In networks today, you deal with a number of advanced threats, and that's why next-generation technologies are so popular. However, while many people spend a great deal of time and money using them to secure against these threats, it's easy to overlook the infrastructure and local area network. In this course, Layer 2 Security for CCNA Security (210-260) IINS, you'll learn all you need to know about the subset of the 210-260 CCNA Security exam. First, you'll learn about the threats seen at Layer 2. Next, you'll learn common mitigation techniques that are known for Layer 2. Finally, you'll see demonstrations of these techniques and how they are configured and tested. By the end of this course, you'll have a better understanding of how to secure your network infrastructure.
VLAN, DHCP, and ARP Security And welcome back. This is VLAN, DHCP, and ARP Security, and we've got a lot in store for us in this module. We're going to start out with an overview of the Spanning Tree Protocol, and we're going to talk about some Spanning Tree attacks. And we'll talk about how we can mitigate those attacks with something called PortFast and how that's used. We'll also talk about how we can use BPDU Guard, as well as Root Guard in our attack mitigation, and that will help us protect Spanning Tree. We're also going to get into some DHCP attacks and talk about ARP attacks. And we're going to jump into the network over at Game On, and we'll secure Spanning Tree for them, and we will set up DHCP snooping and dynamic ARP inspection, or what we would call DAI. Okay, so, that's what we have in store for us. Let's go ahead and start out with Spanning Tree and what loops do in a network.