Security guidelines in switches.

Answered Question
Jan 11th, 2010
User Badges:

Hello to everybody.


This is my first post and I don´t know if it is the right place.


I would like to know what are the security guidelines that you set up in your switched lan, I mean, do you block unused ports? do you use 802.1x with RADIUS? do you disable telnet and http access?


What are the security guidelines that you use in your company or clients?


Thanks in advance.

Correct Answer by Ganesh Hariharan about 7 years 6 months ago

Really great it had helped you.If it had really helped just mark this thread as resolved so that other user will benifitted.


Regards

Ganesh.H

Correct Answer by Ganesh Hariharan about 7 years 6 months ago

Hi,


Check out the best practices and standard guideline for hardening of cisco devices,hopw this helps out your query !!


http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080120f48.shtml


Regards

Ganesh.H

Correct Answer by Leo Laohoo about 7 years 6 months ago

Our network uses the following:


AAA;
ACS logon to network equipments;
SSH;
HTTP/HTTPS with access list


Depending on the size of your LAN, anyone whoever says that "unused ports should be shutdown" should be shot or given a labotomy.  I have more than 300 LAN switches.  Do you know the calls I'll be getting every hour just to get ports enabled or disabled?   It would make me and my team very un-popular very fast.


Configuring Auto Smartports Macros
http://www.cisco.com/en/US/docs/switches/lan/catalyst3750e_3560e/software/release/12.2_50_se/configuration/guide/swmacro.html

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (3 ratings)
Loading.
Correct Answer
Leo Laohoo Mon, 01/11/2010 - 14:06
User Badges:
  • Super Gold, 25000 points or more
  • Hall of Fame,

    The Hall of Fame designation is a lifetime achievement award based on significant overall achievements in the community. 

  • Cisco Designated VIP,

    2017 LAN, Wireless

Our network uses the following:


AAA;
ACS logon to network equipments;
SSH;
HTTP/HTTPS with access list


Depending on the size of your LAN, anyone whoever says that "unused ports should be shutdown" should be shot or given a labotomy.  I have more than 300 LAN switches.  Do you know the calls I'll be getting every hour just to get ports enabled or disabled?   It would make me and my team very un-popular very fast.


Configuring Auto Smartports Macros
http://www.cisco.com/en/US/docs/switches/lan/catalyst3750e_3560e/software/release/12.2_50_se/configuration/guide/swmacro.html

Correct Answer
Ganesh Hariharan Tue, 01/12/2010 - 03:56
User Badges:
  • Purple, 4500 points or more
  • Community Spotlight Award,

    Member's Choice, February 2016

Really great it had helped you.If it had really helped just mark this thread as resolved so that other user will benifitted.


Regards

Ganesh.H

Actions

This Discussion