The recommended approach is to move every unused port into an unused (parking) VLAN that does not traverse any trunk links and then administratively shut the port. This prevents a rogue device from gaining access via default VLAN 1, which carries control protocols such as CDP, STP, VTP, and others. Leaving the port in VLAN 1, making it a dynamic trunk, or enabling PortFast on VLAN 1 all expose the network to potential attacks or misconfigurations.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a 'parking VLAN' and why is it important for unused switch ports?
Open an interactive chat with Bash
Why should unused ports be shut down administratively?
Open an interactive chat with Bash
What are the risks of leaving unused ports in VLAN 1?
Open an interactive chat with Bash
Cisco CCNA 200-301
Network Access
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .