What is the best way to prevent a VLAN hopping attack?

  • Post author:
  • Post category:Uncategorized
  • Post comments:0 Comments
  • Post last modified:October 29, 2020
  • Reading time:1 mins read

Last Updated on October 29, 2020 by Admin

What is the best way to prevent a VLAN hopping attack?

  • Disable STP on all nontrunk ports.
  • Use ISL encapsulation on all trunk links.
  • Use VLAN 1 as the native VLAN on trunk ports.
  • Disable trunk negotiation for trunk ports and statically set nontrunk ports as access ports.
    Answers Explanation & Hints:

    VLAN hopping attacks rely on the attacker being able to create a trunk link with a switch. Disabling DTP and configuring user-facing ports as static access ports can help prevent these types of attacks. Disabling the Spanning Tree Protocol (STP) will not eliminate VLAN hopping attacks.

For more question and answers:

Click Here CCNA 2 SRWE v7 – SRWE Practice Final Exam Answers Full 100%

0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments