It may become necessary in your deployment to configure your MS switches for compatibility with another vendor's core or distribution layer switches.In order to ensure that Spanning Tree is properly configured, it is important to understand the following terms and concepts: Standard Data/Vo IP deployments commonly utilize a three port switch built in to the Vo IP phone to connect a workstation and phone to the same switch port.
Port isolation allows a network administrator to prevent traffic from being sent between specific ports.
If you plan to use VLANs to enforce network security, disable the native VLAN feature for all switches unless you have a compelling reason to operate some of your VLANs in native mode.
If you must use native VLAN, see your switch vendor’s configuration guidelines for this feature.
Vulnerability to this type of attack usually results from a switch being misconfigured for native VLAN operation, in which the switch can receive and transmit untagged packets.
To help prevent VLAN hopping, keep your equipment up to date by installing hardware and firmware updates as they become available.
For these deployments the MS Access Switch should be configured with Voice VLANs and Qo S (Quality of Service) to separate voice traffic into its own broadcast domain and tag it for optimal transfer and prioritization.