VLANs

Question 1

Port Security

Answer 1

Prevents unauthorized access to a switchport by identifying and limiting the MAC addresses of the hosts that are allowed

Question 2

Dynamic Learning (Port Security)

Answer 2

Defines a maximum number of MAC addresses for a port and blocks new devices that are no on the learned list.

Question 3

Private VLAN (Port Isolation)

Answer 3

A technique where a VLAN contains switchports that are restricted to using a single uplink (divides VLAN into multiple sub/private VLANS)

Question 4

Primary VLAN

Answer 4

Forward frames downstream to all of the secondary VLANs

Question 5

Isolated VLAN

Answer 5

Cann reach
*Primary VLAN
*Not other secondary VLANs

Question 6

Community VLAN

Answer 6

Can communicate with
*Each other
*Primary VLAN
*Not other secondary VLANs

Question 7

Promiscuous Port (P-Port)

Answer 7

Can communicate with anything connected to the primary or secondary VLANs

Question 8

Native VLAN

Answer 8

VLAN where untagged traffic is put once it is received on a trunk port

Question 9

DHCP Snooping

Answer 9

Provides security by
*Inspecting DHCP traffic
*Filtering untrusted DHCP messages, *Building and maintaining a DHCP snooping binding table

Question 10

Untrusted Interface

Answer 10

Any interface that is configured to receive messages from outside the network or firewall

Question 11

Virtual Local Area Network (VLAN)

Answer 11

Allows different logical networks to share the same physical hardware and provides added security and efficiency

Question 12

VLAN Trunking

Answer 12

Multiple VLANs transmitted over the same physical cable

Question 13

VLAN Assignment/Tagging

Answer 13

Practice of segmenting an IT organization’s network, separating users into respective network sections