Which two statements about errdisable recovery are true? (Choose two.)
A. You can use the show errdisable recovery command to view the reason a port was error-disabled.
B. Errdisable detection is enabled by default on ports with port security enabled
C. You can use the show errdisable detect command to view the reason a port was error-disabled.
D. Errdisabled autorecovery is enabled by default.
E. Errdisabled detection is disabled by default on ports with port security enabled
Please have a look on below simulation:
A) TRUE but you have to prior enable the errdisable recovery
B) Partially TRUE because errdisable detection is enabled by default as per cisco documentation:
https://www.cisco.com/c/en/us/support/docs/lan-switching/spanning-tree-protocol/69980-errdisable-recovery.html
**Note: Error-disable detection is enabled for all of these reasons by default. In order to disable error-disable detection, use the no errdisable detect cause command. The show errdisable detect command displays the error-disable detection status.
C) FALSE The show errdisable detect command displays the error-disable detection status.
-Although cisco says: show errdisable detect—Displays the current settings of the errdisable timeout feature and, if any of the ports are currently error disabled, the reason that they are error disabled. Which i believe is wrong following to my simulation.
Switch# show interfaces Gi0/1
GigabitEthernet0/1 is down, line protocol is down (err-disabled)
Hardware is iGbE, address is fa16.3e62.e5a1 (bia fa16.3e62.e5a1)
========================================================
Switch#show errdisable recovery
ErrDisable Reason Timer Status
—————– ————–
arp-inspection Enabled
bpduguard Enabled
channel-misconfig (STP) Enabled
dhcp-rate-limit Enabled
dtp-flap Enabled
gbic-invalid Enabled
inline-power Enabled
l2ptguard Enabled
link-flap Enabled
mac-limit Enabled
link-monitor-failure Enabled
loopback Enabled
oam-remote-failure Enabled
pagp-flap Enabled
port-mode-failure Enabled
pppoe-ia-rate-limit Enabled
psecure-violation Enabled
security-violation Enabled
sfp-config-mismatch Enabled
storm-control Enabled
udld Enabled
unicast-flood Enabled
vmps Enabled
psp Enabled
dual-active-recovery Disabled
evc-lite input mapping fa Disabled
Recovery command: “clear Disabled
Timer interval: 300 seconds
Interfaces that will be enabled at the next timeout:
Interface Errdisable reason Time left(sec)
——— —————– ————–
Gi0/1 bpduguard 158
========================================================
Switch#show errdisable detect
ErrDisable Reason Detection Mode
—————– ——— —-
arp-inspection Enabled port
bpduguard Enabled port
channel-misconfig (STP) Enabled port
community-limit Enabled port
dhcp-rate-limit Enabled port
dtp-flap Enabled port
ekey Enabled port
gbic-invalid Enabled port
iif-reg-failure Enabled port
inline-power Enabled port
invalid-policy Enabled port
l2ptguard Enabled port
link-flap Enabled port
link-monitor-failure Enabled port
loopback Enabled port
lsgroup Enabled port
oam-remote-failure Enabled port
mac-limit Enabled port
pagp-flap Enabled port
port-mode-failure Enabled port
pppoe-ia-rate-limit Enabled port
psecure-violation Enabled port
security-violation Enabled port
sfp-config-mismatch Enabled port
sgacl_limitation:enforcem Enabled port
sgacl_limitation:multiple Enabled port
storm-control Enabled port
udld Enabled port
unicast-flood Enabled port
vmps Enabled port
psp Enabled port
dual-active-recovery Enabled port
evc-lite input mapping fa Enabled port
vsl-and-non-vsl-port-pair Enabled port
Recovery command: “clear Enabled port
fasthello-and-non-fasthel Enabled port
Correct Answer: AC
both commands show the error-disable status.
Maybe ВС?
Show errdisable detect—Shows the reason for the errdisable status