The network administrator sees a “%CAM-TABLE-FULL” message on a network switch. Upon investigation, the administrator notices thousands of MAC addresses
associated with a single untagged port. Which of the following should be implemented to prevent this type of attack?
A.
Port security
B.
BPDU guard
C.
802.1X
D.
TACACS+
Why it isn’t “Port security” because that can allow specific MAC address sources to connect to a switch port.
Yes, why not Port Security? In fact, 802.1X takes care of client authentication to the network – but does 802.1X actually prevent multiple/many MAC addresses mapped to a single switch port?
Port Security will prevent that type of attack. 802.1X will not