Question:
What mitigation plan is best for thwarting a DoS attack that is creating a MAC address table overflow?
- Disable DTP.
- Disable STP.
- Enable port security.
- Place unused ports in an unused VLAN.
Explanation: A MAC address (CAM) table overflow attack, buffer overflow, and MAC address spoofing can all be mitigated by configuring port security. A network administrator would typically not want to disable STP because it prevents Layer 2 loops. DTP is disabled to prevent VLAN hopping. Placing unused ports in an unused VLAN prevents unauthorized wired connectivity.
Exam with this question: Module 14: Quiz – Layer 2 Security Considerations Network Security
Exam with this question: CCNA 2 v7 Checkpoint Exam: L2 Security and WLANs Exam Answers
Exam with this question: CCNA 2 v7 Course Final Exam Answers
Exam with this question: 10.6.2 Module Quiz - LAN Security Concepts Answers
Please login or Register to submit your answer