Cisco CCNA mock exam questions sample test – Question 319

.Which statement is TRUE regarding the switchport protected interface configuration command and its effects?

A. The command is used to configure private VLAN edge ports.
B. The command enables the highest level switch port security.
C. All the traffic through protected port should go via a Layer 2 device such as switch.
D. A protected port can directly communicate with any other port on the same switch.

Correct Answer: A

Explanation:
The switchport protected interface configuration command is used to configure private VLAN edge ports on a Cisco Catalyst 2950 switch. A VLAN edge port is another name given to
a protected port. Protected ports do not forward any traffic to other protected ports on the same switch. All traffic passing between protected ports on the same switch must be routed
through a Layer 3 device. Protected ports have no restrictions on forwarding to non-protected ports, and they forward as usual to all ports on other switches
Following are the steps to configure a switch port as a protected port:
1. configure terminal
2. interface interface-id
3. switchport protected
4. end
Use the show interfaces switchport command to verify that the protected port is enabled.
It is incorrect to state that the command enables the highest level of switch port security. It places no additional restrictions on the port other than preventing it from directly forwarding
from one protected port to another.
It is incorrect to state that all traffic through protected port should go via a Layer 2 device such as a switch. Traffic through the protected port should go via a Layer 3 device, such as a
router.
It is incorrect to state that a protected port can directly communicate with any other port on the same switch. A protected port cannot directly communicate with another protected port
on the same switch.
Objective:
Infrastructure Security
Sub-Objective:
Configure, verify, and troubleshoot port security
References:
Cisco > Catalyst 2960 Switch Command Reference, 12.2(44)SE > Catalyst 2960 Switch Cisco IOS Commands – shutdown through vtp > switchport protected