Which configuration provides dynamic ARP inspection on access port ge-0/0/0?

The configuration that provides dynamic ARP inspection on access port ge-0/0/0 is characterized by the inclusion of the "dynamic-arp-inspection" command within the appropriate context for the VLAN. This function is essential as it helps to protect the network from ARP spoofing attacks by validating ARP packets against trusted parameters.

In the correct configuration, designating the port as "dhcp-trusted" implies that DHCP packets can be received from this interface while recognizing that dynamic ARP inspection applies to that VLAN. By using "arp-inspection" in conjunction with the VLAN context, it indicates that ARP packets will be inspected for validity, ensuring that only legitimate ARP requests and replies are processed.

The context of enabling "dynamic-arp-inspection" alongside "examine-dhcp" means that the ARP request will be examined based on dynamic ARP entries learned from DHCP, which is essential for environments using dynamic IP addressing. This configuration effectively combines ARP inspection with DHCP trust to provide a secure and responsive network environment on the specified access port.

The other options either fail to include the necessary dynamic ARP inspection command in the correct context or misuse the settings related to DHCP trust status, leading to incomplete or ineffective configurations concerning AR