Courses Tools Exam Guides Pricing For Teams
Sign Up Free
Cisco CCNA 6 min read · 1,104 words

CCNA Vlan Trunk Questions Confusion

Why Trunk Questions Confusion Trips Everyone Up

You’re sitting in the exam. A question appears about VLAN trunk configurations between two switches. You know VLANs. You know trunks exist. But the question is asking about native VLANs, allowed VLANs, and encapsulation types simultaneously—and you’re not sure which detail matters for the answer.

This isn’t because you’re unprepared. It’s because trunk questions on the Cisco CCNA (200-301) test layer multiple concepts at once, and most study materials treat them separately. Your brain hasn’t built the connection between how native VLAN configuration affects trunk behavior, or why encapsulation type changes what traffic gets tagged.

The confusion intensifies because real exam questions don’t isolate the concept. They embed it in a scenario: “A network engineer configured a trunk between SW1 and SW2. Native VLAN is 10 on SW1 but VLAN 20 on SW2. Traffic from VLAN 10 on SW1 arrives untagged at SW2. Why does SW2 assign this traffic to VLAN 20?”

Most candidates freeze here because they’re trying to debug the configuration in their head instead of recognizing the pattern.

The Specific Pattern That Causes This

VLAN trunk questions on the 200-301 exam test this specific failure chain:

Native VLAN mismatch → Untagged frames received → Frames assigned to receiving switch’s native VLAN → Potential traffic loop or wrong VLAN assignment

The second issue is encapsulation confusion. Candidates mix up:

  • 802.1Q: Standard tagging method. Always tags frames, except native VLAN traffic (which can be untagged).
  • ISL: Cisco proprietary (mostly legacy). Always tags everything, including native VLAN.

Here’s what actually happens in a real scenario from practice tests: You see a trunk configured with switchport trunk encapsulation dot1q and switchport trunk native vlan 1. The question asks which VLANs can traverse the trunk. The correct answer depends on whether you understand that allowed VLANs and native VLAN are separate controls.

You might know:

  • Native VLAN = untagged VLAN on a 802.1Q trunk
  • Allowed VLANs = list of VLANs that can traverse the trunk

But you don’t connect them: If VLAN 50 is in the allowed list but VLAN 50 isn’t the native VLAN, traffic from VLAN 50 will be tagged when sent across the trunk. If the receiving switch’s native VLAN is different, that untagged traffic won’t match anything—potential VLAN hopping or silent failure.

The third pattern is mode confusion. When you see switchport mode trunk versus switchport mode dynamic desirable versus switchport mode dynamic auto, the exam assumes you know which modes work together and which create mismatches.

Example from actual exams: Two switches configured with dynamic auto mode on adjacent ports. The question asks: “Will a trunk form?” Answer: No, because two auto ports won’t initiate trunk negotiation. You need one to be dynamic desirable or trunk mode. Most candidates miss this because they memorize mode names without understanding the handshake.

How The Exam Actually Tests This

The 200-301 exam doesn’t ask: “What is a native VLAN?”

It asks: “A trunk between two switches uses 802.1Q encapsulation. SW1 has native VLAN 100. SW2 has native VLAN 200. An untagged frame arrives at SW2 from SW1. Which VLAN is it assigned to on SW2?”

Your answer options look like:

  • A) VLAN 100 (SW1’s native)
  • B) VLAN 200 (SW2’s native)
  • C) VLAN 1 (default native)
  • D) The frame is dropped

The correct answer is B. The receiving switch assigns untagged frames to its own native VLAN, not the sender’s. This is why native VLAN mismatch is dangerous—you lose traffic or misconfigure security.

Another test pattern: configuration output with a question asking what’s wrong. You’ll see:

SW1(config)# switchport mode trunk
SW1(config)# switchport trunk encapsulation dot1q
SW1(config)# switchport trunk allowed vlan 1-100

The question might ask: “Which VLANs can successfully send traffic across this trunk?” The catch: It doesn’t mention native VLAN configuration. Default native VLAN on Cisco switches is VLAN 1. So VLAN 1 traffic is untagged, and VLANs 2-100 are tagged. Both can cross, but they behave differently.

The exam also tests trunk failures. You’ll see a scenario where two switches won’t form a trunk, and you have to identify why from a list of configurations or a show command output. These questions require you to understand mode matching, encapsulation agreement, and native VLAN implications.

How To Recognize It Instantly

When you see a question about trunks, ask yourself these three things in order:

  1. What’s the encapsulation? (802.1Q or ISL?) This determines tagging behavior.
  2. What are the native VLANs on both sides? If they mismatch, untagged traffic gets reassigned.
  3. What VLAN is the frame in? If it matches the native VLAN, it’s untagged. Otherwise, it’s tagged.

If the question mentions both “native VLAN” and “allowed VLANs,” separate them mentally. Native VLAN controls tagging. Allowed VLANs controls which VLANs can use the trunk at all.

If you see switchport mode dynamic, immediately think about handshake rules:

  • Two dynamic auto = no trunk
  • dynamic desirable + dynamic auto = trunk forms
  • trunk mode + anything = trunk forms

If the question describes a trunk mismatch (traffic loss, wrong VLAN assignment, no trunk forming), map it to one of three root causes:

  1. Native VLAN mismatch
  2. Encapsulation mismatch
  3. Trunking mode mismatch or allowed VLAN restriction

You’re usually right if you can trace the problem back to one of these three.

Practice This Before Your Exam

Stop reading configuration output passively. Do this instead:

Find 5 trunk configuration questions from practice tests (Boson ExSim, Pearson, or Cisco Learning Network). For each one:

  1. Draw two switch boxes on paper.
  2. Write down the native VLAN, allowed VLANs, and encapsulation for each side.
  3. Write down which VLAN the traffic is in.
  4. Predict: Will it cross? Will it be tagged? Will it arrive in the same VLAN on the other side?
  5. Check the answer. Write down why you got it wrong if you did.

Do this for 5 questions. You’ll see your blind spot immediately.

Next, set a timer for 90 seconds and answer a trunk question without looking at notes. If you can’t explain your answer using the three-part check (encapsulation → native VLAN → tagging behavior), you’re not ready. Go back to your practice questions and redo them.

Take this action right now: Open your study platform. Find one trunk configuration question. Pause before reading the answer. Write down your reasoning using the three questions above. Check it. If you can’t explain why you’re right, schedule 30 minutes this week to drill 10 more trunk questions using the paper method above. Your exam is coming.

Ready to pass?

Start Cisco CCNA Practice Exam on Certsqill →

1,000+ exam-accurate questions, AI Tutor explanations, and a performance dashboard that shows exactly which domains to fix.

Practice Cisco CCNA for Free Browse all guides
All exam guides