Ch 9 - Configuring Switch Interfaces Flashcards Preview

CCENT > Ch 9 - Configuring Switch Interfaces > Flashcards

Flashcards in Ch 9 - Configuring Switch Interfaces Deck (17)
Loading flashcards...
1

PC hard coded at 10/half pevents 10/100/1000 switch from negotiating.

10/half

2

What does the action Restrict do?

* discards offending traffic
* sends log and snmp trap
* increments violation counter

3

What is the IEEE standard for auto-negotiation?

802.3u

4

PC hard coded at 100/full and 10/100/1000 switch can't negotiate

100/half

5

What does the action Shutdown do?

* discards offending traffic
* sends log and snmp trap
* increments violation counter
* err-disables the port.

6

By default how many MAC addresses will a switchport allow with port-security enabled?

1

7

PC hard coded at 1000/full prevents 10/100/1000 switch from negotiating.

1000/full

8

If a switchport with port security configured for 2 different MAC addresses receives traffic from a 3rd MAC what will it do?

Port security violation has occurred. By default the interface is err-disabled.

9

If sticky secure MAC addresses option is configured where does the switch save the MAC addresses it discovers?

Running-config, NOT startup-config

10

Steps in configuring port security

* switchport mode access
* switchport port-security
* switchport port-security maximum
* switchport port-security violation
* switchport port-security mac-address
* or switchport port-security mac-address sticky

11

What are the 3 actions a switch can take upon detecting a violation on a port?

Protect, Restrict, Shutdown

12

What does the action Protect do?

Discards offending traffic. Nothing more.

13

How does Cisco perform auto-negotiation?

Attempt to sense the speed else use slowest supported speed, If speed is 10 or 100 use half duplex, if speed is 1000 use full duplex.

14

According to IEEE what rules apply when a device tries negotiating speed and duplex but hears no reply?

Use slowest supported speed and if 10 or 100 use half duplex. If speed is 1000 use full duplex.

15

Does auto-negotiation traffic use Ethernet?

No, it's out of band.

16

Will 'show mac address-table dynamic' display MAC addresses on ports secured by port-security?

No, they are no longer considered to be dynamic.

17

What commands will show the MAC addresses on ports with port-security enabled?

show mac address-table secure' or 'show mac address-table static'