Which command drops packets with unknown source addresses until you remove a sufficient number of secure MAC addresses…?

Which command drops packets with unknown source addresses until you remove a sufficient
number of secure MAC addresses to drop below the maximum value, and also causes the Security
Violation counter to increment?

Which command drops packets with unknown source addresses until you remove a sufficient
number of secure MAC addresses to drop below the maximum value, and also causes the Security
Violation counter to increment?

A.
switchport port-security violation protect

B.
switchport port-security violation drop

C.
switchport port-security violation shutdown

D.
switchport port-security violation restrict

Show Hint

Leave a Reply 1

Your email address will not be published. Required fields are marked *

Scooby

Scooby

When configuring port security violation modes, note the following information:

protect—Drops packets with unknown source addresses until you remove a sufficient number of
secure MAC addresses to drop below the maximum value.

restrict—Drops packets with unknown source addresses until you remove a sufficient number of
secure MAC addresses to drop below the maximum value and causes the SecurityViolation
counter to increment.

shutdown—Puts the interface into the error-disabled state immediately and sends an SNMP trap
notification.
Reference: http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst6500/ios/12-
2SX/configuration/guide/book/port_sec.html

Reply