[AusNOG] Cisco edge switch config in a hostile environment

Dobbins, Roland rdobbins at arbor.net
Tue Apr 30 12:32:02 EST 2013


On Apr 30, 2013, at 9:13 AM, Peter Tonoli wrote:

> I'd also enable dhcp snooping, as well as 'storm-control broadcast level 1', and also consider 'switchport block multicast'.

Ensure spantree portfast is enabled on all access ports, along with Root Guard and BPDU-Guard.

-----------------------------------------------------------------------
Roland Dobbins <rdobbins at arbor.net> // <http://www.arbornetworks.com>

	  Luck is the residue of opportunity and design.

		       -- John Milton




More information about the AusNOG mailing list