GIAC Exam GCED Topic 9 Question 4 Discussion

Actual exam question for GIAC's GIAC Certified Enterprise Defender exam

Question #: 4
Topic #: 9

[All GIAC Certified Enterprise Defender Questions]

Analyze the screenshot below. Which of the following attacks can be mitigated by these configuration settings?

AA Denial-of-Service attack using network broadcasts

BA Replay attack

CAn IP masquerading attack

DA MAC Flood attack

Show Suggested Answer

Suggested Answer: D

Both BPDU Guard and Root Guard are used to prevent a new switch from becoming the Root Bridge. They are very similar but use different mechanisms.

Rootguard allows devices to use STP, but if they send superior BDPUs (i.e. they attempt to become the Root Bridge), Root Guard disables the port until the offending BPDUs cease. Recovery is automatic.

If Portfast is enabled on a port, BPDU Guard will disable the port if a BPDU is received. The port stays disabled until it is manually re-enabled. Devices behind such ports cannot use STP, as the port would be disabled as soon as they send BPDUs (which is the default behavior of switches).

by Glory at May 05, 2022, 09:50 AM

Limited Time Offer

25%

Off

Get Premium GCED Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!