A network administrator has enabled Dynamic ARP Inspection (DAI) on a switch to mitigate ARP spoofing attacks. For DAI to function correctly and validate ARP packets on untrusted ports in a DHCP environment, which of the following components is essential?
The DHCP snooping binding table
The upstream router's routing table
A static ARP access control list (ACL)
The switch's Content-Addressable Memory (CAM) table
Dynamic ARP Inspection (DAI) relies on the DHCP snooping binding table to validate the binding between a host's MAC address and its assigned IP address. When an ARP packet arrives on an untrusted port, DAI intercepts it and checks against the MAC-to-IP mappings in the DHCP snooping table. If no valid binding exists, the ARP packet is dropped. The CAM table is used for Layer 2 forwarding decisions based on MAC addresses and ports. While static ARP ACLs can be used with DAI, they are typically for non-DHCP environments. The routing table is a Layer 3 construct used for forwarding IP packets between networks.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the purpose of the DHCP snooping binding table?
Open an interactive chat with Bash
How does Dynamic ARP Inspection (DAI) validate ARP packets?
Open an interactive chat with Bash
Why are static ARP ACLs less commonly used with DAI in DHCP environments?
Open an interactive chat with Bash
Cisco CCNA 200-301
Security Fundamentals
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .