A、防御改变CHADDR值的饿死攻击
B、防御DHCP仿冒者攻击
C、防御TCP flag攻击
D、防御中间人攻击和IP/MAC Spoofing攻击
更多“DHCP Snooping是一种DHCP安全特性,可以用于防御一些攻击,下列哪些是DHCP Snooping能够防御的攻击()。”相关的问题
A、DHCP Snooping绑定表分为动态绑定表和静态绑定表 B、DHCP Snooping区分信任端口和非信任端口,对非信任端口,不处理DHCP Reply报文 C、静态绑定表在报文入端口手工输入,也可以手工设置表项老化时间 D、在二层上应用DHCP Snooping时,不配置Option82功能也可以获得绑定表所需的接口信息
A、 DHCP snooping commands are not available until the feature is enabled with the feature dhcp- snooping command. B、 When you enable the DHCP snooping feature, the switch begins building and maintaining the DHCP snooping binding database. C、 The switch will not validate DHCP messages received or use the DHCP snooping binding database to validate subsequent requests from untrusted hosts until DHCP snooping is enabled globally and for each specific VLAN. D、 Globally disabling DHCP snooping removes all DHCP snooping configuration on the switch. E、 Globally disabling DHCP snooping does not remove any DHCP snooping configuration or the configuration of other features that are dependent upon the DHCP snooping feature.
A、 Configure the switch to insert and remove DHCP relay information (option-82 field) in forwarded DHCP request messages. B、 Configure DHCP snooping globally. C、 Configure the switch as a DHCP server. D、 Configure DHCP snooping on an interface. E、 Configure all interfaces as DHCP snooping trusted interfaces. F、 Configure DHCP snooping on a VLAN or range of VLANs.
A、配置Trusted/Untrusted接口 B、限制交换机接口上允许学习到的最多MAC地址数目 C、使用DHCP Snooping检查DHCP REQUEST报文中CHADDR字段的功能 D、在交换机上配置DHCP Snooping功能
A、DHCP协议多采用广播报文,如果出现多个子网则无法穿越。所以需要DHCP relay设备 B、DHCP relay一定是一台交换机或者路由器 C、DHCP relay设备可以是一台主机 D、DHCP relay不改变报文内容,报文原样转发
A、DHCP叫动态主机配置协议 B、DHCP是一套动态分配IP地址的TCP/IP标准 C、DHCP是一套静态分配IP地址的TCP/IP标准 D、DHCP服务可以集中指派网络中设备的TCP/IP参数
A、比较DHCP请求报文的(报文头里的)源MAC地址和(报文内用里的)DHCP客户机的硬件地址(即CHADDR字段)是否一致 B、将交换机端口划分为信任端口和非信任端口两类 C、限制端口被允许访问的MAC地址的最大条目 D、对端口的DHCP报文进行限速
客服
TOP
查看正确答案
