Solved

Voip switchport security regarding port-security

Posted on 2008-06-18
4
1,065 Views
Last Modified: 2010-05-18
We are getting ready to roll out VoIP using all Cisco equipment. Some office only have 1 data run. We currently use Port-Security to prevent unauthorized devices. Since we will have seperate voice and data vlans, we would have to trunk on that port. Port security is not applicable for trunk ports. We are not ready to roll out 802.1x port authentication. are there any options on the phones to restrict what PCs can be plugged into it's switchports?

Thanks!
0
Comment
Question by:applesmash
  • 2
  • 2
4 Comments
 
LVL 22

Expert Comment

by:Reid Palmeira
ID: 21819684
depends on the phones and firmware you're running on them. The vast majority will not though. the 802.1x authentication is your best bet. what equipment are you using? switches and phones.
0
 
LVL 1

Author Comment

by:applesmash
ID: 21820505
3750 PoE and 7940s, nothing fancy on the phones.

I did find this on cisco's site and it mentions port security over trunk ports. Didn't know I could do that...

http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/25sg/configuration/guide/port_sec.pdf

I realize that doc is for a 4500. It should work for 3750s with latest IOS also?
0
 
LVL 22

Accepted Solution

by:
Reid Palmeira earned 350 total points
ID: 21827119
you should be okay with the 3750 switches. don't worry about the phones controlling it at that point, do it on the switch. Setup the trunk port, voice vlan, etc. then the port security and violation setup.

see: http://www.cisco.com/en/US/docs/switches/lan/catalyst3750/software/release/12.2_35_se/configuration/guide/swtrafc.html

0
 
LVL 1

Author Closing Comment

by:applesmash
ID: 31468425
That about covers it. Thanks for your help!
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Even if you have implemented a Mobile Device Management solution company wide, it is a good idea to make sure you are taking into account all of the major risks to your electronic protected health information (ePHI).
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

760 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

22 Experts available now in Live!

Get 1:1 Help Now