Port Security

Question 1

What does port security use to authenticate frames?

Answer 1

The source MAC address.

Question 2

Port security can only be configured on what kind of ports?

Answer 2

Access ports.

Question 3

List the four options available when configuring an interface for port security.

Answer 3

Maximum, aging, MAC-address and violation.

Question 4

What does the “Maximum” option configure?

Answer 4

The total number of secure MAC addresses allowed on a port.

Question 5

What does the “Aging” option configure?

Answer 5

How long it takes for a secure MAC to age out, and when the aging starts (absolute or inactive).

Question 6

What does the “MAC-Address” option configure?

Answer 6

The static MAC addresses, or enable sticky addresses.

Question 7

What are the three violation options and their functions?

Answer 7

Shutdown (default) which err-disables the port, protect which discards offending frames, and restrict which discards offending frames and generates an SNMP trap/log.

Question 8

What is the default port security interface config?

Answer 8

1 MAC allowed, dynamically learned, shutdown violation.

Question 9

What are sticky addresses?

Answer 9

Dynamically-learned addresses that are saved to their interface in the running config.