Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1696
Views
0
Helpful
5
Replies

Security guidelines in switches.

Go to solution
Gonzalo Casas Perez
Level 1
Level 1

‎01-11-2010 06:57 AM - edited ‎02-21-2020 03:50 AM

Hello to everybody.

This is my first post and I don´t know if it is the right place.

I would like to know what are the security guidelines that you set up in your switched lan, I mean, do you block unused ports? do you use 802.1x with RADIUS? do you disable telnet and http access?

What are the security guidelines that you use in your company or clients?

Thanks in advance.

0 Helpful
3 Accepted Solutions

Accepted Solutions

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame

‎01-11-2010 02:06 PM

Our network uses the following:

AAA;
ACS logon to network equipments;
SSH;
HTTP/HTTPS with access list

Depending on the size of your LAN, anyone whoever says that "unused ports should be shutdown" should be shot or given a labotomy.  I have more than 300 LAN switches.  Do you know the calls I'll be getting every hour just to get ports enabled or disabled?   It would make me and my team very un-popular very fast.

Configuring Auto Smartports Macros
http://www.cisco.com/en/US/docs/switches/lan/catalyst3750e_3560e/software/release/12.2_50_se/configuration/guide/swmacro.html

View solution in original post

0 Helpful

Go to solution
Ganesh Hariharan
VIP Alumni
VIP Alumni

‎01-12-2010 03:28 AM

Hi,

Check out the best practices and standard guideline for hardening of cisco devices,hopw this helps out your query !!

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080120f48.shtml

Regards

Ganesh.H

View solution in original post

0 Helpful

Go to solution
Ganesh Hariharan
VIP Alumni
VIP Alumni
In response to Gonzalo Casas Perez

‎01-12-2010 03:56 AM

Really great it had helped you.If it had really helped just mark this thread as resolved so that other user will benifitted.

Regards

Ganesh.H

View solution in original post

0 Helpful
5 Replies 5

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame

‎01-11-2010 02:06 PM

Our network uses the following:

AAA;
ACS logon to network equipments;
SSH;
HTTP/HTTPS with access list

Depending on the size of your LAN, anyone whoever says that "unused ports should be shutdown" should be shot or given a labotomy.  I have more than 300 LAN switches.  Do you know the calls I'll be getting every hour just to get ports enabled or disabled?   It would make me and my team very un-popular very fast.

Configuring Auto Smartports Macros
http://www.cisco.com/en/US/docs/switches/lan/catalyst3750e_3560e/software/release/12.2_50_se/configuration/guide/swmacro.html

0 Helpful

Go to solution
Gonzalo Casas Perez
Level 1
Level 1
In response to Leo Laohoo

‎01-12-2010 03:47 AM

Thanks for your help, my network has about 100 LAN switches.

Regards.

0 Helpful

Go to solution
Ganesh Hariharan
VIP Alumni
VIP Alumni

‎01-12-2010 03:28 AM

Hi,

Check out the best practices and standard guideline for hardening of cisco devices,hopw this helps out your query !!

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080120f48.shtml

Regards

Ganesh.H

0 Helpful

Go to solution
Gonzalo Casas Perez
Level 1
Level 1
In response to Ganesh Hariharan

‎01-12-2010 03:48 AM

Thanks for your help, this document is what I´m looking for.

Regards.

0 Helpful

Go to solution
Ganesh Hariharan
VIP Alumni
VIP Alumni
In response to Gonzalo Casas Perez

‎01-12-2010 03:56 AM

Really great it had helped you.If it had really helped just mark this thread as resolved so that other user will benifitted.

Regards

Ganesh.H

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card