Which switch feature restricts which MAC addresses can connect to a switch port and can limit the number of allowed MAC addresses and specify a violation action?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for your Network Implementation Exam. Master routing, switching, and wireless protocols through interactive quizzes. Learn with multiple-choice questions, hints, and in-depth explanations. Enhance your skills for a successful network implementation career!

Multiple Choice

Which switch feature restricts which MAC addresses can connect to a switch port and can limit the number of allowed MAC addresses and specify a violation action?

Explanation:
Port security is the feature that controls which devices may connect to a switch port by limiting how many MAC addresses can be learned on that port and by defining what happens when a violation occurs. You can set a maximum number of MAC addresses for a port, and you can enable sticky MAC to learn addresses dynamically and store them in the running configuration so they persist. When the limit is reached, the configured violation action kicks in—shutdown (disable the port until you intervene), restrict (drop frames from unknown addresses and generate logs), or protect (drop frames from unknown addresses without changing the port state). This combination directly enforces per-port device access and the appropriate response to violations, making it the correct choice. The other features serve different purposes: a Layer 3 switch provides routing capabilities, sticky MAC is a mechanism used within port security to learn addresses, and BPDU Guard protects against rogue BPDU frames rather than per-port MAC address restrictions.

Port security is the feature that controls which devices may connect to a switch port by limiting how many MAC addresses can be learned on that port and by defining what happens when a violation occurs. You can set a maximum number of MAC addresses for a port, and you can enable sticky MAC to learn addresses dynamically and store them in the running configuration so they persist. When the limit is reached, the configured violation action kicks in—shutdown (disable the port until you intervene), restrict (drop frames from unknown addresses and generate logs), or protect (drop frames from unknown addresses without changing the port state). This combination directly enforces per-port device access and the appropriate response to violations, making it the correct choice. The other features serve different purposes: a Layer 3 switch provides routing capabilities, sticky MAC is a mechanism used within port security to learn addresses, and BPDU Guard protects against rogue BPDU frames rather than per-port MAC address restrictions.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy