What device is considered a supplicant during the 802.1X authentication process?

the client that is requesting authentication

the switch that is controlling network access

the authentication server that is performing client authentication

the router that is serving as the default gateway

Refer to the exhibit. Port Fa0/2 has already been configured appropriately. The IP phone and PC work properly. Which switch configuration would be most appropriate for port Fa0/2 if the network administrator has the following goals? No one is allowed to disconnect the IP phone or the PC and connect some other wired device. If a different device is connected, port Fa0/2 is shut down. The switch should automatically detect the MAC address of the IP phone and the PC and add those addresses to the running configuration.

SWA(config-if)# switchport port-security SWA(config-if)# switchport port-security maximum 2 SWA(config-if)# switchport port-security mac-address sticky

SWA(config-if)# switchport port-security violation restrict SWA(config-if)# switchport port-security mac-address sticky SWA(config-if)# switchport port-security maximum 2

SWA(config-if)# switchport port-security SWA(config-if)# switchport port-security maximum 2 SWA(config-if)# switchport port-security mac-address sticky

SWA(config-if)# switchport port-security SWA(config-if)# switchport port-security mac-address sticky

. A network administrator is configuring DAI on a switch with the command ip arp inspection validate src-mac. What is the purpose of this configuration command?

It checks the source MAC address in the Ethernet header against the sender MAC address in the ARP body.

It checks the source MAC address in the Ethernet header against the target MAC address in the ARP body.

It checks the source MAC address in the Ethernet header against the MAC address table.

It checks the source MAC address in the Ethernet header against the user-configured ARP ACLs.

Which two commands can be used to enable BPDU guard on a switch? (Choose two.)

S1(config-if)# spanning-tree bpduguard enable

S1(config)# spanning-tree portfast bpduguard default

S1(config-if)# enable spanning-tree bpduguard

S1(config-if)# spanning-tree portfast bpduguard

S1(config)# spanning-tree bpduguard default

What are the two methods that are used by a wireless NIC to discover an AP? (Choose two.)

receiving a broadcast beacon frame

initiating a three-way handshake

A technician is configuring the channel on a wireless router to either 1, 6, or 11. What is the purpose of adjusting the channel?

to avoid interference from nearby wireless devices

to provide stronger security modes

to disable broadcasting of the SSID

to enable different 802.11 standards

technician is about to install and configure a wireless network at a small branch office. What is the first security measure the technician should apply immediately upon powering up the wireless router?

Change the default user-name and password of the wireless router.

Disable the wireless network SSID broadcast.

Configure encryption on the wireless router and the connected wireless devices.

Enable MAC address filtering on the wireless router.

Which step is required before creating a new WLAN on a Cisco 3500 series WLC?

Build or have a RADIUS server available.

Build or have an SNMP server available.

A network administrator is configuring a RADIUS server connection on a Cisco 3500 series WLC. The configuration requires a shared secret password. What is the purpose for the shared secret password?

It is used to encrypt the messages between the WLC and the RADIUS server.

It allows users to authenticate and access the WLAN.

It is used to authenticate and encrypt user data on the WLAN.

It is used by the RADIUS server to authenticate WLAN users.

Which type of wireless network is based on the 802.11 standard and a 2.4-GHz or 5-GHz radio frequency?

wireless metropolitan-area network

What are three techniques for mitigating VLAN attacks? (Choose three.)

Set the native VLAN to an unused VLAN.

. Refer to the exhibit. What can be determined about port security from the information that is shown?

The port violation mode is the default for any port that has port security enabled

The port has the maximum number of MAC addresses that is supported by a Layer 2 switch port which is configured for port security.

The port has two attached devices.

A technician is troubleshooting a slow WLAN that consists of 802.11b and 802.11g devices . A new 802.11n/ac dual-band router has been deployed on the network to replace the old 802.11g router. What can the technician do to address the slow wireless speed?

Split the wireless traffic between the 802.11n 2.4 GHz band and the 5 GHz band.

Configure devices to use a different channel.

Update the firmware on the new router.

What is the function provided by CAPWAP protocol in a corporate wireless network?

CAPWAP provides the encapsulation and forwarding of wireless user traffic between an access point and a

CAPWAP provides the encryption of wireless user traffic between an access point and a wireless client.

wireless LAN controller. CAPWAP provides connectivity between an access point using IPv6 addressing and a wireless client using IPv4 addressing.

CAPWAP creates a tunnel on Transmission Control Protocol (TCP) ports in order to allow a WLC to configure an autonomous access point.

What is the result of a DHCP starvation attack?

Legitimate clients are unable to lease IP addresses.

Clients receive IP address assignments from a rogue DHCP server.

The IP addresses assigned to legitimate clients are hijacked.

The attacker provides incorrect DNS and default gateway information to clients.

Which feature or configuration on a switch makes it vulnerable to VLAN double-tagging attacks?

the native VLAN of the trunking port being the same as a user VLAN

mixed duplex mode enabled for all ports by default

the automatic trunking port feature enabled for all ports by default

the limited size of content-addressable memory space

A laptop cannot connect to a wireless access point. Which two troubleshooting steps should be taken first? (Choose two.)

Ensure that the wireless SSID is chosen.

Ensure that the wireless NIC is enabled.

Ensure that the NIC is configured for the proper frequency.

Ensure that the laptop antenna is attached.

Ensure that the correct network media is selected.

What is an advantage of SSID cloaking?

Clients will have to manually identify the SSID to connect to the network.

It provides free Internet access in public locations where knowing the SSID is of no concern.

SSIDs are very difficult to discover because APs do not broadcast them.

It is the best way to secure a wireless network.

Which type of wireless network is suitable for national and global communications?

wireless metropolitan-area network

Which feature on a switch makes it vulnerable to VLAN hopping attacks?

the automatic trunking port feature enabled for all ports by default

mixed port bandwidth support enabled for all ports by default

the limited size of content-addressable memory space

the mixed duplex mode enabled for all ports by default

Refer to the exhibit. The Fa0/2 interface on switch S1 has been configured with the switchport port-security mac-address 0023.189d.6456 command and a workstation has been connected. What could be the reason that the Fa0/2 interface is shutdown?

The MAC address of PC1 that connects to the Fa0/2 interface is not the configured MAC address

S1 has been configured with a switchport port-security aging command.

The connection between S1 and PC1 is via a crossover cable.

The Fa0/24 interface of S1 is configured with the same MAC address as the Fa0/2 interface.

A network administrator enters the following commands on the switch SW1. SW1(config)# interface range fa0/5 - 10 SW1(config-if)# ip dhcp snooping limit rate 6 What is the effect after these commands are entered?

FastEthernet ports 5 through 10 can receive up to 6 DHCP discovery messages per second.

If any of the FastEthernet ports 5 through 10 receive more than 6 DHCP messages per second, the port will continue to operate and an error message will be sent to the network administrator.

FastEthernet ports 5 through 10 can receive up to 6 DHCP messages per second of any type.

If any of the FastEthernet ports 5 through 10 receive more than 6 DHCP messages per second, the port will be shut down.

A network administrator is working to improve WLAN performance on a dual-band wireless router. What is a simple way to achieve a split-the-traffic result?

Make sure that different SSIDs are used for the 2.4 GHz and 5 GHz bands.

Require all wireless devices to use the 802.11n standard.

Add a Wi-Fi range extender to the WLAN and set the AP and the range extender to serve different bands.

Check and keep the firmware of the wireless router updated.

networking mod 11-13

Authored by Minase Aoi

Computers

University

Used 8+ times

AI Actions

Add similar questions

Adjust reading levels

Convert to real-world scenario

Translate activity

More...

Content View

Student View

70 questions

Show all answers

MULTIPLE SELECT QUESTION

45 sec • 1 pt

hich three Cisco products focus on endpoint security solutions? (Choose three.)

NAC Appliance

Web Security Appliance

Email Security Appliance

SSL/IPsec VPN Appliance

Adaptive Security Appliance

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What mitigation plan is best for thwarting a DoS attack that is creating a MAC address table overflow?

Enable port security.

Place unused ports in an unused VLAN.

Disable DTP.

Disable STP

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

True or False?
In the 802.1X standard, the client attempting to access the network is referred to as the supplicant.

true

false

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which authentication method stores usernames and passwords in the router and is ideal for small networks?

server-based AAA over RADIUS

local AAA

local AAA over TACACS+

server-based AAA

local AAA over RADIUS

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What represents a best practice concerning discovery protocols such as CDP and LLDP on network devices?

Disable both protocols on all interfaces where they are not required.

Use the default router settings for CDP and LLDP.

Use the open standard LLDP rather than CDP.

Enable CDP on edge devices, and enable LLDP on interior devices.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which protocol should be used to mitigate the vulnerability of using Telnet to remotely manage network devices?

TFTP

SNMP

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which statement describes the behavior of a switch when the MAC address table is full?

It treats frames as unknown unicast and floods all incoming frames to all ports within the collision domain.

It treats frames as unknown unicast and floods all incoming frames to all ports within the local VLAN.

It treats frames as unknown unicast and floods all incoming frames to all ports across multiple switches.

It treats frames as unknown unicast and floods all incoming frames to all ports on the switch.

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

68 questions

WORD

Quiz

•

7th Grade - University

67 questions

HTML and CSS Quiz

Quiz

•

University

70 questions

Computing A level AQA

Quiz

•

12th Grade - University

66 questions

Grade7 All

Quiz

•

7th Grade - University

65 questions

JENIS-JENIS HARDWARE (KELAS 3)

Quiz

•

3rd Grade - University

70 questions

untitled

Quiz

•

6th Grade - University

75 questions

EXERCÍCIO 36 - FÍSICA III (ROBÓTICA II) DURVAL 2025

Quiz

•

12th Grade - University

71 questions

Hệ điều hành (CHƯƠNG 7 - 8)

Quiz

•

University

Popular Resources on Wayground

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

54 questions

Analyzing Line Graphs & Tables

Quiz

•

4th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

20 questions

Main Idea and Details

Quiz

•

5th Grade

20 questions

Context Clues

Quiz

•

6th Grade

15 questions

Equivalent Fractions

Quiz

•

4th Grade

Discover more resources for Computers

20 questions

CompTIA Network+ - Ports and Protocols

Quiz

•

University

networking mod 11-13

hich three Cisco products focus on endpoint security solutions? (Choose three.)

What mitigation plan is best for thwarting a DoS attack that is creating a MAC address table overflow?

True or False?In the 802.1X standard, the client attempting to access the network is referred to as the supplicant.

Which authentication method stores usernames and passwords in the router and is ideal for small networks?

What represents a best practice concerning discovery protocols such as CDP and LLDP on network devices?

Which protocol should be used to mitigate the vulnerability of using Telnet to remotely manage network devices?

Which statement describes the behavior of a switch when the MAC address table is full?

What device is considered a supplicant during the 802.1X authentication process?

. Which type of VLAN-hopping attack may be prevented by designating an unused VLAN as the native VLAN?

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Computers

True or False?
In the 802.1X standard, the client attempting to access the network is referred to as the supplicant.