What protocol should be disabled to help mitigate VLAN attacks?
- STP
- CDP
- DTP
- ARP
Answers Explanation & Hints: Dynamic Trunking Protocol (DTP) is a Cisco proprietary protocol that is used to negotiate the trunking mode between two switches. DTP can automatically configure a trunk link between two switches, which can simplify network administration tasks. However, DTP can also be exploited by attackers to gain unauthorized access to other VLANs or the entire network by sending rogue DTP messages. Therefore, it is recommended to disable DTP on ports that do not require trunking, and configure the trunk mode manually using the “switchport mode” command instead.