Security guidelines in switches.

Answered Question
Jan 11th, 2010

Hello to everybody.

This is my first post and I don´t know if it is the right place.

I would like to know what are the security guidelines that you set up in your switched lan, I mean, do you block unused ports? do you use 802.1x with RADIUS? do you disable telnet and http access?

What are the security guidelines that you use in your company or clients?

Thanks in advance.

I have this problem too.
0 votes
Correct Answer by Ganesh Hariharan about 6 years 10 months ago

Really great it had helped you.If it had really helped just mark this thread as resolved so that other user will benifitted.

Regards

Ganesh.H

Correct Answer by Ganesh Hariharan about 6 years 10 months ago

Hi,

Check out the best practices and standard guideline for hardening of cisco devices,hopw this helps out your query !!

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080120f48.shtml

Regards

Ganesh.H

Correct Answer by Leo Laohoo about 6 years 10 months ago

Our network uses the following:

AAA;
ACS logon to network equipments;
SSH;
HTTP/HTTPS with access list

Depending on the size of your LAN, anyone whoever says that "unused ports should be shutdown" should be shot or given a labotomy.  I have more than 300 LAN switches.  Do you know the calls I'll be getting every hour just to get ports enabled or disabled?   It would make me and my team very un-popular very fast.

Configuring Auto Smartports Macros
http://www.cisco.com/en/US/docs/switches/lan/catalyst3750e_3560e/software/release/12.2_50_se/configuration/guide/swmacro.html

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (3 ratings)
Loading.
Correct Answer
Leo Laohoo Mon, 01/11/2010 - 14:06

Our network uses the following:

AAA;
ACS logon to network equipments;
SSH;
HTTP/HTTPS with access list

Depending on the size of your LAN, anyone whoever says that "unused ports should be shutdown" should be shot or given a labotomy.  I have more than 300 LAN switches.  Do you know the calls I'll be getting every hour just to get ports enabled or disabled?   It would make me and my team very un-popular very fast.

Configuring Auto Smartports Macros
http://www.cisco.com/en/US/docs/switches/lan/catalyst3750e_3560e/software/release/12.2_50_se/configuration/guide/swmacro.html

Correct Answer
Ganesh Hariharan Tue, 01/12/2010 - 03:56

Really great it had helped you.If it had really helped just mark this thread as resolved so that other user will benifitted.

Regards

Ganesh.H

Actions

This Discussion

Related Content