?
Solved

Cisco switchport port-security

Posted on 2014-09-09
4
Medium Priority
?
350 Views
Last Modified: 2014-09-11
For the catalyst switch, what do the following commands do?

int fa0/3

...

switchport port-security

switchport port-security violation restrict

...

spannig-tree bpduguard enable

spanning-tree portfast

Thanks
0
Comment
Question by:leblanc
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 
LVL 12

Accepted Solution

by:
Bryant Schaper earned 2000 total points
ID: 40312586
switchport port-security - mac security at the port, only mac listed have access
switchport port-security violation restrict - one of the violiation methods of port-security, restrict is an admin notification in the log
spannig-tree bpduguard enable - BPDU Guard is designed to protect your switching network. Remember that a Port-fast port is designed to be connected to a device where BPDU’s aren’t expected. This could be a end user device, server or access-point.  When an unexpected BPDU is detected (an end-user wants to plug in a switch in his cubicle) the port will shutdown and enter a err-disable state.
spanning-tree portfast - for access ports, Portfast minimizes the time it takes for the server or workstation to come online
0
 
LVL 1

Author Comment

by:leblanc
ID: 40312594
If my fa0/3 is a trunk, do I need those commands there?
0
 
LVL 12

Assisted Solution

by:Bryant Schaper
Bryant Schaper earned 2000 total points
ID: 40312607
I would not use any of those commands, actually they will cause more problems, loopbacks, and also the security could shutdown the port.  I would only use them on access ports.
0
 
LVL 12

Assisted Solution

by:Bryant Schaper
Bryant Schaper earned 2000 total points
ID: 40312609
Spanning tree portfast would cause a loopback

bpduguard would shutdown the port if it senses another switch via bpdu packets
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Read about achieving the basic levels of HRIS security in the workplace.
Examines three attack vectors, specifically, the different types of malware used in malicious attacks, web application attacks, and finally, network based attacks.  Concludes by examining the means of securing and protecting critical systems and inf…
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
We’ve all felt that sense of false security before—locking down external access to a database or component and feeling like we’ve done all we need to do to secure company data. But that feeling is fleeting. Attacks these days can happen in many w…
Suggested Courses

719 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question