MAC Move Limiting:
MAC move limiting is a security feature used in network switches to detect and mitigate rapid
changes in MAC address locations, which could indicate a network issue or an attack such as MAC
flapping or spoofing.
When a MAC address is learned on a different interface than it was previously learned, the switch
can take various actions to prevent potential issues.
Available Actions:
A . drop: This action drops packets from the MAC address if it violates the move limit, effectively
blocking communication from the offending MAC address.
D . log: This action logs the MAC move event without disrupting traffic, allowing network
administrators to monitor and investigate the event.
E . shutdown: This action shuts down the interface on which the MAC address violation occurred,
effectively stopping all traffic on that interface to prevent further issues.
Other Actions (Not Correct):
B . filter: Filtering is not typically associated with MAC move limiting; it generally refers to applying
ACLs or other mechanisms to filter traffic.
C . enable: This is not an action related to MAC move limiting, as it does not represent a specific
reaction to a MAC move event.
Data Center Reference:
MAC move limiting is crucial for maintaining network stability and security, particularly in
environments with dynamic or large-scale Layer 2 networks where MAC addresses might frequently
change locations.
