Networking Jobs Interview Questions and Answers

1. What is difference between l2 & L3 link aggregation.--- Goto http://learning-network-cisco.blogspot.com/2015/07/configuring-layer-2-and-layer3-link.html
2. Explain MPLS VPN formation process.

http://blog.ine.com/2010/08/26/mpls-tunnels-explained/#more-4092.

1. 
   
2. 3What you have done in Organization network?

It is a specific question; every1 has its own responsibilities. The best answer is to tell the exact thing in which you are best at, because interviewer is always keen to know about your roles and responsibilities.

1. How user communicate through ssl vpn, entire certificates , packet flow need to study.
2.   What ether channel protocols?

    PaGp and LACP are ether channel protocols

6.       What is bpdu guard?

When a port receives an unwanted or error bpdu with invalid configuration, if bpdu guard enables it shut down the port or instantly block the port.

7.       What is bpdu filter?

When bpdu filter is enabled, no bpdu should send or receive by the connecting device on the switch port, if some bpdu arrives at the port, port drops all the bpdu's coming to the port.

8.       How to configure ether channel?

             SW1(config-if-range)#int range f0/1 -2

             SW1(config-if-range)#exit

             SW1(config)#interface range f0/1 - 2

             SW1(config-if-range)#switchport trunk encap dot1q

             SW1(config-if-range)#switchport mode trunk

             SW1(config-if-range)#channel-group 10 mode active

            SW1(config-if-range)#end.

9.       What are stp main elements?

Root bridge, root port, designated port, blocked port, cost, alternate port, backup port.

10.   What are Common STP states?

 Common STP states are as Disable, Block. Listening, Learning & Forwarding.

11.   What are RSTP states?

 RSTP states are as under Disable, Learning & Forwarding.

12.   How can we put more security in our our network other than vpn

We can deploy SSLVPN, MPLS VPN.

13.   what is vlan

A Vlan divides network into smaller broadcast domains.

14.   How we distribute 50 vlan traffic from one l3 switch and 50 from other l3 switch if we have 100 vlans defined at access layer switches.

We can achieve it through port channel load balancing method, by assigning a particular vlan traffic to a specific destination l3-switch along a port-channel.

http://www.cisco.com/web/techdoc/dc/reference/cli/nxos/commands/l2/show_port-channel_load-balance.html

15.   If we have two isp links, one is 20Mbps and other is 100Mbps than how we configure the primary links should be 100b pipe.

Juniper

set routing-instances ISP1 routing-options static route 0.0.0.0/0 next-hop 125.19.58.2(100Mb)

set routing-instances ISP1 routing-options static route 0.0.0.0/0 qualified-next-hop 115.113.51.137 preference 100

Cisco:

Define primary and secondary routes

global (outside) 1 interface

global (backup) 1 interface

              nat (inside) 1 172.16.1.0 255.255.255.0

              route outside 0.0.0.0 0.0.0.0 10.200.159.1 1 track 1--- primary route

              route backup 0.0.0.0 0.0.0.0 10.250.250.1 254—secondary route 

                 http://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/70559-pix-dual-isp.html

16.   What are ospf characteristics?

https://skminhaj.wordpress.com/2015/03/04/ospf-characteristics-configuration-verification/

17.   What are functions of OSPF DR and BDR?

18.   What is OSPF metric and AD?

Metric: Cost

AD: 110

19.   Define OSPF stub area

http://www.juniper.net/techpubs/en_US/junos15.1/topics/concept/ospf-stub-areas-overview.html

20.   What is difference between BGP and OSPF

OSPF:

Fast Convergence time, configured internally inside the network, Interior Gateway Protocol, TCP/IP Port- 89

BGP

Slow Convergence time, configured at the edge of network, EGP, TCP/IP- 179

21.   How bgp avoids loops/

With BGP AS_PATH attribute, BGP avoid loops, when a packet arrived a BGP speaking router, it first check the AS number defined in the AS_Path attributes. IF AS number found is similar to that of the BGP speaker than, it considered as routing loop has been formed.

22.   How juniper devices are better than cisco device if we talk about routers and firewall

http://www.ebrahma.com/2013/05/comparison-juniper-srx-650-vs-checkpoint-3078-vs-fortinet-620b-vs-asa-5520/

               maximum throughput, rollback support, more expansion slots, higher RAM size, maximum     connection, per packet speed, vlan support, anti spyware support, redundant power supply, modular operating system.

23.   What is Ike phase 1

Phase 1 is IKE where you start things out...  Diffie-Hellman is used to set up your negotiation and setup of your traffic-encryption keys to get started.  Your IKE SA will be completed here.

      Phase 2 is IPSec (ISAKMP) where you get into what specifics you set up in your policies to have    your keys set.  This is the traffic keys themselves.  And the traffic is getting encrypted here.  IPSec SA is present if everything goes well.

24.   What are load balancers?

Load Balance are used to load balance the traffic which can do traffic shaping, traffic policing, provide scalability to network etc.

25.   What algorithm load balancers used?

Round robin algorithm, dns load balancing

26.   how load balancers load balance the traffic

Active-active & active-passive link load balancing.

27.   What are other applications of LB other than link load balancing?

##Bandwidth Management, DOS attack prevention, health monitoring, Intrusion prevention, server load balancing, traffic redirection, traffic shaping.

28.   What is difference between Ipsec policy based and route based vpn tunnels

http://www.juniper.net/techpubs/en_US/junos11.4/topics/concept/policy-based-route-based-vpn-comparing.html

29.   what is ssl f5 policy based tunnels operations

30.   NSLooks and DNS records.

31.    

NSLooks and DNS records

how https and http difference can be calculated or how we can calculate http and https hits on network.

how websense works

security encryptions and ecryption

what is difference between wireless 802.11bg n and ac protocols

sometimes management could check your skills by askings some questions like how many marks you score in 12th and graduation,

what are your final year subjects in engineering

mobile com, wireless com, optical com, satellite com, data communication system, vlsi design, digital signal processing, etc.

what are your major projects in final semester.

global positioning system

how to configure new licenses file in juniper srx firewall through command line

request system license update

set system license autoupdate url https://ae1.juniper.net/junos/key_retrieval

secure web gateway knowledge

what are vulnerabilities of Juniper SRX firewall or shortcomings.

and a lot more cases reg the issues  IDP , Track IP , Link Aggressation, Syslog etc etc

is ospf configured on loopback

yes

why loopback is configured to configure ospf

Coming to Loop-back address in OSPF "The RID will be the highest physical interface on the router ...

unless a loopback interface has been configured. If a loop is configured, the RID will be the highest loop address."

management is quite easy.

physical interface may went down but loopback can never.

what is blocked port as well alternate port in stp

how can we fine tune stp

we can fine tune various feature like link type, cost, bpdu guard, filtering , priority to fine tune stp performance.

how much maximum no of links bundled up in ether channel

8 in ether channel and 16 lin LACP

what is condition of link bundling in ether channel

all ports should have same link cost, same duplex mode, same negotiation parameters, same speed, identical stp parameter,

should belong to same vlan, incase of trunking all ports should belong to native vlans.

how to add a new switch in a network

what is the process of selecting a root bridge

bridge id should be lowest (bridge priority + MAc address)

if a new switch added in the networks, what things we need to check

Design a network if we need to provide services for 700 employees.

What is color coding of patch cord straight cable?

Overall process to configure a switch/ router.

If i have three ISP links with sufficient BW but there are still network slowness and downtime. how can we attain 100 percent uptime.

what are the various steps to optimise the network and provide HA.

what policies we need to define at firewall to manage link bandwidth should not increase to a certain extent.

1. How labels has been distributed among PE and CE

2. Which PE should have labels to be removed under PHP.

3. How route distinguishers and route target works

4. how labels are removed at php

https://www.juniper.net/documentation/en_US/junos13.3/topics/task/configuration/mpls-ultimate-hop-popping-enabling.html

5. what is bgp port number--tcp port no 179 is used for bgp sessions.

6. bgp attributes

http://netcerts.net/bgp-path-attributes-and-the-decision-process/

7. bgp states

https://learningnetwork.cisco.com/thread/15751

8.how to troubleshoot various physical layer issues.

9. How load balancing can be done at mpls.

http://lostintransit.se/category/mpls/

10. Why Do BGP Neighbors Toggle Between Idle, Connect, and Active States?

http://www.cisco.com/c/en/us/support/docs/ip/border-gateway-protocol-bgp/13752-24.html

https://kb.juniper.net/InfoCenter/index?page=content&id=KB21496