exam questions

Exam 300-410 All Questions

View all questions & answers for the 300-410 exam

Exam 300-410 topic 1 question 427 discussion

Actual exam question from Cisco's 300-410
Question #: 427
Topic #: 1
[All 300-410 Questions]

What is a function of the IPv6 DHCP Guard feature for DHCP messages?

  • A. If the device is configured as a DHCP server, no message is switched.
  • B. All client messages are always switched regardless of the device role.
  • C. It blocks only DHCP request messages.
  • D. Only access lists are supported for matching traffic.
Show Suggested Answer Hide Answer
Suggested Answer: B 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
DUBC89x
Highly Voted 2 years ago
Selected Answer: B
DHCPv6 Guard Overview The DHCPv6 Guard feature blocks reply and advertisement messages that come from unauthorized DHCP servers and relay agents. Packets are classified into one of the three DHCP type messages. All client messages are always switched regardless of device role. DHCP server messages are only processed further if the device role is set to server. Further processing of server messages includes DHCP server advertisements(for source validation and server preference) and DHCP server replies (for permitted prefixes). If the device is configured as a DHCP server, all the messages need to be switched, regardless of the device role configuration. https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipaddr_dhcp/configuration/15-sy/dhcp-15-sy-book/ip6-dhcpv6-guard.pdf
upvoted 8 times
...
bk989
Most Recent 3 months, 2 weeks ago
C: No it blocks DHCP advertisement messages from rogue serverts D: We can use access-lists to match the DHCP server, and prefix-lists for allowed prefixes. C: True. We need to switch all client messages whether the port role is set as host or server, otherwise we break DHCPv6 Server messages on a host port are blocked. Server messages on a server port are allowed, but can be restricted with ACL's (to match allowed servers), or prefix-lists (to allow prefixes)
upvoted 1 times
...
tubirubs
4 months ago
Selected Answer: A
The option B. All client messages are always switched regardless of the device role is incorrect because the IPv6 DHCP Guard feature specifically filters and controls DHCP messages based on the role of the device (trusted or untrusted). The main purpose of this feature is to block DHCP messages from unauthorized or rogue DHCP servers, not to switch all client messages indiscriminately.
upvoted 1 times
...
[Removed]
4 months, 3 weeks ago
Selected Answer: B
B is corerct
upvoted 1 times
...
Hummer1
1 year, 5 months ago
Selected Answer: B
Correct
upvoted 1 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago