RouterOS Configuration and Licensing Overview

Answered using Gemini 1.5 Pro by AI Answer Generator

Question:
  1. Router has wireless and ethernet client interfaces, all client interfaces are bridged. To create a DHCP service for all clients, DHCP server must be configured on: A. Ethernet and wireless interfaces B. Every bridge port C. DHCP service is not possible in this setup D. Only on the bridge interface
  2. How long is level 1 (free) license valid? A. 24 hours B. Infinite time C. 1 year D. 1 month
  3. Select true statements about Mikrotik RouterOS backup file: A. Files from /files are included in the backup file B. Entire router configuration is saved C. Backup file is editable D. /user menu usernames and passwords are saved in the backup file
  4. What is the meaning of the status letter "R" on a PPPoE client interface in RouterOS Interfaces menu? A. Remote B. Radius C. Reconnecting D. Running
  5. How many wireless clients can connect, when wireless card is configured to mode=bridge ? A. 100 B. 2 C. 1 D. 2007
  6. The 'connect-list' of wireless interfaces is used A. for configuring SSID on the interface B. for preventing communications between the clients C. for specifying APs to connect to D. for specifying APs not to connect to
  7. What can be used as "Target" in the simple queue?

Note: The 'client' is the one accessing the resources, the 'server' is the one providing. A. Server IP address B. Client IP address C. Client MAC address D. Address list name 8. Action=redirect allows you to make

A. A transparent HTTP proxy B. A transparent DNS cache C. Forward DNS requests to another device D. Enable a local service 9. Router firewall rules are: /ip firewall filter add chain=forward action=jump jump-target=custom /ip firewall filter add chain=custom action=passthrough /ip firewall filter add chain=forward action=log

When traffic reaches the end of 'chain=custom'. What will happen next? A. Traffic will be logged in chain=forward B. Traffic will be dropped in chain=custom C. Traffic will be accepted in chain=output D. Traffic will be accepted in chain=custom 10. What is the default protocol/port of (secure) winbox? A. TCP/8291 B. TCP/8080 C. UDP/5678 D. TCP/22 11. Which route will be used to reach host 192.168.1.55?

/ip route add disabled=no distance=1 dst-address=192.168.1.0/24 gateway=1.1.1.1 add disabled=no distance=1 dst-address=192.168.1.0/25 gateway=2.2.2.2 add disabled=no distance=1 dst-address=192.168.0.0/16 gateway=3.3.3.3 A. Route via gateway 1.1.1.1 B. Route via gateway 2.2.2.2 C. Route via gateway 3.3.3.3 12. Which type of encryption could be used to establish a connection with a simple passkey without using a 802.1X authentication server? A. WPA PSK/WPA2 PSK B. WPA EAP/WPA2 EAP 13. When setting up a server, PPP Secrets are used for: A. PPP clients B. IPsec clients C. L2TP clients D. PPPoE clients E. PPTP clients F. Router users 14. If a packet comes to a router and starts a new, previously unseen connection, which connection state would be applied to it? A. new B. no connection state would be applied to such packet C. established D. invalid E. unknown 15. Possible actions of ip firewall filter are: A. accept B. netmap C. tarpit D. bounce E. log F. tarp 16. When viewing the routes in Winbox, some routes will show "DAC" in the first column. These flags mean:

A. Dynamic, Available, Created B. Dynamic, Active, Console C. Dynamic, Active, Connected D. Direct, Available, Connected 17. If ARP=reply-only is configured on an interface, this interface will A. accept all IP addresses listed in '/ip arp' as static entries B. accept all MAC-addresses listed in '/ip arp' as static entries C. accept IP and MAC address combinations listed in '/ip arp' list D. add new MAC addresses in '/ip arp' list E. add new IP addresses in '/ip arp' list 18. Which configuration menu should you use to change router's Winbox default port? A. /ip firewall filter B. /system resource C. /ip firewall service-ports D. /ip service 19. A wireless interface 'wlan1' is added to a bridge interface 'br-lan'. To enable dhcp-server for wireless interface 'wlan1', on which interface should dhcp-server be configured? A. The dhcp-server cannot be enabled neither on 'wlan1', nor on 'br-lan' B. On 'wlan1' C. On both 'br-lan' and 'wlan1' D. On 'br-lan' 20. Which port does PPTP use by default? A. TCP 1723 B. TCP 1721 C. UDP 1723 D. UDP 1721 21. In RouterOS queue configurations the word "total" usually represents A. download B. download - upload C. upload + download D. upload 22. Which option in the configuration of a wireless card must be disabled to cause the router to permit ONLY known clients listed in the access list to connect? A. Default Authenticate B. Default Forward C. Security Profile D. Enable Access List 23. The 'check-gateway' option is enabled for one route. Select all statements that are true: A. Gateway is checked every 10 seconds and after a single failure, the gateway is considered unreacheable B. Gateway is checked every 10 seconds and after 2 failures, the gateway is considered unreacheable C. In case of failure of the gateway, routes pointing to that gateway will become inactive D. Check gateway option can be configured for Ping, ARP and RARP (reverse ARP) 24. For static routing functionality, additionally to the RouterOS 'system' package, you will also need the following software package: A. routing B. dhcp C. no extra package required D. advanced-tools 25. Simple Queue number 0 defines 2M for upload and download for target IP 10.10.0.33. Simple Queue number 1 defines 4M for upload and download for target IP 10.10.0.33.

The maximum bandwidth that the client 10.10.0.33 is be able to obtain is: A. 4M upload/download B. 0M upload/download C. 2M upload/download D. 6M upload/download

Answer:

  1. D. Only on the bridge interface - When interfaces are bridged, they act as a single logical interface. The DHCP server should be configured on the bridge interface itself.

  2. B. Infinite time - The Level 1 license is free and perpetual.

  3. B. Entire router configuration is saved and D. /user menu usernames and passwords are saved in the backup file - Backups include the entire configuration, including user credentials. Files in the /files directory are not included. Backup files are binary and not directly editable.

  4. D. Running - "R" indicates the PPPoE client is currently connected and running.

  5. C. 1 - When a wireless card is in bridge mode, it acts as a point-to-point link and can only connect to a single other device.

  6. C. for specifying APs to connect to - The connect-list is used in station mode to define a list of preferred APs to connect to.

  7. B. Client IP address, C. Client MAC address, and D. Address list name - Simple queues can target traffic based on client IP, MAC address, or address lists. Server IP is typically used for destination-based routing or firewall rules, not queuing.

  8. A. A transparent HTTP proxy and B. A transparent DNS cache - The redirect action in firewall rules can be used to redirect traffic destined for a specific port to a local service, effectively creating a transparent proxy.

  9. A. Traffic will be logged in chain=forward - The passthrough action in the custom chain simply continues processing in the original chain (forward). The next rule in the forward chain is the log action.

  10. A. TCP/8291

  11. B. Route via gateway 2.2.2.2 - RouterOS uses the most specific route. /25 is a more specific subnet than /24 or /16.

  12. A. WPA PSK/WPA2 PSK - PSK (Pre-Shared Key) allows for simple passkey authentication without an 802.1X server.

  13. A. PPP clients, D. PPPoE clients, E. PPTP clients - PPP Secrets are used for authenticating various PPP-based connections.

  14. A. new

  15. A. accept, C. tarpit, D. bounce, E. log, F. tarp - netmap is not a valid firewall filter action.

  16. C. Dynamic, Active, Connected

  17. C. accept IP and MAC address combinations listed in '/ip arp' list - reply-only means the interface will only respond to ARP requests for addresses already in its ARP table (static or dynamically learned). It won't send requests itself.

  18. D. /ip service

  19. D. On 'br-lan' - When an interface is part of a bridge, the bridge interface handles the IP configuration and services like DHCP.

  20. C. UDP 1723 - PPTP uses TCP port 1723 for control and GRE over IP protocol 47 for data.

  21. C. upload + download

  22. A. Default Authenticate - Disabling "Default Authenticate" prevents clients from connecting until they are explicitly authenticated, typically through an access list.

  23. C. In case of failure of the gateway, routes pointing to that gateway will become inactive and D. Check gateway option can be configured for Ping, ARP and RARP (reverse ARP) - The default check interval is 10 seconds, and the default number of allowed failures is 2.

  24. C. no extra package required - Static routing is part of the core RouterOS functionality.

  25. A. 4M upload/download - Simple queues are hierarchical. Queue 1 will take precedence over Queue 0 because it's defined later and applies to the same target.