Port Security Flashcards

1
Q

What is dhcp snooping?

A

A rogue dhcp server can cause connection issues
Dhcp snooping only allows requests dhcp servers on ports you define
Will create an ip to mac table by tracking dhcp traffic to and from server

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Arp inspection

A

Attacker pollutes arp table

Arp inspection drops any altered frames w/ no mapping

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is port bonding

A

Connects multiple links/channels, layer 3 treats it as one link
Combines 2-8 ports together b/w 2 swicthes to achieve more bandwidth and resiliency

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is port mirroring

A

Allows you to sniff traffic on network
Can see how a typical switch will read forwarding table and only send out destination port
Good to use strategically for short periods

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is spanning tree protocol?

A

Creates topology base, removes redundant links(saves path), eliminates looping, finds shortest link

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is BPDU

A

Bridge protocol data unit

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

5 states of stp

A

Blocking- doesnt allow frames: default port mode
Listening: port listens to bpdu’s to make sure no loop, forwards data; doesnt populate mac table
Learning- learns all paths in network, populates mac table, doesnt forward data
Forwarding- sends and receieves data frame on bridged port
Disabled-doesn’t particpate in stp

How well did you know this?
1
Not at all
2
3
4
5
Perfectly