Home > Articles > Cisco > CCNP Security

  • Print
  • + Share This
This chapter is from the book

This chapter is from the book

Q&A

As mentioned in the section "How to Use This Book" in the Introduction, you have two choices for review questions. The questions that follow present a bigger challenge than the exam itself because they use an open-ended question format. By reviewing using this more difficult format, you can exercise your memory better and prove your conceptual and factual knowledge of this chapter. You can find the answers to these questions in the appendix.

For more practice with exam-like question formats, including questions using a router simulator and multiple-choice questions, use the exam engine on the CD-ROM.

  1. What are the most common types of Layer 2 attacks?
  2. Describe the CAM table overflow attack.
  3. Explain the three categories of action that can be taken when a port security violation occurs.
  4. When a secure port is in the error-disabled state, how can it be brought out of this state?
  5. How can you mitigate VLAN hopping attacks?
  6. What is involved in an STP attack?
  7. How does MAC spoofing–man-in-the-middle attacks work?
  8. How can you mitigate MAC spoofing attacks?
  9. Describe how a proxy attack bypasses access restrictions of private VLANs.
  10. Explain how a DHCP starvation attack is performed.
  • + Share This
  • 🔖 Save To Your Account