CCNA - Cisco Certified Network Associate Practice Questions: Network Access Domain

Test your CCNA - Cisco Certified Network Associate knowledge with 10 practice questions from the Network Access domain. Includes detailed explanations and answers.

CCNA - Cisco Certified Network Associate Practice Questions

Master the Network Access Domain

Test your knowledge in the Network Access domain with these 10 practice questions. Each question is designed to help you prepare for the CCNA - Cisco Certified Network Associate certification exam with detailed explanations to reinforce your learning.

Question 1

Which command is used to display the current spanning-tree status on a Cisco switch?

A) show spanning-tree

B) show stp status

C) show tree

D) show spanning-tree status

Show Answer & Explanation

Correct Answer: A

Explanation: The 'show spanning-tree' command displays the current spanning-tree status and configuration on a Cisco switch.

Question 2

You have configured a router with the following command: 'ip route 192.168.10.0 255.255.255.0 10.1.1.2'. However, hosts in the 192.168.10.0/24 network are unable to reach hosts in the 10.1.1.0/24 network. What could be the issue?

A) The next-hop IP address is incorrect.

B) The subnet mask is incorrect.

C) The destination network is down.

D) There is a missing static route on the destination network's router.

Show Answer & Explanation

Correct Answer: D

Explanation: The issue is likely a missing static route on the destination network's router, which prevents return traffic from reaching the source network.

Question 3

A network administrator is troubleshooting a switch port that is not forwarding traffic. The port status shows 'err-disabled.' Which command can help identify the cause of this state?

A) show interfaces status

B) show interfaces trunk

C) show errdisable recovery

D) show port-security interface

Show Answer & Explanation

Correct Answer: D

Explanation: CORRECT: 'show port-security interface' can reveal if a port security violation caused the 'err-disabled' state. 'show interfaces status' provides general port status, not specific reasons for 'err-disabled.' 'show interfaces trunk' is for trunk status, not 'err-disabled' causes. 'show errdisable recovery' shows recovery settings, not causes.

Question 4

You are tasked with configuring inter-VLAN routing on a Layer 3 switch. Which of the following steps should you include?

A) Assign IP addresses to the physical interfaces.

B) Enable routing on the switch.

C) Configure VTP in server mode.

D) Set up a DHCP server on each VLAN.

Show Answer & Explanation

Correct Answer: B

Explanation: CORRECT: Enabling routing on the switch is necessary for inter-VLAN routing. Assigning IP addresses to physical interfaces is not required for inter-VLAN routing on a Layer 3 switch. Enabling routing is correct for inter-VLAN routing. VTP configuration is not related to inter-VLAN routing. Setting up DHCP is not directly related to configuring inter-VLAN routing.

Question 5

A network engineer needs to ensure that only specific MAC addresses can connect to a switch port. Which configuration should be applied?

A) Access control lists

B) Port security

C) VLAN access maps

D) DHCP snooping

Show Answer & Explanation

Correct Answer: B

Explanation: CORRECT: Port security restricts access to a switch port based on specific MAC addresses. Access control lists filter traffic, not MAC address connections. VLAN access maps filter traffic within VLANs, not based on MAC addresses. DHCP snooping prevents unauthorized DHCP servers, not specific MAC addresses.

Question 6

What is the primary purpose of the Spanning Tree Protocol (STP) in a switched network?

A) To create VLANs

B) To prevent network loops

C) To provide redundancy for network paths

D) To assign IP addresses to devices

Show Answer & Explanation

Correct Answer: B

Explanation: CORRECT: The primary purpose of STP is to prevent network loops by creating a loop-free logical topology. STP does not create VLANs; it manages loops. While STP provides redundancy by enabling backup paths, its main goal is loop prevention. STP does not assign IP addresses; DHCP does that.

Question 7

Which command is used to add a static MAC address to a port security configuration?

A) switchport port-security mac-address sticky

B) switchport port-security maximum 1

C) switchport port-security mac-address

D) switchport port-security violation shutdown

Show Answer & Explanation

Correct Answer: C

Explanation: The command `switchport port-security mac-address ` directly adds a specific MAC address to the secure MAC address list. Option A makes MAC addresses persistent, option B sets the maximum number of MAC addresses, and option D specifies the action for port-security violations.

Question 8

A switch interface is configured as an access port. Which type of traffic will this interface forward?

A) Tagged traffic only

B) Untagged traffic only

C) Both tagged and untagged traffic

D) Multicast traffic only

Show Answer & Explanation

Correct Answer: B

Explanation: CORRECT: An access port forwards untagged traffic, which is associated with a single VLAN. Tagged traffic is not forwarded by an access port. Untagged traffic is correct for an access port. Access ports do not forward tagged traffic. Multicast traffic is not specifically related to the access port configuration.

Question 9

Which VLAN ID is reserved for the native VLAN on a Cisco switch by default?

A) 1

B) 100

C) 1001

D) 4095

Show Answer & Explanation

Correct Answer: A

Explanation: VLAN 1 is the default native VLAN on Cisco switches, used for untagged traffic on trunk ports.

Question 10

Which command would you use to see the status and configuration of a switch port?

A) show running-config

B) show interfaces

C) show ip interface brief

D) show vlan brief

Show Answer & Explanation

Correct Answer: B

Explanation: CORRECT: 'show interfaces' provides detailed information about the status and configuration of switch ports. 'show running-config' shows the entire configuration, not specific to interfaces. This command provides the necessary interface details. 'show ip interface brief' gives a summary, not detailed status. 'show vlan brief' shows VLANs, not interface status.

Ready to Accelerate Your CCNA - Cisco Certified Network Associate Preparation?

Join thousands of professionals who are advancing their careers through expert certification preparation with FlashGenius.

  • ✅ Unlimited practice questions across all CCNA - Cisco Certified Network Associate domains
  • ✅ Full-length exam simulations with real-time scoring
  • ✅ AI-powered performance tracking and weak area identification
  • ✅ Personalized study plans with adaptive learning
  • ✅ Mobile-friendly platform for studying anywhere, anytime
  • ✅ Expert explanations and study resources
Start Free Practice Now

Already have an account? Sign in here

About CCNA - Cisco Certified Network Associate Certification

The CCNA - Cisco Certified Network Associate certification validates your expertise in network access and other critical domains. Our comprehensive practice questions are carefully crafted to mirror the actual exam experience and help you identify knowledge gaps before test day.

Explore More CCNA Practice Modules