A recent penetration test identified that an attacker could flood the MAC address table of network switches. Which of the following would best mitigate this type of attack?
Port security is a feature on network switches that allows you to limit the number of MAC addresses that can be learned on a specific port. If the limit is exceeded, the switch can take predefined actions such as shutting down the port, restricting traffic, or generating alerts. This effectively prevents attackers from overwhelming the switch with a large number of MAC addresses, which could otherwise cause the switch to behave like a hub, sending traffic to all ports and potentially exposing sensitive data. (B)
If this answer is correct, and the port shuts down from MAC address flooding, that is another form of DDOS right? Please let me know if you think this is true or not. I think the answer should be NGFW!
upvoted 1 times
...
...
This section is not available anymore. Please use the main Exam Page.SY0-701 Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Muhammad_Umair
Highly Voted 8 months, 1 week agoCISUMPATR
4 days, 8 hours ago