ExamGecko
Search Search Login
Home Home / Cisco / 200-301
Question list
Search
Search
Open VPLUS File
Convert VPLUS to PDF

Related questions

DRAG DROP Drag and drop the descriptions of file-transfer protocols from the left onto the correct protocols on the right.
DRAG DROP Drag and drop the IPv4 network subnets from the left onto the correct usable host ranges on the right.
DRAG DROP Drag the descriptions of IP protocol transmissions from the left onto the IP traffic types on the right.
DRAG DROP Refer to the exhibit. Drag and drop the networking parameters from the left onto the correct values on the right.
What does a router do when configured with the default DNS lookup settings, and a URL is entered on the CLI?
DRAG DROP Drag and drop the application protocols from the left onto the transport protocols that it uses on the right.
Which REST method updates an object in the Cisco DNA Center Intent API?
DRAG DROP Drag and drop the characteristics of network architectures from the left onto the type of architecture on the right.
DRAG DROP Drag and drop the TCP/IP protocols from the left onto their primary transmission protocols on the right.
DRAG DROP Drag and drop the TCP or UDP details from the left onto their corresponding protocols on the right.

Question 912 - 200-301 discussion

Report
Export

What is used to identify spurious DHCP servers?

A.

DHCPREQUEST

Answers
A.

DHCPREQUEST

B.

DHCPDISCOVER

Answers
B.

DHCPDISCOVER

C.

DHCPACK

Answers
C.

DHCPACK

D.

DHCPOFFER

Answers
D.

DHCPOFFER

Suggested answer: D

Explanation:

DHCPOFFER is used to identify spurious DHCP servers. A spurious DHCP server is any device that is configured to act as a DHCP server without the network administrator's knowledge or permission. A spurious DHCP server can cause network problems by assigning incorrect or duplicate IP addresses to clients, or by redirecting traffic to malicious gateways.To prevent such attacks, the DHCP snooping feature can be enabled on switches to filter out invalid or unauthorized DHCP messages from untrusted sources1.

DHCP snooping works by intercepting and validating DHCP messages on a per-VLAN basis.The switch maintains a DHCP snooping binding database that contains information about the trusted hosts with leased IP addresses, such as MAC address, IP address, lease time, binding type, VLAN number, and interface information2. The switch also classifies its ports as trusted or untrusted. Trusted ports are those that connect to authorized DHCP servers or other trusted switches. Untrusted ports are those that connect to untrusted hosts or devices.The switch only allows DHCP messages from trusted ports, and drops any DHCP messages from untrusted ports that do not match the information in the binding database3.

The switch uses DHCPOFFER messages to identify spurious DHCP servers. A DHCPOFFER message is a response from a DHCP server to a client's request for an IP address.The message contains the offered IP address, subnet mask, default gateway, and other configuration parameters for the client4. When the switch receives a DHCPOFFER message from an untrusted port, it compares the source MAC address and the offered IP address with the binding database. If there is no match, the switch considers the message as coming from a spurious DHCP server and drops it.The switch also logs an error message and increments a counter for the number of dropped messages5.

1: Configuring DHCP Snooping - Cisco

2: Catalyst 6500 Release 12.2SX Software Configuration Guide - DHCP Snooping Binding Database

3: What is DHCP Snooping? - IONOS

4: Dynamic Host Configuration Protocol (DHCP) and Bootstrap Protocol (BOOTP) Parameters

5: Configuring DHCP Snooping - Cisco

Show Answer
asked 07/10/2024
Vincent Meuldijk
38 questions
PreviousPreviousNextNext
User
Your answer:
0 comments
Sorted by

Leave a comment first

ExamGecko

Copyright @2023 ExamGecko | All right reserved

Mail us: [email protected]
About us
Contact us
Twitter X
Facebook
Medium
Convert VPLUS to PDF
Open VPLUS files Easily and Quickly
Privacy Policy
Disclaimer
Terms