[AusNOG] Cisco edge switch config in a hostile environment
Russell Langton
russell3901 at gmail.com
Tue Apr 30 13:16:37 EST 2013
Hi James,
I would also suggest that the device is clearly labeled as equipment of
Companyx and a number to call for support.
Most people have already mentioned the configuration I would be looking at.
Also, Depending on the switch type, If the device has a 'mode' button,
Ensure that you disable setup express.
Otherwise the kids will press the mode button for fun, wiping the
configuration ;)
On Tue, Apr 30, 2013 at 12:13 PM, Peter Tonoli
<peter at medstv.unimelb.edu.au>wrote:
> Hi James,
>
> One option to look at is 'port protected'.
>
> I'd also enable dhcp snooping, as well as 'storm-control broadcast level
> 1', and also consider 'switchport block multicast'.
>
> YMMV,
> Peter.
>
> ----- Original Message -----
> > From: "James Mcintosh" <james.mcintosh at rocketmail.com>
> > To: ausnog at lists.ausnog.net
> > Sent: Tuesday, 30 April, 2013 11:58:07 AM
> > Subject: [AusNOG] Cisco edge switch config in a hostile environment
> > Hi Noggers,
> >
> > Just wondering if anyone has some sample Cisco edge switch configs
> > they'd be willing to share (for 2960 or similar) for deployment in a
> > potentially hostile network environment (e.g. school or hotel) where
> > multiple unrelated customers would be connecting up for the sole
> > purpose of Internet access.
> >
> >
> > -James
> >
> > _______________________________________________
> > AusNOG mailing list
> > AusNOG at lists.ausnog.net
> > http://lists.ausnog.net/mailman/listinfo/ausnog
>
> --
> Peter Tonoli < peter at medstv.unimelb.edu.au > +61-3-9288-2399
> IT Manager
> The University of Melbourne - Eastern Hill Academic Centre, St. Vincent's
> Institute and O'Brien Institute
> _______________________________________________
> AusNOG mailing list
> AusNOG at lists.ausnog.net
> http://lists.ausnog.net/mailman/listinfo/ausnog
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.ausnog.net/pipermail/ausnog/attachments/20130430/dfd27783/attachment.html>
More information about the AusNOG
mailing list