What will happen when one more user is connected to interface FastEthernet 5/1?

Refer to the exhibit. What will happen when one more user is connected to interface
FastEthernet 5/1?

Refer to the exhibit. What will happen when one more user is connected to interface
FastEthernet 5/1?

A.
The first address learned on the port will be removed from the secure address list and be
replaced with the new address.

B.
All secure addresses will age out and be removed from the secure address list. This will
cause the security violation counter to increment.

C.
The packets with the new source addresses will be dropped until a sufficient number of
secure MAC addresses are removed from the secure address list.

D.
The interface will be placed into the error-disabled state immediately, and an SNMP trap
notification will be sent.

Explanation:
Port security is a feature supported on Cisco Catalyst switches that restricts a switch port to
a specific set or number of MAC addresses. Those addresses can be learned dynamically or
configured statically. The port will then provide access to frames from only those addresses.
If, however, the number of addresses is limited to four but no specific MAC addresses are
configured, the port will allow any four MAC addresses to be learned dynamically, and port
access will be limited to those four dynamically learned addresses.
Port Security Implementation:

When Switch port security rules violate different action can be applied:
1. Protect: Frames from the nonallowed address are dropped, but there is no log of the
violation.
2. Restrict: Frames from the nonallowed address are dropped, a log message is created,
and a Simple Network Management Protocol (SNMP) trap is sent.
3. Shutdown: If any frames are seen from a nonallowed address, the interface is errdisabled,
a log entry is made, an SNMP trap is sent, and manual intervention or errdisable recovery
must be used to make the interface usable.



Leave a Reply 0

Your email address will not be published. Required fields are marked *