To back up his claim the following is from the cert guide: "If Example 6-7 had used the restrict violation mode instead of protect, the port status would have also remained in a secure-up state; however, IOS would show some indication of port security activity, such as an accurate incrementing violation counter, as well as syslog messages."
OOOOOOOOOOOOOMMMMMMMMMMGGGGGGGGGG
first read the question then answer
it says which statement that generate this output is TRUE? option A is the correct Concept but it DOES NOT GENERATE this output, So you are left just with option B which is TRUE and GENERATE this output.
Although I checked the output on LAB when you hit the command : Switchport port-security violation shutdown or restrict in both cases SYSlog will be GENERATE just one difference in restrict mode it will not put interface in error disable mode. good luck
A and B are both correct , this question is wrong . For shutdown (default) port will go in err-disable and generate a syslog message . For Restrict , port will generate a syslog message and drop the packets . For Protect port will just drop the packet without a syslog message .
and yes there is only 1 MAC address learned static .
The documentation is confusing, some of them says shutdown mode sends logs and snmp traps (oficcial cert book from wendell odom book 2 chap 6 page 115) and other sites says the opposite like cisco catalyst configuration .... https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst9500/software/release/16-10/configuration_guide/sec/b_1610_sec_9500_cg/b_1610_sec_9500_cg_chapter_0101010.html
B is correct.
Why A is wrong for this question:
It is true that when a Shutdown happens it is logged and incremented but in this example the max MAC address limit has not been reached. So the next violation of an unknown MAC address will simply be learned without causing a shutdown.
Your logic is flawed. The question doesn't ask what will happen when a new MAC is detected, it asks what will happen when a violation occurs, which implies a 6th MAC is detected. The question is just wrong.
Restrict: The offending frame is dropped and an SNMP trap and a Syslog message are generated. The security violation causes the violation counter to increment.
Shutdown: The offending frame is dropped. The interface is placed in an error-disabled state and an SNMP trap and a Syslog message are generated.
A is correct, but only AFTER all the allowed MAC addresses are learned. As of "now" in the print out only 1 of 5 MAC addresses are learned/ configured, so no violation yet.
That doesn't change the duality of the question. A) says when a violation occurs.
And a violation would be 6 Mac addresses under that interface, doesn't matter how many MAC's are there now.
Agree with hema5tho. A is also correct, as far as I know, despite the CCNA course says Shutdown violation mode does not generate a Syslog message (one error out of many?). But forther investigation is needed; may be this is different among various IOS versions.
They are both correct but something my cisco teacher told me is often on the exam there are multiple correct answers, but you have to choose the one "best" answer. This can mean the most specific correct answer or the most relevant correct answer, etc. In this case I think you chose the one most relevant. So my guess is that because most of the answers are referring to the MAC addresses learned on the interface, B is the better answer.
upvoted 4 times
...
...
This section is not available anymore. Please use the main Exam Page.200-301 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
C3L4H1R
Highly Voted 4 years, 1 month agoSal34
2 years, 11 months agosgashashf
3 years, 1 month agoRougePotatoe
2 years, 5 months ago[Removed]
Highly Voted 1 year, 7 months agoMeysamDavabi
Most Recent 2 months agomatass_md
9 months, 1 week ago[Removed]
1 year, 1 month agobaanyan
1 year, 3 months ago[Removed]
1 year, 8 months ago[Removed]
1 year, 9 months agogachocop3
3 years, 1 month agobabaKazoo
3 years, 3 months agosgashashf
3 years, 1 month agodave1992
3 years, 6 months agoimo90s
3 years, 11 months agoSubit123
3 years, 11 months agoSal34
2 years, 11 months agoSal34
2 years, 11 months agomrsiafu
3 years, 12 months agoMM_9
4 years, 3 months agonakres64
4 years, 2 months agoFloridaMan88
4 years, 2 months agohema5tho
3 years, 7 months agopagamar
3 years, 4 months agoGHH
3 years, 5 months ago