What is the purpose of configuring root protection?

The purpose of configuring root protection is to safeguard the network from unauthorized or unintended changes to the spanning tree topology. When root protection is enabled on a switch port that faces other switches, it ensures that if a rogue switch or a misconfigured device attempts to become the root bridge by sending Bridge Protocol Data Units (BPDUs), the port will transition into an error-disabled state. This action prevents the rogue device from taking control of the network’s spanning tree and helps to maintain the stability and integrity of the network.

Root protection specifically targets and mitigates the risks associated with topology changes that could destabilize the network, which aligns with the understanding of how critical the root bridge is in a spanning tree protocol (STP) environment. By prioritizing the existing root bridge and restricting electing a new one unless certain conditions are met, root protection effectively preserves the intended network architecture and prevents disruptions from unauthorized devices or configurations.

Other options do not accurately describe the primary function of root protection. For instance, while preventing broadcast storms is a crucial concern in network design, root protection specifically aims to control who can become the root bridge rather than directly addressing storm issues.