Exam JN0-348 topic 1 question 3 discussion

Should be 802.1X and mac limiting, the question asks about tackling rogue ***switches***, DHCP snooping and DAI are tracking IP-MAC association and this is to target rogue layer hosts, not switches

Seems like C and D are a better fit here

This is about rogue Switches, not about Hosts, nor DHCP Server

I think Answer should be B and C because if DAI enabled then it automatically enables DHCP Snooping so no need to enable it explicitly. MAC Limiting should be there prevent mac flooding.

"...to limit access to this port" ! MAC limiting will limit the access to this port, 802.1X will limit the access to this port. DHCP Snooping and DAI will protect from rogue DHCP server and IP spoofing. Now way that A and B could be true with this question.

MAC limiting will prevent users to be able to connect to the network after the number of macs allowed is reached. 802.1x not sure if will prevent a rough L2 switch to allow multiple devices to be connected to the same port. So I'm guessing A and B are correct.

I'm a cisco engineer and have configured switches for a while and limiting a port to 2 MAC addresses is the most used solution. Also to have total control of what is being connected to the network, you would want to configure 802.1X. What has DHCP Snooping or arp inspection got to do with preventing rogue switches from being connected to the network? NOTHING, IMO. If you think otherwise, please put an explanation why to back up your reason.

Answer must be C and D, A and B are Host related no rouge switches connecting to the network

I think C & D, he is concerned on rouge switches, mac-limit and 802.1x

Correct A and B is the correct

Arp inspection. But arp inspection need use db of dhcp snooping. So A, B is right

it should 802.1X and DHCP snooping