ICND1 – Security Testlet
[am4show have=’p2;’]
Premium Member: You can test your knowledge with these questions first via this link.
[/am4show]
Question
[am4show have=’p2;’]RouterA and SwitchA have been configured to operate in a private network which will connect to the Internet. you have been asked to review the configuration prior to cabling and implementation.
This task requires the use of various commands to access and check the running configuration of the two devices. No configuration changes are necessary (and the configuration command has been disabled for these two devices).[/am4show]
Maybe this is the configurations on Router and Switch (but notice that they are surely missing something):
ROUTER A CONFIGURATION
|
! |
SWITCH A CONFIGURATION
|
! banner login ^c line con 0 |
Note: This is just what we gather and guess. In the exam the configurations may be different so make sure you understand about “enable secret”, “enable password”, “login”, “login local”, “transport input”, “line vty”, “service password-encryption”, “bannder motd”, “privilege” before taking this exam!
You can download Packet Tracer file of this teslet here.
This sim has 4 questions:
Question 1
[am4show have=’p2;’]Which of the following is true regarding the configuration of SwitchA?
A. only 5 simultaneous remote connections are possible
B. remote connections using ssh will require a username and password
C. only connections from the local network will be possible
D. console access to SwitchA requires a password
Answer: B[/am4show]
Explanation
There are 16 VTY lines (from 0 to 4 and 5 to 15) so there are more than 5 simutaneous remote connections can be made at the same time -> A is not correct.
There is no restriction on on the Switch so remote networks can connect to this switch -> C is not correct.
There is no config under “line con 0” so console access to this switch does not require a passowrd -> D is not correct.
All 16 VTY lines are configured to access via SSH only and all of them require a password. The difference is in the “line vty 0 4” configuration, the type of login is specified as “login local”. It means that the switch will not use the password configured under “line vty 0 4” (in this case none was set but it will use the user & password configured in “username ciscouser password 0 cisco” command -> B is correct.
Question 2
[am4show have=’p2;’]Which two of the following are true regarding the configuration of RouterA? (choose two)
A. at least 5 simultaneous remote connect are possible
B. only telnet protocol connections to Router A are supported
C. remotely connection to RouterA using telnet will succeed
D. console line connection will never time out due to inactivity
E. since DHCP is not used on Fa0/1 there is not a need to use the NAT protocol
Answer: A C[/am4show]
Explanation
A is correct as we can telnet from line 0 to line 4 (line vty o 4).
We can use both telnet and SSH to connect to this router (transport input telnet ssh) -> B is not correct.
C is correct as we can telnet to it.
D is not correct because by default, the timeout is set to 10 minutes on both the console and the vty ports.
E is not correct as NAT can be used even DHCP is not used.
Question 3
[am4show have=’p2;’]Select the options which are security issues which need to be modified before RouterA is used. (Choose two)
A. unencrypted weak password is configured to protect privilege mode
B. inappropriate wording in banner message
C. the virtual terminal lines have weak password configured
D. virtual terminal lines have a password, but it will not be used
E. configuration supports in-secure web server access
Answer: B D[/am4show]
Explanation
Privilege mode on RouterA is protected with unencrypted password (via “enable password” command). Although this is a good choice but it is not the answer Cisco wants. Answer B is a correct answer instead. This can be explained by this way:
The wording in the banner is inappropriate as it “Welcomes” you to the network. If you are gaining unauthorised access to the device, the first thing you will see is a banner welcoming you. Apparently there has been a case (or cases) where a hacker has used this as a legal defence for gaining illegitimate access to the device. The banner should say something along the lines of “NO UNAUTHORISED ACCESS”.
The password of VTY lines is “4t&34rkf”. Although it is unencrypted but it is not a weak password because it has number & special characters inside -> C is not correct.
Although a password of “4t&34rkf” is configured but with the command “login local”, router will use the username of “ciscouser” & password of “cisco” (configured in “username ciscouser privilege 15 password 0 cisco” command) -> D is correct.
By checking the configuration of routerA with the “show run” command. To support web server access it must have the command “ip http server” but it does not -> E is not correct.
Question 4
[am4show have=’p2;’]Select three options which are security issues with the current configuration of Switch A. (Choose three)
A. privilege mode is protected with an unencrypted password
B. inappropriate wording in banner message
C. virtual terminal lines are protected only by a password requirement
D. both the username and password are weak
E. telnet connections can be used to remotely manage the switch
F. Cisco user will be granted privilege level 15 by default
Answer: A B D[/am4show]
Explanation
The command “no service password-encryption” exists so the password to access privilege mode is not encrypted -> A is correct.
With the “login local” command the VTY lines will require both username and password -> C is not correct.
The username and password are easy to guess as they have common words like “cisco” and “user” -> D is correct.
In all VTY lines only SSH is allowed with the “transport input ssh” -> E is not correct.
To grant privilege level of 15 by default the following commands are required:
line vty 0 4
privilege level 15
or these lines:
username ciscouser privilege 15 password cisco
and
login local (in “line vty 0 4”)
but none can be found so F is not correct.
Passed ICND1 today, 920!! Thanks 9tut, this security testlet was on there… this was the only part of the test i had difficulty on.
Passed today. This sim was in the exam. Questions pretty much similar. Answers a little ambiguous and debatable in my opinion. Thank you!
I am scheduled to take the ICND1 exam in a couple weeks and I have seen different answers for the MOTD banner and the use of the word “Welcome” as a security risk. Does anyone have the official word on this as a correct answer for Q1, Q3 and Q4?? Seems like they like using it as an answer option.
Thanks in advance!
Shine
@Whatever
Nobody will pass purely on this site alone. You need to understand the concepts too. This site is helpful to experience the formats of questioning which study alone does not provide. The Cisco question makers can be quite unfair themselves
I sat for my ICND1 today and had this security testlet…with some slight variations. Studied 9tut, Chris Bryant video course on UDEMY for about 3 weeks, and got a 973 on first try. It was very a hard exam, but got the basics down of OSI and subnetting before concentrating on all the brain dump questions. That helps a lot with time mgmt on the test, then you can take your time and think about the scenarios and SIM questions longer without getting stressed.
Passed this week, was 50 questions and 3 labs- this one, ospf and show config sim. If to know the concept possible to pass. Study cbtnugets videos,book icnd1 and dumps. and time on the exam going fast be ready to have sim labs on the beginning of the test or at the end. Plan your time.
A word about the banner messages. According to Cisco “Introduction to Networks – Companion Guide”, pg 94-95:
“Any wording that implies that a login is ‘welcome’ or ‘invited’ is not appropriate. If a person disrupts the network after gaining unauthorized entry, proving liability will be difficult if there is the appearance of an invitation. The creation of banners is a simple process; however, banners should be used appropriately. When a banner is utilized, it should never welcome someone to the device. It should detail that only authorized personnel are allowed to access the device.”
I had this labsim on my test today. Killed it. Make sure you understand the components because they might change a little.
Have spoken to a collegue who has done CCNP Route & Switch & CCNA Security and it looks like Cisco consider a poorly worded MOTD a security risk. Word it wrong and you are “inviting” unauthorised people into your network.
In this q you must know the banner messages should not be welcome in both login banner and motd banner if you do this messages with welcome, you will not able to trucking the sponger.
Question 4
Select three options which are security issues with the current configuration of Switch A. (Choose three)
A. privilege mode is protected with an unencrypted password
B. inappropriate wording in banner message
C. virtual terminal lines are protected only by a password requirement
D. both the username and password are weak
E. telnet connections can be used to remotely manage the switch
F. Cisco user will be granted privilege level 15 by default
Answer: not sure
Real world ANSWER is C, D, F ……15 by default being the worst sin here.
C. they are fishing for Access-Class to be applied.
and to the “banner” guy…..are you F’ing kidding me?
the BANNER, that is what you think is the issue?
Maybe Cisco’s test team is THAT messed up in the head that they think that is the important flaw, but a banner misprint is not going to make it harder for a hacker to bring you down…and it won’t make prosecution of said hacker any easier.
Anonymous guy above me: C, E, and F are incorrect. Maybe you were looking at the router config? C- vty lines say login local below them which means username and password E-both transport inputs say ssh F- Wrong because either there’s no 15 there (if you put that exact command in, privilege level will be by default 1 although it does show the level regardless in packet tracer config) OR because answer says cisco (space) user while the config shows ciscouser.
As far as the banner thing goes:
Im not sure if im talking out of my ass here, but ive read that cisco has systems to find brain dumps users and maybe one of their systems is putting questions with ridiculous answers that are super technically the correct/best answer. Answers you’d only know if A. you’ve read and gone through every resource available for the exam or B. you’ve done the brain dumps.
I’m thinking that as far as the banner thing goes, it’s a legality kind of thing which prevails over everything in this world we live in. Yes, more then likely the hacker is intelligent enough to not get caught and yes, the security is so weak that it wouldn’t require much “hacking” to get in. It’s an answer which most people would only pick after going through their options 5 times, not being able to find the most correct 3rd answer.
Scored 973 on my test today, but made 88% percent on Device Security. The sim is just little different than shown here. Very debatable section, in my opinion. I would consider a MOTD banner than says “Welcome” to be insecure from my studies. Not sure what they are looking for here.
Русский комментарий))
Спасибо, 9tut!
I am taking icnd1 exam in two weeks.
Pls send me latest Dumps
hazzaz99@yahoo.com
i get it 947 .. thanks 9tut
Hi,
is the banner motd a security threat?? and why??
Thanks
Anonymous
Banner is insecure, right?
taking ICND1 on 14th pls email latest dumps to rasari03@yahoo|dot|com
I was not happy with cisco on th 6 of this month. I was to write but when i was to write the car had a problemso thry called them and they fixed it from there but due to that my exams were pre-terminated and ever my school made calls upon calls but they tranfer calls from one person to another. Till now i dont even know when im to write or whqt to do im so angry with cisco. I dnt think person vue did well after all i went throw to write but could not still write thats bad
I pray person vue makes things to work for me tomorrow cause if they cqnt do anything they should give back
Hey Guys, I am taking the ICND1 tomorrow here in Dubai. Is anyone can give me some advice about the exam. How many multiple question is there and how many lab sim and security testlet in the exam. Is that accurate that 80 to 90% of the questions is from here in 9tut? How true is that? As in same same question? Thank you for who will answer all my question.
Is it better to take two exams or only one? Opinions
Thanks
I think the exam gives out wrong answers:
look at this image: http://www.creativeme.ca/screenshot.png
Cheers
Tomorrow 24-5-2015 is my Exam for CCNA, any advice. Thanks
Hello Guys ,
Tomorrow 24-5-2015 is my Exam for CCNA, any advice. i am looking for practicing
same security lab sim in icnd1 exam (one exception: both the router and switch config have”no login” commands instead of “login” command that is mentioned in the sim). Make sure you understand concept well.
Today I just passed my ICND1 exam 907/1000 thank 9tut almost of questions was there.
Tomorrow is my ICND1 exam, any advice?
Hi, Please send dumps for ICND1 only to cheryl.courtney@live.com
Thank you!
this was on my ICDN 1 test with different numbers but same questions today
Hi, Please send dumps for ICND1 only to gmboya12@yahoo.com now
very nice site i got 986/1000 still valid
on the security testlet sim with premium.
“select two options which are security issues which need to be modified before RouterA is used?(choose two)
Above it says that inappropriate wording in banner message is incorrect but on the sim it says that is the answer.. which doesnt make sense because the banner says nothing that would leak security information. It only says contact the admin.
Also it says unencrypted weak password is configured to protect privledge mode.. There is indeed an unencrypted password which would make this answer true.. but it does not mark it as correct.. please explain and or fix
Switch Banner is “unsecure” according to Cisco Best Practices – because it contains the device name:
http://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Security/SAFE_RG/SAFE_rg/chap2.html#wp1053122
“From a security standpoint, rather than a legal, a legal notification banner should not contain any specific information about the device, such as its NAME, model, software, location, operator, or owner because this kind of information may be useful to an attacker.”
Hey, I’m struggling a bit here. These answers are different from the ones found on the Testlet this site offers.
IE.
This question is not even listed here, but…
Which of the following is true regarding the configuration of SwitchA?
A. Only 5 simultaneous remote connections are possible
B. Only connections from the local network will be possible
C. Console access to SwitchA requires a password
D. Remote connections using SSH will require a username and password
(Tells me the answer should be D)
The next one was question 3 on here, asking for two answers- it told me the correct answers were B D (while this page says A D)
The final one was question 4 on here, with the correct answers being A, B, D (while this page says it doesn’t have the correct answers)…
I guess I am just wondering if the Flash Testlet is correct, or if this page is correct.
Tomorrow i have ICND1 exam @ 1030am
I’ve got mine @ 1100am
Passed ICND1 Today(17/06/2015) with a score of 947 . All question From 9tut.net . LABS ( security simlet + OSPF adjacence problems + show config lab ).
am about to take icnd1 exam wish me luck guys…..SCI-BONO
Question 1 seems wrong, you can’t have a banner that says welcome, because it will mean a hacker can claim they where not trespassing in court because it said welcome, it should say “..unauthorized access will be prosecuted under the law..”
This sim was in exam. Banner thingy is difficult.
Question 3
Select the options which are security issues which need to be modified before RouterA is used (not sure how many answers we can choose)
A. unencrypted weak password is configured to protect privilege mode
B. inappropriate wording in banner message
C. the virtual terminal lines have weak password configured
D. virtual terminal lines have a password, but it will not be used
E. configuration supports in-secure web server access
In the premium TestSim from 9tut this question is wrong answered….it claims thats “inappropiate wording in banner message” would be correct and also that “A. unencrypted weak password is configured to protect privilege mode” is wrong…
Please fix that.
@all: We had to move all the questions and answers out of 9tut. We can only keep the explanation. You can download the questions and answers at: https://mega.co.nz/#!oIdESYbD!yyu33vygrfKPy4rcmcbV6qW2fxINNoTokuDM3CjA_og
where are the simulators I paid for
@Derek: Please check at the top of this page.
Are we ever going to be able to access our account on 9tut again? I am also looking for CCNA security courses and question I can no longer find. How do I find them?
There is a problem with Q1(d option)
The command “username ciscouser privilege 15 password cisco” will grant the privilege of 15 for “ciscouser” user -> D is correct
But there is no such command in the config.
Now priveledge 15 is actually another name for priveledge mode..
So after telnet/ssh the user will go to user mode and not priveledge mode,hence option D is wrong.
In my humble opinion.
@all: We had to move all the questions and answers out of 9tut. We can only keep the explanation. You can download the questions and answers at: https://mega.co.nz/#!oIdESYbD!yyu33vygrfKPy4rcmcbV6qW2fxINNoTokuDM3CjA_og
basic q
1)
2)
5
7
8
9
basic question2
1
3
4
protocols and services
2
3
4
5
7
router questions
1
2
3
5
switch questions
1
2
4
5
6
8
10
11
ospf questions
1
6
security questions
1
4
7
subnetting
1
(2)
3
4
5
6
8
9
subnetting 2
1
4
ip routing
1
2
5
6
9
nat/pat
1
2
3
troubleshooting
1
2
drag and drop
1
3
4
ospf neighbor sim*
show config sim*
security testlet*
these were in the test last week in uk
Security testlet was on ICND1 exam today, questions were not exactly same, but if you know the correct show commands to use, you will do fine. 9tut is your friend, study it.
Hi Guys,
I passed the exam last week and I got a Score of 960. Thanks 9tut! you have been very helpful. Below are the resources that I have used to pass;
1.CBT nuggets
2.Packet Tracer
3.9tut
4.other websites for practice exams.
This kind of question was included but a little different, for all those who will take the exam please understand the concept and do not memorize the question. Goodluck!
Cisco sucks!! Suing 9tut seriously?? God forbid people use other resources to study outside of paying $3,000 for a Cisco “boot camp”
hello there is no question avail ….
Help me please can you Tell me what are the sim Lab please
https://web.archive.org
If you all want to see the questions and answers at the same time use the way back machine.
Just make sure the date is before July 1st 2015.
Why can’t I see the questions anymore?
Sorry for the last comment, should’ve read further before posting. Rookie mistake.
So the sim with weird “B. inappropriate wording in banner message” answer, was this ever ever resolved? what are the correct answers for this sim?
hie every one i am taking icnd1 26/10/15 what is the pass mark for icnd1
I was reviewing the SIM would like to point out some very interesting things to the untrained eye.
This is what i found during exam
for Router
!
!
no service password-encryption (all passwords are in clear text)
!
hostname Router1
enable secret 5 $1$14mlkm52…. (The enable password is encrypted with MD5 hash)
ip domain-name cisco.com (Domain name required for encryption keys to be generated for Ssh)
ip ssh version 2
!
!
username ciscouser password 0 cisco (User name and password 0 represent unencrypted password will follow)
banner login ^c
************ welcome to router1 If you encountered any problem, please consult the administrator ************* ^c (The MOTD should not be inviting but a warning to unauthorized access)
!
line con 0
password cisco Since no service password-encryption is set the password is in clear text.)
line vty 0 4 (5 consecutive telnet sessions)
password 4thfcvcf
no login (tell the router to allow Telnet connections without a password by using the no login
command)
transport input telnet ssh (Ssh set for VTY 0 – 4)
One other thing. Although there is a password set for line con 0, you will never be asked to present the password because the ‘login’ command does appear under the ‘line con 0.
this was on my exam. I already knew what to do. “sh run conf” tells you everything you need to know
Just took the test, these questions are still relevant.
Just passed ICND1, score 951. Just with 9tut.net questions and with the tree sims(Security, Show Conf & OSPF). So you shouldn’t be worrying to much, you’ve got everything it takes right here!
Did you all just run the show running-config to display all this info or did is there another show command that narrows the output?
what’s the answer to question 4 if anyone knows?
Help friends , what’s the exact answer to banner : *** If you encountered any problem, please consult the administrator *** . This tricky question because its a warning and not “welcome”.
help, the motd says “welcome..”, so it’s inviting people who connect to it to access it. You could lose a legal fight because of that. So this motd is an issue
Can someone please send me the latest ICND1 dumps: {email not allowed}
passed yesterday !! 923
thanks 9tut !!!
passed yesterday !! 923
thanks 9tut !!!
/=@
how about the banner answer? Valid as issue or not?
hi how was the security simulation ?
i dont see any questions only answers,, why is it so?
in routerA configuration showing above, there is “login login local”.
I understand “login”, and “login local”, but not sure about “login login local” command.
Does that mean either “login” or “login local” are OK?
line vty 0 4
Answer at least 5 connection can be used is wrong. It should be at most 5 connections can be used. It cannot take more than 5 connections.
Is it me or is the Cisco test rigged?
I used this site, found identical matches to what was on the exam and still ended up with an 801/804 –
I passed several of the domains with 100% but not finding those answers on the site as they require subnetting –
Either the test is not properly graded or the answers are not correct. Regardless – I think it is critical to study. Just makes me mad knowing I invested a lot of time out on this site to only get an 801
LOL!!!!
The Ppau’s question is still unanswered.
PLEASE ANSWER THIS QUESTION !!!
“”In routerA configuration showing above, there is “login login local”.
I understand “login”, and “login local”, but not sure about “login login local” command.
Does that mean either “login” or “login local” are OK? “”””
And Please don’t ask any Dumps,simply pay 9 $ to 9.tut.com and get the dumps or use other ways : ( wayback machines )….
Hey everyone –
I am looking over the materials here on 9tut. looks good and it is relevant. I am over 20+ years in the IT world, 2 Master’s degrees, a CCNA, CISSP, Security+, and CASP – Just finished my Cisco Route exam –
I wanted to validate some information and it led me to this site – I watch as all of you jump up and down explaining how this site helped you Pass your CCENT – Now can you perform on the job ? Probably not.
I will be honest with all of you – as a manager, you tell me you have a CCNA or CCENT – So what ? CAn you do the job – If I tell you to configure etherchannel, HSRP or Better YET – I need a new MPLS or DMVPN setup and you are the only one available to do it – Can you make it happen – I’ll bet you will look at me like a lost kid.
My point is – You study to pass a test and then get on the job and fail miserably – Why ? And I think it is sites like this that allow for Idiots to be in IT that I would fire and not recommend working in another IT organization I have any part of because it is a fraud and a lie – This exam should be hard work not memorized and braindumps.
I think if the owner of the site would realize this – If you are CCNA or Cisco Certified, then you should consider the ETHICS behind what you are doing here – as you have also agreed NOT to share Cisco exam information from any of their exams.
Maybe something that should be looked at in the near future as sites such as this only HURT the certifications – They have no value or weight to them for passing a test that has all the answers and NO hands on NO relevance, and no time to study other than a few hours of time out here! This is just plain sad! Best of luck to all of you with a CCNA that Cannot do the job!
any chance of getting the latest
teds2sscamaro
at
gmail
com
taking ICND1. please email latest dumps to {email not allowed}
taking ICND1. please email latest dumps to m691492@gmail|dot|com
I got this one in my exam today. But in the router out was the enable secret and in the line vty it said no login as below:
line vty 0 4
password 4t&34rkf
no login
transport input telnet ssh
I worked on ICDN1/2 for over 3 months along with several years of experience and still managed to fail by 10 points. I and taking ICDN2 (because I already had the voucher used for tomorrow).
I have a very hard time with the test because nerves, second guessing, and running out of time and need a prep that will get me through to the other side. Can anyone provide me a solid method they use along with the best / latest dump file to prepare with (email anything that will help as well)?
Looking for 200-101 for my test tomorrow and 100-101 for Tuesdays retake. pkwalker5442 @ gmail . c0m
Thanks!
hey friends
Can everyone pls help me with valid dump for ICND1, i am writing exam next week…….
pls pls pls
where are the Question…there is only explaniation are given..??????
where are the Question…there is only explaniation are given..??????
Pay the 9 dollars………el’ cheapo. Seriously, I had the same questions “where are the Questions???” Once you pay the $9, you will have access to the questions as well.
To the guy that posted “sites like this create idiots in the IT industry”
I would beg to say that tests like MCSA, CCNA, Sec+, CEH, CCNP, A+, Sun Java cert, etc, etc, leads to a false sense of accomplishment. The reason is that just because you can pass a test (even if you study your butt off and use NO BRAIN DUMPS/CHEAT) does not mean you can correlate what you have learned to the real world.
Often times, what you see on a test doesn’t even transfer to real world work. I would take an educated guess and say that only the basic foundations of each curriculum are actually used in the real world for MOST people whom will enter into the IT industry. Most workers will not be working for a company that will even use 50% of what you learn on exams.
I can introduce you to 15 people at this very second that knows more about networking, programming, database design, computer/tech repair than 85% of the people on this site and not ONE of them could ace any one of the 100’s of exams certs out there because the TESTING WORLD does not equal REAL WORLD PRODUCTION ENVIRONMENT.
But it get you a job and its upto the person to learn the trade, I bet your one of those people with work experience but can’t pass any test/ just because you at the company so long? Get a life
in the router part, at the login local, the real command is “no login local”
for question 4, I think the answer should be:
A. privilege mode is protected with an un-encrypted password “enable password cisco” and no service-password encryption
D. both the username and password are weak
F. Cisco user will be granted privilege level 15 by default, because there is no setting of privilege mode, and by default the privilege level is set to 15
I disagree with “C” because since there is login local under line vty 0 4, ssh login can be achieved using the given username and password
icnd1 next week and im shitting meself!!! I took it last year and got 802!!!needed 804 to pass…sickenerorwhat!
I had this lab I got like a 50% on it so I don’t understand what they were looking for
enable password cisco
username ciscouser o password cisco
line vty 0 4
password 4!oneGO
login
answer I choose was priv mode password was unencrypted and weak
able to login with 5 virtual lines
Not really sure
Toammrrow i m going for exame 9 tut questions r enough for me if anyone has other dumps plz suggest me or mail me at {email not allowed}
exam 2day wish me luck,I will let u know how i got on,9 tut has been a great help over the years and I will be sorry to see it go,THANKS 9 TUT !!!
ur answer is right, priv. mode password is unencrypted, also the password below u can make it secret to for more remote access security, its better if that choice exist
i ve the exam tmw wish me luck 🙂