NET-04-P1 Switch Security

Question 1

is when attackers change their own physical PC address to conceal their true identity and pose as someone else. For example, an attacker may spoof a MAC address with a legitimate MAC address, to bypass an access control mechanism such as port security

Answer 1

MAC spoofing

Question 2

is an attack that targets a switch’s MAC table. The idea is to flood the table with a large number of fake addresses. When the list of addresses exceeds the maximum seize of the table, the switch will initiate its fallback mode and begin to act as a hub, meaning every frame will be forwarded to every host on the network

Answer 2

CAM Table Overflow

Question 3

The feature used to restrict input to an interface by limiting MAC addresses of workstations that are allowed to access a specific port

Answer 3

Port Security

Question 4

the default violation mode

Answer 4

Shutdown

Question 5

Ethernet frames with unauthorized source MAC addresses are dropped. The switch provides notification of security violations and keeps count of the number of violations

Answer 5

Restrict

Question 6

Ethernet frames with unauthorized source MAC addresses are dropped. In this violation mode, the switch does not provide notification regarding this event

Answer 6

Protect

Question 7

requires static configuration of each allowed MAC address and its assignment to an interface. Most secured method but is very time consuming and open to faulty configuration

Answer 7

Manual

Question 8

allowed MAC addresses are learned dynamically and are limited to the maximum number configured for the interface. The switch learns the source address of the first few devices associated with the interface. providing a fast and scalable method of operation

Answer 8

Sticky

Question 9

although the number of default MAC addresses allowed in Port Security is one, the number an be changed within the range of 1 to 3072

Answer 9

Max Allowed MAC address

Question 10

When a switch port is in Err-disabled mode, the port may have been disabled automatically by the switch operating system, due to port security shutdown mode violation

Answer 10

Err-disabled

Question 11

This state occurs when two parties, set for point-to-point communication, are configured to use different duplex mode

Answer 11

Duplex Mismatch

Question 12

A faulty network interface card with software or hardware issues may trigger the Err-disabled state

Answer 12

Bad NIC

Question 13

When there is a broadcast volume too large for processing in the broadcast domain

Answer 13

Broadcast Storms

Question 14

presenting the authorized MAC addresses associated with a port and the type (sticky or manually) is done with this command

Answer 14

show port-security address

Question 15

can be run for a quick overview of the configuration

Answer 15

show port-security

Question 16

to view specific interface, this command should be used, since it provides more information

Answer 16

show port-security interface [interface]

Question 17

defines the type of violation rule to be applied to the port

Answer 17

violation

Question 18

This command define sticky learning, up to maximum of five addresses

Answer 18

mac-address maximum

Question 19

was developed many years ago to allow users to manage devices from anywhere, via a simple and minimal configuration. however, using Telnet involves a potential security risk because usernames and passwords are sent in plain text on TCP port 23

Answer 19

Telnet

Question 20

Modern encryption relies heavily on the RSA algorithm since most methods use public and private encryption keys

Answer 20

RSA Encryption

Question 21

what does CIA stand for

Answer 21

Confidentiality, Integrity, Availability

Question 22

is when two different keys are used to encrypt and decrypt messages

Answer 22

Asymmetric Encryption

Question 23

is a command-line interface (CLI) in network devices used to create remote access connections

Answer 23

VTY - Virtual teletype

Question 24

The primary purpose of creating a computer network is to share resources and enable communication within the network. A router or Layer 3 can handle network segmentation and inter-VLAN communication

Answer 24

SVI - Switched Virtual Interface

Question 25

command: line vty & login local

Answer 25

Allow Remote Access

Question 26

Commands: interface vlan 1

ip address

Answer 26

IP Switch settings

Question 27

Command: crypto key generate rsa

Answer 27

Generate RSA keys

Question 28

command presents the active SSH sessions on the network advice

Answer 28

Show ssh

Question 29

displays the version definition, authentication timeout and retries

Answer 29

Show ip ssh