Home > CCNA – Security Questions

CCNA – Security Questions

March 23rd, 2015 Go to comments

Question 1

Explanation

We only enable PortFast feature on access ports (ports connected to end stations). But if someone does not know he can accidentally plug that port to another switch and a loop may occur when BPDUs are being transmitted and received on these ports.

With BPDU Guard, when a PortFast receives a BPDU, it will be shut down to prevent a loop -> D is correct.

Question 2

Explanation

We can verify whether port security has been configured by using the “show running-config” or “show port-security interface ” for more detail. An example of the output of “show port-security interface ” command is shown below:

show_port-security_interface.jpg

Question 3

Explanation

The full syntax of the second command is:

switchport port-security mac-address sticky [MAC]

If we don’t specify the MAC address (like in this question) then the switch will dynamically learn the attached MAC Address and place it into your running-configuration -> B is correct.

Question 4

Explanation

Please read the explanation at http://www.9tut.net/icnd2/icnd2-operations

Question 5

Explanation

Port security is only used on access port (which connects to hosts) so we need to set that port to “access” mode, then we need to specify the maximum number of hosts which are allowed to connect to this port -> C is correct.

Note: If we want to allow a fixed MAC address to connect, use the “switchport port-security mac-address ” command.

Question 6

Explanation

As we see in the output, the “Port Security” is in “Disabled” state (line 2 in the output). To enable Port security feature, we must enable it on that interface first with the command:

SwitchA(config-if)#switchport port-security

-> B is correct.

Also from the output, we learn that the switch is allowing 2 devices to connect to it (switchport port-security maximum 2) but the question requires allowing only PC_A to access the network so we need to reduce the maximum number to 1 -> D is correct.

Question 7

Explanation

Follow these guidelines when configuring port security:
+ Port security can only be configured on static access ports, trunk ports, or 802.1Q tunnel ports. -> A is not correct.
+ A secure port cannot be a dynamic access port.
+ A secure port cannot be a destination port for Switched Port Analyzer (SPAN).
+ A secure port cannot belong to a Fast EtherChannel or Gigabit EtherChannel port group. -> D is not correct
+ You cannot configure static secure or sticky secure MAC addresses on a voice VLAN. -> B is not correct.
+ When you enable port security on an interface that is also configured with a voice VLAN, you must set the maximum allowed secure addresses on the port to at least two.
+ If any type of port security is enabled on the access VLAN, dynamic port security is automatically enabled on the voice VLAN.
+ When a voice VLAN is configured on a secure port that is also configured as a sticky secure port, all addresses seen on the voice VLAN are learned as dynamic secure addresses, and all addresses seen on the access VLAN (to which the port belongs) are learned as sticky secure addresses.
+ The switch does not support port security aging of sticky secure MAC addresses.
+ The protect and restrict options cannot be simultaneously enabled on an interface.

(Reference: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3550/software/release/12-1_19_ea1/configuration/guide/3550scg/swtrafc.html#wp1038546)

Note: Dynamic access port or Dynamic port VLAN membership must be connected to an end station. This type of port can be configured with the “switchport access vlan dynamic” command in the interface configuration mode. Please read more about Dynamic access port here: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3550/software/release/12-1_19_ea1/configuration/guide/3550scg/swvlan.html#wp1103064

Question 8

Explanation

One of the most widely deployed network security technologies today is IPsec over VPNs. It provides high levels of security through encryption and authentication, protecting data from unauthorized access.

Comments (50) Comments
Comment pages
1 13 14 15 16 1768
  1. achim
    May 3rd, 2018

    Hello Everyone,
    Please send me CCNA Security dumps at (achim.keuper(web.de))

    Thanks

  2. Dumps4free
    May 15th, 2018

    We offer the first class Cisco 210-260 Free Dumps Questions Answers in the form of PDF and VCE files along with 210-260 Test Engine. All the Cisco 210-260 Free Braindumps are latest and verified by professional experts to guarantee your success.

  3. Kakashi
    May 15th, 2018

    Hello
    Please send me CCNA Security dumps at {email not allowed}
    Thanks.

  4. Kakashi
    May 15th, 2018

    Hello
    Please send me CCNA Security dumps at mu 349919 @ gmail . com
    Thanks

  5. cibo
    May 15th, 2018

    Is there any CCNA CyberSecurity blog available ?

  6. TM27
    May 21st, 2018

    Hi,
    anyone with the pdf book of Pearson official cert for CCNA CyberOps SECFND?
    Thanks

  7. Maaz
    May 25th, 2018

    hello plz send me Dumps
    {email not allowed}

  8. Maaz
    May 25th, 2018

    maazshaikh437 @ gmail . com

  9. CACL
    May 25th, 2018

    hello plz send me Dumps
    cesar_famous_93 @ hotmail . com

  10. skim
    May 26th, 2018

    Regarding the D&D questions with encryption algorithms here is a link which will clear it out
    https://www.cisco.com/c/en/us/about/security-center/next-generation-cryptography.html

  11. gray
    May 29th, 2018

    please send CCNA security dumps to grayeric @ hotmail . com

  12. jaber
    May 30th, 2018

    Hello Everyone,
    Please send me CCNA Security 210-260 dumps at {{{email not allowed}}}

    Thanks

  13. jaber-omar
    May 30th, 2018

    Hello Everyone,
    Please send me CCNA Security 210-260 dumps at {{{jaber-omar @ hotmail . com}}}

    Thanks

  14. jaber-omar
    May 30th, 2018

    thank u Saleh al-aujan

  15. john
    June 2nd, 2018

    please send latest CCNA Security dump to j_0235 @ yahoo . com
    thanks!

  16. Muhammad Salahuddin
    June 6th, 2018

    Hello Everyone, I need CCNA security Drag and Drop please anyone can help me. Thanks

  17. Richardson
    June 9th, 2018

    HELLO EVERYONE, PLS I NEED CCNA SECURITY DUMPS
    CAN ANYONE HELP ME OUT. KINDLY SEND ME AT {{email not allowed}}

  18. kakashi
    June 10th, 2018

    Hello plase send me CCNA Security 210-260 dumps at mu 349919 @ gmail . com
    Thanks!

  19. Joe
    June 11th, 2018

    Hello please send me CCNA Security 210-260 dumps @ mumra5577@ gmail.com

  20. Mustafe
    June 12th, 2018

    Hello Everyone,
    Please send me CCNA Security 210-260 dumps at {email not allowed}

    Thanks

  21. Anonymous
    June 12th, 2018

    Hello Everyone,
    Please send me CCNA Security 210-260 dumps at C14704291 @ mydit. ie

    Thanks

  22. Cooldude
    June 13th, 2018

    Please send me latest DUMPS to Jistower1 at geemale dot com

  23. ccnasecurity
    June 18th, 2018

    Please send me CCNA Security 210-260 dumps at roni555 @ gmail com

  24. Anonymous
    June 26th, 2018

    Please send me latest DUMPS to Abdulazizbnabdullah at Hotmail .com

  25. AQ Baloch
    June 27th, 2018

    kibdly anyone can send me latest CCNA security Q&A dumps in pdf
    abdulqyum at gmail . com

  26. Anonymous
    July 1st, 2018

    Hello

    Please send me CCNA security Dumps and Q&A
    {email not allowed}

  27. Anonymous
    July 1st, 2018

    Hello

    Please send me CCNA security Dumps and Q&A.

    perwezakhter008 at gmail dot com

  28. supul fernando
    July 7th, 2018

    Hi,

    Is any one sit for the ccna security 210-260 examination this year, where we find real practice exams?.

  29. CCNA Security dumps
    July 10th, 2018

    I have passed the exam on June 4th.
    The questions are exactly from these two files.

    Please use then and pass it .
    https://wetransfer.com/downloads/2b74adde43e8bc1a54eae362d88101f720180710102713/2a78a373cac57c9c8b1b6453c4c0b06420180710102714/4ba023
    This link is available for 7 days only.

  30. Anonymous
    July 16th, 2018

    Can anyone please send me the latest 210-260 ccna security dump and Q&A, email :mdzaman_92@yahoodotcom

  31. Cjayfly
    July 20th, 2018

    Hi Please send dumps, {email not allowed}

  32. Cjayfly
    July 20th, 2018

    please send dumps ({email not allowed})

  33. Alps
    July 25th, 2018

    Please send 210-260 ccna security dumps on email : {email not allowed}

  34. Anonymous
    July 25th, 2018

    Please send 210-260 ccna security dumps on email : alpeshpatel.ec@gmaildotcom

  35. random
    July 27th, 2018

    can you share CCNA sec 210-260 dumps on tuna_r @ mynet.com

  36. Whoever
    August 5th, 2018

    can anyone give me CCNA sec 210-260 dumps? please, share me the link

  37. Hello.
    August 6th, 2018

    Can someone forward latest dumps to {email not allowed} please

  38. Anonymous
    August 6th, 2018

    Can someone forward latest dumps to saikrishna.patha@ me.com, please?

  39. Anonymous
    August 20th, 2018

    can some one forward me the latest dump for CCNA sec 210-260.. {email not allowed}

  40. Anonymous
    August 20th, 2018

    can some one forward me the latest dumps selemani@ catsgroup.co.tz

  41. Anonymous
    August 20th, 2018

    can some one forward me the latest dumps for CCNA 210-260 selemani@ catsgroup.co.tz

  42. 210-260 latest dumps please
    September 13th, 2018

    Please send me {email not allowed} .Im taking exam in 1 week

  43. Anonymous
    September 16th, 2018

    Happy to share my experience on reddit and other platfoam happy to pass 210-260 exam, https://www.reddit.com/r/education/comments/9g8m28/happy_to_pass_cisco_security_210260_exam_with/ Good Luck

  44. Maria Coller
    September 16th, 2018

    Hi,
    anyone with the pdf book of Cisco official cert for CCNA 210-260?
    i’d lost my book! i will be thankful if any one has the PDF Format.
    Thanks

  45. P
    October 9th, 2018

    Hi, can someone send me the newest CCNA Sec dumps? rendog31@ gmail.com
    Thanks!

  46. Network Guy
    October 15th, 2018

    Hi,

    can someone send me the newest dump for this? {email not allowed}

    TIA.

  47. Network Guy
    October 15th, 2018

    Hi,

    can someone send me the newest dump for this? bunotsky25@ yahoo..com
    TIA.

  48. padre
    October 16th, 2018

    Can someone please send me the dumps at andris.octavian(@) yahoo(…)com

  49. om
    October 17th, 2018

    could anyone send CCNA security 210-260 dump to me, please

    omar(dot)schawky(at)gmail(dot)com

    omar . schawky @ gmail . com

  50. sonrhai
    November 5th, 2018

    Hi, can someone send me the newest CCNA Sec dumps? sonrhai1 @ gmail.com
    Thanks!

Comment pages
1 13 14 15 16 1768
Add a Comment