How do I restrict helpdesk or users from plugging hub or switch on the network.
If Hub/Switch is connected to the switchport then port turn down or disable.
What are other security recommendation for User_switch and BackBone Switch.
Genrally BPDU guard and root guard are similar, but their impact is different. BPDU guard disables the port upon BPDU reception if PortFast is enabled on the port. The disablement effectively denies devices behind such ports from participation in STP. You must manually reenable the port that is put into errdisable state or configure errdisable-timeout.
Hope that clear out your query !!
If helpful do rate the valuable post.