which two types of Layer 2 attacks?

When it is configured in accordance to Cisco best practices, the switchport port-security maximum
command can mitigate which two types of Layer 2 attacks? (Choose two.)

When it is configured in accordance to Cisco best practices, the switchport port-security maximum
command can mitigate which two types of Layer 2 attacks? (Choose two.)

A.
rogue DHCP servers

B.
ARP attacks

C.
DHCP starvation

D.
MAC spoofing

E.
CAM attacks

F.
IP spoofing

Show Hint

Leave a Reply 5

Your email address will not be published. Required fields are marked *

hamahiro

hamahiro

I think that correct answer is B and D.

Reply

skillreview

skillreview

The question is built to deceive you. When you think about switchport port-security maximum command it is limiting the amount of MAC addresses that can be recognized on the port. The maximum command isn’t keeping track of the validity of the mac just the count on the port. The only two attacks that focus on overflow are DHCP starvation and CAM attacks.

Reply

Bogdan Dobre

Bogdan Dobre

(28/Sep/2017 Updated) New 300-206 Exam Questions:

NEW QUESTION 256
Which device can be managed by the Cisco Prime Security Manager?

A. ASA CX
B. ISR G2
C. Nexus
D. UCM

Answer: A

NEW QUESTION 257
A network engineer must mange and configurations to a cisco networking environment solutions accomplishes this task?

A. Cisco IPS manage express and pushing configuration to the IPS units.
B. Cisco security 4.5 or later and pushing configuration bundles to each of the IPS units.
C. Cisco adaptive security device manager to push configuration to each of the IPS.
D. Fire SIGHT manager to bundle and push configuration to the IPS units installed.

Answer: D

NEW QUESTION 258
Which two option are main challenges for public cloud data center?

A. deployment cost
B. tenant isolation
C. disaster recovery
D. system scalability
E. network visibility

Answer: BE

NEW QUESTION 259
A network engineer must manage and push configurations to a Cisco networking environment, in which 10 Cisco ASA with IPS modules reside. Which solution accomplishes this task?

A. Cisco Adaptive Security Device Manager to push configurations to each of the IPS units.
B. FireSIGHT manager to bundle and push configurations to the IPS units installed on an SSD within the Cisco ASA 5500 Series ASA.
C. Cisco Security Manager 4.5 or later and pushing configuration bundles to each of the IPS units.
D. Cisco IPS Manager Express and pushing configurations to the IPS units.

Answer: B

NEW QUESTION 260
When configuring packet-tracer command from CLI, what is the first option that you set?

A. source IP address
B. destination IP address
C. interface
D. protocol (ip, tcp, udp)

Answer: C

NEW QUESTION 261
What is a benefit the iOS control plane protection?

A. It allows QOS policing of aggregate control-panel
B. It provides for early dropping of packets directed toward closed
C. It prevents the input guide from being overwhelmed by any single
D. It minimizes the number of unprocessed packets a protocol can have

Answer: B

NEW QUESTION 262
Which two voice and video protocols does the Cisco ASA 5500 Series support with Cisco Unified Communications Application Inspection? (Chose two.)

A. SCTP
B. SDP
C. H.323
D. H248
E. SCCP
F. SRTP

Answer: CE

NEW QUESTION 263
Which two option are protocol and tools are used by management plane when using cisco ASA general management plane hardening?

A. Unicast Reverse Path Forwarding
B. NetFlow
C. Routing Protocol Authentication
D. Threat detection
E. Syslog
F. ICMP unreachables
G. Cisco URL Filtering

Answer: BE

NEW QUESTION 264
……

P.S. Get The Newest 300-206 Dumps In PDF And VCE From — https://www.passleader.com/300-206.html (273q VCE and PDF)

Good Luck!

Reply