Cisco
400-007 · Question #13
400-007 Question #13: Real Exam Question with Answer & Explanation
The correct answer is A: Control Plane Protection host subinterface. Cisco Control Plane Protection uses subinterfaces to classify control plane traffic, and the host subinterface specifically handles traffic destined directly to the router's own IP addresses.
Question
The Company XYZ network is experiencing attacks against their router. Which type of Control Plane Protection must be used on the router to protect all control plane IP traffic that is destined directly for one of the router interfaces?
Options
- AControl Plane Protection host subinterface
- BControl Plane Protection main interface
- CControl Plane Protection transit subinterface
- DControl Plane Protection CEF-exception subinterface
Explanation
Cisco Control Plane Protection uses subinterfaces to classify control plane traffic, and the host subinterface specifically handles traffic destined directly to the router's own IP addresses.
Common mistakes.
- B. The main interface applies a policy to all aggregated control plane traffic before subinterface classification is performed and is not specific to traffic destined to the router's own interfaces.
- C. The transit subinterface handles traffic that is being software-switched through the router but is not destined for the router itself, which is the opposite of the scenario described.
- D. The CEF-exception subinterface handles packets that cannot be processed by Cisco Express Forwarding such as ARP, ICMP redirects, or IP options packets, not traffic directed at router interfaces.
Concept tested. Control Plane Protection host subinterface traffic classification
Community Discussion
No community discussion yet for this question.