What does switchport port-security primarily protect against on an access port?
Trap 1: OSPF route flapping
OSPF behavior is unrelated to host-facing switch port security.
Trap 2: DNS spoofing across the enterprise
Port security does not solve network-wide DNS threats.
Trap 3: Wireless rogue APs on every VLAN
Rogue AP detection is a different security control.
- A
Unauthorized MAC addresses appearing on the port
Correct. That is the main purpose of port security.
- B
OSPF route flapping
Why wrong: OSPF behavior is unrelated to host-facing switch port security.
- C
DNS spoofing across the enterprise
Why wrong: Port security does not solve network-wide DNS threats.
- D
Wireless rogue APs on every VLAN
Why wrong: Rogue AP detection is a different security control.