Question 1mediummulti select
Full question →mediummulti selectObjective-mapped
Exhibit
interface FastEthernet0/10 switchport mode access switchport port-security switchport port-security maximum 2 switchport port-security mac-address sticky
A switch port was configured for sticky MAC learning. Which two statements accurately describe how the feature behaves?
Answer choices
Why each option matters
Good practice is not just finding the correct option. The wrong answers often show the exact trap the exam wants you to fall into.
A
Best answer
The switch can dynamically learn MAC addresses and add them to the running configuration as secure MAC addresses.
This is correct because sticky MAC learning lets the switch observe source MAC addresses arriving on the port and then record them as secure MAC entries. That gives the convenience of dynamic discovery with the control of port security.
B
Distractor review
Sticky learning removes the need to enable port security on the interface.
This is wrong because sticky learning is not a replacement for port security. It depends on port security already being active on the interface. Without port security, sticky learning would not function in the intended way.
C
Best answer
Saved sticky addresses can become part of the startup configuration if the running configuration is saved.
This is correct because sticky addresses first appear in the running configuration, and if the administrator saves the running configuration, those entries can become persistent after a reload.
D
Distractor review
Sticky learning automatically converts the interface into a trunk port.
This is wrong because sticky MAC learning has nothing to do with VLAN tagging or trunk negotiation. The interface remains an access port unless the switching mode is changed separately.
E
Distractor review
Sticky learning prevents the maximum secure MAC limit from being enforced.
This is wrong because the maximum secure MAC setting still applies. Sticky learning does not remove that cap. Additional learned addresses can still trigger a security violation.
Common exam trap
Common exam trap: answer the scenario, not the keyword
A common exam trap is assuming that sticky MAC learning replaces the need to enable port security or that it disables the maximum secure MAC address limit. Sticky learning is not a standalone security feature; it depends on port security being active on the interface. Additionally, some candidates mistakenly believe sticky learning converts the port into a trunk port, but it does not affect VLAN tagging or port mode. Misunderstanding these points can lead to incorrect answers about how sticky MAC learning behaves in Cisco switches.
Technical deep dive
How to think about this question
Sticky MAC learning is a feature within Cisco's port security framework that allows a switch port to dynamically learn MAC addresses from devices connected to it and then convert those addresses into secure MAC entries. These learned addresses are initially stored in the running configuration as 'sticky' entries, which means the switch remembers them as authorized devices for that port. This approach combines the flexibility of dynamic MAC address learning with the security benefits of port security by preventing unauthorized devices from connecting once the maximum secure MAC limit is reached. When sticky MAC learning is enabled on a switch port, the switch listens for source MAC addresses on incoming frames and adds them to the secure MAC address list dynamically. These addresses are not immediately permanent; they reside in the running configuration until the administrator saves the configuration to the startup configuration. This persistence ensures that after a reboot, the learned MAC addresses remain authorized, preventing the need to manually reconfigure them. Importantly, sticky learning requires port security to be enabled on the interface, as it is an extension of that feature rather than a standalone mechanism. A common exam trap is misunderstanding the scope and effect of sticky MAC learning. Candidates may incorrectly assume that sticky learning disables the maximum secure MAC address limit or automatically converts the port to a trunk, which it does not. Sticky learning strictly manages how MAC addresses are learned and stored under port security rules. It also does not replace port security but depends on it. Practically, sticky MAC learning simplifies network administration by automating secure MAC address entry, but network engineers must still configure port security parameters like maximum addresses and violation actions to maintain effective control.
KKey Concepts to Remember
- Sticky MAC learning enables a switch port to dynamically learn MAC addresses and add them as secure entries in the running configuration.
- The learned sticky MAC addresses become part of the startup configuration only after the running configuration is saved.
- Sticky MAC learning operates as a feature within port security and requires port security to be enabled on the interface.
- The maximum number of secure MAC addresses configured on a port still applies when sticky learning is enabled.
- Sticky MAC learning does not change the port type; the interface remains an access port unless manually reconfigured.
- Sticky MAC addresses help prevent unauthorized devices by restricting the port to known MAC addresses learned dynamically.
- Port security violation actions still apply when sticky MAC learning reaches the maximum secure MAC address limit.
- Sticky MAC learning reduces manual configuration effort by automatically populating secure MAC addresses based on device connections.
TExam Day Tips
- Watch for words such as best, first, most likely and least administrative effort.
- Review why wrong options are wrong, not only why the correct option is correct.
Related practice questions
Related 200-301 practice-question pages
Use these pages to review the topic behind this question. This is how one missed question becomes focused revision.
CCNA subnetting practice questions
Practise IPv4 subnetting, CIDR, masks, host ranges and subnet selection.
CCNA OSPF practice questions
Practise OSPF neighbours, router IDs, metrics, areas and routing-table interpretation.
CCNA VLAN practice questions
Practise VLANs, access ports, trunks, allowed VLANs and switching scenarios.
CCNA STP practice questions
Practise spanning tree, root bridge election, port roles and STP troubleshooting.
CCNA EtherChannel practice questions
Practise LACP, PAgP, port-channel behaviour and bundle requirements.
CCNA ACL practice questions
Practise standard and extended ACLs, permit/deny logic and traffic filtering.
CCNA NAT practice questions
Practise static NAT, dynamic NAT, PAT and inside/outside address translation.
CCNA DHCP practice questions
Practise DHCP scopes, relay, leases and troubleshooting.
CCNA show ip route practice questions
Practise routing-table output, longest-prefix match, AD and route selection.
CCNA show interfaces trunk practice questions
Practise trunk verification and VLAN forwarding across switches.
CCNA wireless security practice questions
Practise WLAN security, authentication and wireless architecture concepts.
CCNA IPv6 practice questions
Practise IPv6 addressing, routes, neighbour discovery and common IPv6 exam traps.
More questions from this exam
Keep practising from the same exam bank, or move into a focused topic page if this question exposed a weak area.
Question 1
A router learns the same prefix from both OSPF and EIGRP. Which route is installed by default?
Question 2
A router shows this output: R1#show ip ospf neighbor Neighbor ID Pri State Dead Time Address Interface 10.1.1.2 1 FULL/DR 00:00:34 192.168.12.2 GigabitEthernet0/0 10.1.1.3 1 2WAY/DROTHER 00:00:39 192.168.12.3 GigabitEthernet0/0 Which statement is correct?
Question 3
What is the OSPF metric called?
Question 4
A non-root switch has two uplinks toward the root bridge. One path has a lower total STP cost than the other. What role will the lower-cost uplink have?
Question 5
A router interface applies this ACL inbound: 10 deny tcp any any eq 80 20 permit ip any any A user reports that web browsing to a server by IP address fails, but ping works. Which statement best explains the behavior?
Question 6
A router learns route 198.51.100.0/24 from OSPF with AD 110 and also has a static route to the same prefix configured with AD 150. Which route is installed?
FAQ
Questions learners often ask
What does this 200-301 question test?
Sticky MAC learning enables a switch port to dynamically learn MAC addresses and add them as secure entries in the running configuration.
What is the correct answer to this question?
The correct answer is: The switch can dynamically learn MAC addresses and add them to the running configuration as secure MAC addresses. — Sticky MAC learning is Cisco’s way of letting a port learn device MAC addresses automatically, while still treating them as secure addresses under port security. In everyday language, it saves the administrator from typing each allowed MAC address by hand. As devices connect, the switch can learn their MAC addresses and place them into the running configuration as sticky secure MACs. If the administrator later saves the configuration, those learned entries can also be written into startup-config and survive a reboot. The feature does not replace port security; it works as part of port security. It also does not change the port into a trunk or disable the maximum address count. In the exhibit, the port is already limited to two secure MAC addresses, and sticky learning simply helps populate those allowed addresses dynamically. So the two correct ideas are dynamic secure learning and the ability to preserve those learned MACs by saving the configuration.
What should I do if I get this 200-301 question wrong?
Then try more questions from the same exam bank and focus on understanding why the wrong options are tempting.
Discussion
Loading comments…
Sign in to join the discussion.