ExamTopics Logo
Mail Us[email protected]
Menu
Cisco Discussions
exam questions

Exam 300-430 All Questions

View all questions & answers for the 300-430 exam
Go to Exam

Exam 300-430 topic 1 question 2 discussion

Actual exam question from Cisco's 300-430
Question #: 2
Topic #: 1
[All 300-430 Questions]

An engineer must implement intrusion protection on the WLAN. The AP coverage is adequate and on-channel attacks are the primary concern. The building is historic, which makes adding APs difficult. Which AP mode and submode must be implemented?

  • A. AP mode: local, AP submode: none
  • B. AP mode: monitor, AP submode: WIPS
  • C. AP mode: monitor, AP submode: none
  • D. AP mode: local, AP submode: WIPS
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by kthekillerc at Oct. 4, 2021, 1:30 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
55f2ace
1 week ago
Selected Answer: A
This is on the Guide Chapter 14. aWIPS can work but is inefficient in this case, and attack detection may be slow. However, if you are primarily concerned about on-channel attacks (that is, incidents where attackers attempt to spoof your APs, act as relays, or perform other attacks while operating on the same channels as your active APs), then this mode is perfectly sufficient.
upvoted 1 times
...
GoldLeader
9 months, 2 weeks ago
Selected Answer: D
Both B and D would enable Intrusion protection. However, D is the best answer because the question states that the building is historic and adding APs is difficult. Therefore you would not want to switch existing client serving local access points to monitor mode as this would create coverage holes not easily filled by adding coverage. D keeps the access point client serving as well as implementing intrusion protection.
upvoted 1 times
...
anagy11
10 months ago
Selected Answer: B
B is correct
upvoted 1 times
anagy11
10 months ago
Wrong, D is the correct
upvoted 1 times
...
...
Tonymopar
10 months, 4 weeks ago
B is correct
upvoted 1 times
...
Vlad_Is_Love_ua
12 months ago
Selected Answer: D
https://www.cisco.com/c/en/us/td/docs/wireless/technology/wips/deployment/guide/WiPS_deployment_guide.html On-Channel vs. Off-Channel Scanning per wIPS Mode The figure below explains the radio’s behavior. When a radio is on its serving channel it is considered “on-channel”, when the radio is scanning other channels, it is considered “off-channel”. An AP in local mode is mostly “on-channel”, making it difficult to detect attackers “off-channel”. A monitor mode AP is always “off-channel”, but cannot server clients, the WSM module provides a great combination of both.
upvoted 3 times
...
Bergin_a
1 year ago
B is coreect
upvoted 2 times
...
Citizenx
1 year, 12 months ago
correct, the on-channel says no need to scan other channels.
upvoted 3 times
...
kthekillerc
2 years, 6 months ago
provided answer is correct
upvoted 3 times
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago