CCNA: Cisco Certified Network Associate — Question 317

A port security violation has occurred on a switch port due to the maximum MAC address count being exceeded. Which command must be configured to increment the security-violation count and forward an SNMP trap?

Answer options

• A. switchport port-security violation access
• B. switchport port-security violation protect
• C. switchport port-security violation restrict
• D. switchport port-security violation shutdown

Correct answer: C

Explanation

The correct answer is C, as the 'restrict' option allows the port to drop packets from unknown MAC addresses while incrementing the violation count and sending SNMP traps. The other options either do not increment the violation count or have different behaviors that do not fulfill the requirement of sending an SNMP trap.