNMP. The most common managing system is called a Network Management System (NMS). The term NMS can be applied to either a dedicated device used for network management, or the applications used on such a device. A variety of network management applications are available for use with SNMP. These features range from simple command-line applications to feature-rich graphical user interfaces (such as the CiscoWorks2000 line of products).

The SNMP agent is the software component within the managed device that maintains the data for the device and reports these data, as needed, to managing systems. The agent and MIB reside on the routing device (router, access server, or switch). To enable the SNMP agent on a Cisco routing device, you must define the relationship between the manager and the agent.

The Management Information Base (MIB) is a virtual information storage area for network management information, which consists of collections of managed objects.

(Reference: http://www.cisco.com/en/US/docs/ios/12_2/configfun/configuration/guide/fcf014.html#wp1017597)

Question 2

Explanation

Sometimes, messages like this might appear in the router console:

%SNMP-3-CPUHOG: Processing [chars] of [chars]

They mean that the SNMP agent on the device has taken too much time to process a request.

You can determine the cause of high CPU use in a router by using the output of the show process cpu command.

Note: A managed device is a part of the network that requires some form of monitoring and management (routers, switches, servers, workstations, printers…).

(Reference: http://www.cisco.com/en/US/tech/tk648/tk362/technologies_tech_note09186a00800948e6.shtml)

Question 3

Explanation

A TRAP is a SNMP message sent from one application to another (which is typically on a remote host). Their purpose is merely to notify the other application that something has happened, has been noticed, etc. The big problem with TRAPs is that they’re unacknowledged so you don’t actually know if the remote application received your oh-so-important message to it. SNMPv2 PDUs fixed this by introducing the notion of an INFORM, which is nothing more than an acknowledged TRAP.

Question 4

Explanation

Cisco IOS software supports the following versions of SNMP:

+ SNMPv1 – The Simple Network Management Protocol: A Full Internet Standard, defined in RFC 1157. (RFC 1157 replaces the earlier versions that were published as RFC 1067 and RFC 1098.) Security is based on community strings.

+ SNMPv2c – The community-string based Administrative Framework for SNMPv2. SNMPv2c (the “c” stands for “community”) is an Experimental Internet Protocol defined in RFC 1901, RFC 1905, and RFC 1906. SNMPv2c is an update of the protocol operations and data types of SNMPv2p (SNMPv2 Classic), and uses the community-based security model of SNMPv1.

+ SNMPv3 – Version 3 of SNMP. SNMPv3 is an interoperable standards-based protocol defined in RFCs 2273 to 2275. SNMPv3 provides secure access to devices by a combination of authenticating and encrypting packets over the network. The security features provided in SNMPv3 are as follows:

– Message integrity: Ensuring that a packet has not been tampered with in transit.
– Authentication: Determining that the message is from a valid source.
– Encryption: Scrambling the contents of a packet prevent it from being learned by an unauthorized source.

(Reference: http://www.cisco.com/en/US/docs/ios/12_2/configfun/configuration/guide/fcf014.html#wp1010901)

Question 5

Question 6

Explanation

SNMPv1/v2 can neither authenticate the source of a management message nor provide encryption. Without authentication, it is possible for nonauthorized users to exercise SNMP network management functions. It is also possible for nonauthorized users to eavesdrop on management information as it passes from managed systems to the management system. Because of these deficiencies, many SNMPv1/v2 implementations are limited to simply a read-only capability, reducing their utility to that of a network monitor; no network control applications can be supported. To correct the security deficiencies of SNMPv1/v2, SNMPv3 was issued as a set of Proposed Standards in January 1998. -> A is correct.

(Reference: http://www.cisco.com/web/about/ac123/ac147/archived_issues/ipj_1-3/snmpv3.html)

The two additional messages are added in SNMP2 (compared to SNMPv1)

GetBulkRequest The GetBulkRequest message enables an SNMP manager to access large chunks of data. GetBulkRequest allows an agent to respond with as much information as will fit in the response PDU. Agents that cannot provide values for all variables in a list will send partial information. -> E is correct.

InformRequest The InformRequest message allows NMS stations to share trap information. (Traps are issued by SNMP agents when a device change occurs.) InformRequest messages are generally used between NMS stations, not between NMS stations and agents. -> C is correct.

Note: These two messages are carried over SNMPv3.

Question 7

Comments (20) Comments
Comment pages
1 4 5 6 2101
  1. arjukjan84
    September 1st, 2015

    Hi 9tut! and many thanks for your good work!!
    I would just like to ask, are questions here all up to date?
    because I’m going to pass my CCNA exam after few days.

    Thanks in advance.

  2. JOhn
    September 3rd, 2015

    Hey
    Where is the Question ?

  3. Anon
    September 7th, 2015

    Question 3 in the uploadable file of questions & answers lists 2 answers (A & B) as correct, yet the question doesn’t say it wants 2 answers.

  4. Anon
    September 7th, 2015

    Question 4 does the same thing, although the question implies 3 answers are required.

  5. Yarzar Sein WIn
    October 21st, 2015

    *What is SNMPv2 authentication protocol ????
    A. Community Strings
    B. HMAC-MD5
    C. HDMAC-SHA
    plez someone help me?????
    what’s correct answer ???
    Answer: Community string.

  6. THE RIGHT Answer!!!
    November 10th, 2015

    communiy strings— i think its in the SNMP tutorial tutorial link at the top of the page

  7. THE RIGHT Answer!!!
    November 10th, 2015

    i mean if you read all the other questions, SNMPv3 is when they finally got serious with legit security…. SNMPv3 Q5 stas about the HMAC-MD5 or HMAC-SHA..

    noticed Cisco will throw in some random answers that looks like a possible answer to make more choices and probably confuse people…

  8. Hawking
    November 25th, 2015

    Can anyone give me 500-275 exam’s dumps?

  9. Jolo
    November 28th, 2015

    @THE RIGHT Answer!!!

    what do you mean? Will there be Questions about SNMPv3 on the Exam?? Do you have example questions?

  10. Anonymous
    December 3rd, 2015

    when the question comes up something like this.

    What is the command that you get with SNMP
    TRAP
    InFORM
    AVG
    AFT

    on the dumps it is trap and inform
    on the simulation the answer is only trap
    Which one is it on the test?

  11. Anonymous
    December 31st, 2015

    But where are the questions????

  12. prites
    January 3rd, 2016

    9 tut where are the question ? cannot believe being Premium member cannot see Question ? can you put the questions here. Also cannot find question for netflow either.

  13. Anonymous
    January 30th, 2016

    lamborghini
    send mw ccna chapter tow answers and questions

  14. lamborghini
    January 30th, 2016

    i need chapter two ccna questions and answers n i dont giv a damn wea uil find em.

  15. Chan85
    March 16th, 2016

    Q6 Which three statements about the features of SNMPv2 and SNMPv3 are true? (Choose three)

    A. SNMPv3 enhanced SNMPv2 security features
    B. SNMPv3 added the Inform protocol message to SNMP.
    C. SNMPv2 added the Inform protocol message to SNMP.
    D. SNMPv3 added the GetBulk protocol messages to SNMP.
    E. SNMPv2 added the GetBulk protocol message to SNMP.
    F. SNMPv2 added the GetNext protocol message to SNMP.
    I
    I think the answer is ABD. I dont understand why the answer is ACE. Is there a typo here?

  16. Anonymous
    May 7th, 2016

    i am getting 90+ in all exams in 9tut. Do you think i m prepare for the ccna exam ?

  17. Kato
    June 20th, 2016

    Hello,
    sorry but in the book ccna4, chapter 8 “Monitoring the Network”, there is nothing about the Inform Protocol message.
    Someone could tell me something about it?
    Thank

  18. Anonymous
    August 31st, 2016

    very nice

  19. Chamo
    September 19th, 2016

    Please send me the latest Dump.

  20. blessed ccna
    June 30th, 2017

    response to chan 85,,snmp v2 added GetBulk and Inform messages to SNMP over and above SNMP v1 as much as they share community strings as a security mechanism.the GetBulk and Inform messages are carried over SNMP V3,mark that last statement.

Comment pages
1 4 5 6 2101