(Part 1) Modules 10 – 13: L2 Security and WLANs University Quiz

1.

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

Which Layer 2 attack will result in legitimate users not getting valid IP addresses?

ARP spoofing

DHCP starvation

IP address spoofing

MAC address flooding

2.

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

What mitigation plan is best for thwarting a DoS attack that is creating a MAC address table overflow?

Disable DTP.

Disable STP.

Enable port security.

Place unused ports in an unused VLAN.

3.

MULTIPLE SELECT QUESTION

45 sec • 1 pt

Which three Cisco products focus on endpoint security solutions? (Choose three.)

IPS Sensor Appliance

Web Security Appliance

Email Security Appliance

SSL/IPsec VPN Appliance

NAC Appliance

4.

MULTIPLE CHOICE QUESTION

45 sec • 1 pt

In the 802.1X standard, the client attempting to access the network is referred to as the supplicant.

true

false

5.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which authentication method stores usernames and passwords in the router and is ideal for small networks?

server-based AAA over TACACS+

local AAA over RADIUS

server-based AAA

local AAA over TACACS+

local AAA

6.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What represents a best practice concerning discovery protocols such as CDP and LLDP on network devices?

Enable CDP on edge devices, and enable LLDP on interior devices.

Use the open standard LLDP rather than CDP.

Use the default router settings for CDP and LLDP.

Disable both protocols on all interfaces where they are not required.

7.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which protocol should be used to mitigate the vulnerability of using Telnet to remotely manage network devices?

SNMP

TFTP

SSH

SCP

8.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Which statement describes the behavior of a switch when the MAC address table is full?

It treats frames as unknown unicast and floods all incoming frames to all ports on the switch.

It treats frames as unknown unicast and floods all incoming frames to all ports across multiple switches.

It treats frames as unknown unicast and floods all incoming frames to all ports within the local VLAN.

It treats frames as unknown unicast and floods all incoming frames to all ports within the collision domain.

9.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

What device is considered a supplicant during the 802.1X authentication process?

the router that is serving as the default gateway

the authentication server that is performing client

the client that is requesting authentication

the switch that is controlling network access

10.

MULTIPLE CHOICE QUESTION

30 sec • 1 pt

Refer to the exhibit. Port Fa0/2 has already been configured appropriately. The IP phone and PC work properly. Which switch configuration would be most appropriate for port Fa0/2 if the network administrator has the following goals?

SWA(config-if)# switchport port-security
SWA(config-if)# switchport port-security mac-address sticky

SWA(config-if)# switchport port-security
SWA(config-if)# switchport port-security maximum 2
SWA(config-if)# switchport port-security mac-address sticky
SWA(config-if)# switchport port-security violation restrict

SWA(config-if)# switchport port-security mac-address sticky
SWA(config-if)# switchport port-security maximum 2

SWA(config-if)# switchport port-security
SWA(config-if)# switchport port-security maximum 2
SWA(config-if)# switchport port-security mac-address sticky

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground