CCNA: Cisco Certified Network Associate — Question 470

How are VLAN hopping attacks mitigated?

Answer options

• A. manually implement trunk ports and disable DTP
• B. configure extended VLANs
• C. activate all ports and place in the default VLAN
• D. enable dynamic ARP inspection

Correct answer: A

Explanation

The correct answer is A because manually configuring trunk ports and disabling Dynamic Trunking Protocol (DTP) helps to prevent unauthorized VLAN access. Options B and C do not effectively address VLAN hopping vulnerabilities, and option D, while a useful security feature, is not directly related to mitigating VLAN hopping attacks.