CCNA: Cisco Certified Network Associate — Question 1223

What are two recommendations for protecting network ports from being exploited when located in an office space outside of an IT closet? (Choose two.)

Answer options

• A. enable the PortFast feature on ports
• B. configure static ARP entries
• C. configure ports to a fixed speed
• D. implement port-based authentication
• E. shut down unused ports

Correct answer: D, E

Explanation

Implementing port-based authentication (D) ensures that only authorized devices can connect to the network, thus reducing the risk of exploitation. Shutting down unused ports (E) minimizes potential entry points for attacks, while the other options do not directly address the security of open ports in an office setting.