[AusNOG] Cisco edge switch config in a hostile environment
Peter Tonoli
peter at medstv.unimelb.edu.au
Tue Apr 30 12:13:56 EST 2013
Hi James,
One option to look at is 'port protected'.
I'd also enable dhcp snooping, as well as 'storm-control broadcast level 1', and also consider 'switchport block multicast'.
YMMV,
Peter.
----- Original Message -----
> From: "James Mcintosh" <james.mcintosh at rocketmail.com>
> To: ausnog at lists.ausnog.net
> Sent: Tuesday, 30 April, 2013 11:58:07 AM
> Subject: [AusNOG] Cisco edge switch config in a hostile environment
> Hi Noggers,
>
> Just wondering if anyone has some sample Cisco edge switch configs
> they'd be willing to share (for 2960 or similar) for deployment in a
> potentially hostile network environment (e.g. school or hotel) where
> multiple unrelated customers would be connecting up for the sole
> purpose of Internet access.
>
>
> -James
>
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
--
Peter Tonoli < peter at medstv.unimelb.edu.au > +61-3-9288-2399
IT Manager
The University of Melbourne - Eastern Hill Academic Centre, St. Vincent's Institute and O'Brien Institute
More information about the AusNOG
mailing list