You need to allow one host to be permitted to attach dynamically to each switch interface. Which two commands must you configure on your catalyst switch to meet this policy?
Switch(config-if)# ip access-group 10
Switch(config-if)# switchport port-security maximum 1
The
switchport port-security is an important command, and it's super easy with the CNA; however, from the CLI, you can set the maximum number of MAC addresses allowed into the port, and then set the penalty if this maximum has been passed.
Spanning Tree Protocol problems
Search Results
1. Which of the following is a layer 2 protocol used to maintain a loop-free network?
Correct Answer: In an improperly implemented redundant topology
Explanation:
If the Spanning Tree Protocol is not running on your switches and you connect them together with redundant links, you will have broadcast storms and multiple frame copies.
3. What are the distinct functions of layer 2 switching that increase available bandwidth on the network?
Correct Answer: A switch creates separate collision domains but one broadcast domain. A router provides a separate broadcast domain.
Explanation:
Switches break up collision domains, and routers break up broadcast domains.
5. If a switch receives a frame and the source MAC address is not in the MAC address table but the destination address is, what will the switch do with the frame?
Options
A. Discard it and send an error message back to the originating host
B. Flood the network with the frame
C. Add the source address and port to the MAC address table and forward the frame out the destination port
D. Add the destination to the MAC address table and then forward the frame
Correct Answer: Add the source address and port to the MAC address table and forward the frame out the destination port
Explanation:
Since the source MAC address is not in the MAC address table, the switch will add the source address and the port it is connected to into the MAC address table and then forward the frame to the outgoing port.
6. You want to run the new 802.1w on your switches. Which of the following would enable this protocol?
802.1w is the also called Rapid Spanning Tree Protocol. It is not enabled by default on Cisco switches, but it is a better STP to run since it has all the fixes that the Cisco extensions provide with 802.1d.
7. Which statement describes a spanning-tree network that has converged?
Options
A. All switch and bridge ports are in the forwarding state.
B. All switch and bridge ports are assigned as either root or designated ports.
C. All switch and bridge ports are in either the forwarding or blocking state.
D. All switch and bridge ports are either blocking or looping.
Correct Answer: All switch and bridge ports are in either the forwarding or blocking state.
Explanation:
Convergence occurs when all ports on bridges and switches have transitioned to either the forwarding or blocking states. No data is forwarded until convergence is complete. Before data can be forwarded again, all devices must be updated.
8. What is the purpose of Spanning Tree Protocol in a switched LAN?
Options
A. To provide a mechanism for network monitoring in switched environments
B. To prevent routing loops in networks with redundant paths
C. To prevent switching loops in networks with redundant switched paths
D. To manage the VLAN database across multiple switches
When you connect to a switch port, at first the link lights are orange/amber, and then they turn green, indicating normal operation. If the link light is blinking, you have a problem.
10. If you want to disable STP on a port connected to a server, which command would you use?
If you have a server or other devices connected into your switch that you're totally sure won't create a switching loop if STP is disabled, you can use something called
portfast on these ports. Using it means the port won't spend the usual 50 seconds to come up while STP is converging.