Which mitigation technique would prevent rogue servers from providing false IPv6 configuration parameters to clients?
- enabling DHCPv6 Guard
- enabling RA Guard
- implementing port security on edge ports
- disabling CDP on edge ports
Explanation: DHCPv6 Guard is a feature designed to ensure that rogue DHCPv6 servers are not able to hand out addresses to clients, redirect client traffic, or starve out the DHCPv6 server and cause a DoS attack. DHCPv6 Guard requires a policy to be configured in DHCP Guard configuration mode, and DHCPv6 Guard is enabled on an interface-by-interface basis.
Exam with this question: CCNP Enterprise: Advanced Routing (Version 8.0) – Infrastructure Security and Management Exam
Exam with this question: Switching, Routing, and Wireless Essentials (Version 7.00) - SRWE Final Exam Answers
Exam with this question: CCNP ENARSI v8 Certification Practice Exam
Please login or Register to submit your answer