nerdexam
Exams300-415Questions#322
Cisco

300-415 · Question #322

300-415 Question #322: Real Exam Question with Answer & Explanation

The correct answer is B: 16 bits. The Security Group Tag (SGT) data, used for policy enforcement in Cisco TrustSec, is represented as a 16-bit value within the metadata header.

Security and Quality of Service

Question

What is the size of SGT data in the metadata header?

Options

  • A8 bits
  • B16 bits
  • C24 bits
  • D32 bits

Explanation

The Security Group Tag (SGT) data, used for policy enforcement in Cisco TrustSec, is represented as a 16-bit value within the metadata header.

Common mistakes.

  • A. An 8-bit SGT would only allow for 256 unique security groups, which is typically insufficient for complex enterprise segmentation needs.
  • C. A 24-bit SGT is not the standard size defined for Security Group Tags in Cisco TrustSec implementations.
  • D. A 32-bit SGT is not the standard size defined for Security Group Tags; while it would allow for a vast number of groups, it would also consume more overhead than necessary for its intended purpose.

Concept tested. TrustSec Security Group Tag (SGT) size

Reference. https://www.cisco.com/c/en/us/td/docs/switches/lan/trustsec/configuration/guide/trustsec/trustsec_spt_config.html

Topics

#SGT (Security Group Tag)#TrustSec#Metadata Header#Security Protocol

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 300-415 Practice