Port access security control on cisco switch 2950

Unanswered Question
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Giuseppe Larosa Mon, 08/24/2009 - 00:35
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    Founding Member

hello Swee,

if out port fas0/20 there is a remote site it may be legitimate to see multiple MAC addresses on the port and several source ip addresses.


So you need to be careful or the switch can react to legitimate users.


Port security works at OSI layer2 trying to distinguish between legitimate MAC addresses and not legitimate MAC addresses.




Hope to help

Giuseppe


ktwaddell Mon, 08/24/2009 - 01:18
User Badges:

Hi


I would not put port security on a uplink, port security should be on the access ports only and therefore removing the need to place it on a uplink.


Hope this helps

Kev

Actions

This Discussion