Skillset can help you prepare! Sign up for your free Skillset account and take the first steps towards your certification.
You were given a task to configure interface fa0/24 of an existing catalyst switch, your task must satisfy the following conditions:
-Disable DTP
-Port must be assignable to a VLAN
-Allow only one MAC Address to be Dynamically Learned
-Enable port security
-In case of violation on the port, drop incoming packets, and the switch should
generate an SNMP and Syslog messages but should NOT place the port to err-disabled state.
Which of the following set of commands would satisfy the above conditions? (Choose the best answer)
``` switchport mode access switchport nonegotiate switchport port-security switchport port-security mac-address sticky switchport port-security violation restrict ```
``` switchport mode access switchport nonegotiate switchport port-security switchport port-security mac-address sticky switchport port-security violation shutdown ```
``` switchport mode access switchport nonegotiate switchport port-security switchport port-security maximum 1 dynamic switchport port-security violation restrict ```
``` switchport mode access switchport dtp disable switchport port-security enable switchport port-security mac-address sticky switchport port-security violation restrict ```
To enables port-security on a catalyst switch, we use the command switchport port-security inside the interface configuration mode. However, you cannot configure port-security on a dynamic port (Dynamic Trunking Protocol _ enables automatic access/trunking mode negotiation between switches) enabled interface. To be able to configure port-security on an interface, issue either of the following commands (depends on the requirements): switchport mode access or switchport mode trunk. But to further satisfy the above conditions, apply switchport nonegotiate command to completely disable DTP. Apply switchport port-security mac-address sticky to dynamically learn MAC Address and apply switchport port-security violation restrict to set violation mode to restrict (sends SNMP and Syslog messages but wonêt put the interface to err-disable), in contrast with shutdown which puts the interface to err-disable state.
Study thousands of practice questions that organized by skills and ranked by difficulty.
Create a tailored training plan based on the knowledge you already possess.
Know when you’re ready for the high-stakes exam. Have the confidence that you will pass on your first attempt.