350-701 · Question #269
350-701 Question #269: Real Exam Question with Answer & Explanation
The correct answer is A: Set a trusted interface for the DHCP server. You can't add entries to DHCP snooping database. It's wrong answer. The only case when you create mapping of IP to MAC and VLAN and port is configuring "ip source guard" but it is not the same as DHCP snooping. Unless you explicitly configure a rate limit on an interface, changin
Question
An administrator is configuring a DHCP server to better secure their environment. They need to be able to rate-limit the traffic and ensure that legitimate requests are not dropped. How would this be accomplished?
Options
- ASet a trusted interface for the DHCP server
- BSet the DHCP snooping bit to 1
- CAdd entries in the DHCP snooping database
- DEnable ARP inspection for the required VLAN
Explanation
You can't add entries to DHCP snooping database. It's wrong answer. The only case when you create mapping of IP to MAC and VLAN and port is configuring "ip source guard" but it is not the same as DHCP snooping. Unless you explicitly configure a rate limit on an interface, changing the trust state of the interface also changes its rate limit to the default value for that trust state. After you configure the rate limit, the interface retains the rate limit even when its trust state is changed td/docs/switches/lan/catalyst4500/XE35- 0XO/configuration/guide/dhcp.fm/jcr:content/renditions/config_dhcp.html.xml
Topics
Community Discussion
No community discussion yet for this question.