Question:
Which command would be best to use on an unused switch port if a company adheres to the best practices as recommended by Cisco?
- shutdown
- ip dhcp snooping
- switchport port-security mac-address sticky
- switchport port-security violation shutdown
- switchport port-security mac-address sticky mac-address
Explanation: Unlike router Ethernet ports, switch ports are enabled by default. Cisco recommends disabling any port that is not used. The ip dhcp snooping command globally enables DHCP snooping on a switch. Further configuration allows defining ports that can respond to DHCP requests. The switchport port-security command is used to protect the network from unidentified or unauthorized attachment of network devices.
Exam with this question: CCNA 2 (v5.0.3 + v6.0) Practice Final Exam Answers
Exam with this question: CCNA Security Pretest Exam Answers
Exam with this question: 11.6.4 Module Quiz - Switch Security Configuration Answers
Please login or Register to submit your answer