Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Non-working interfaces

Hi,

If I have interfaces which are up but were left with no IP addresses; is there any risk for L2 attacks here if somebody got physically connected to any of them?

Regards,

Haitham

3 REPLIES
Community Member

Re: Non-working interfaces

First thing you should do is shut them down if your not using them. If for some reason you have to have them up, make sure the interface configurations are empty. No VLANS, no DHCP, etc.. Having said this brings up my first recommendation, shut the ports down.

Please rate if you are satisfied.

Cheers!

Community Member

Re: Non-working interfaces

Hi,

So, if you don't have DHCP or VLANs configured what attacks or issues you would be concerned of when not having the interfaces being shutdown?

Thanks,

Haitham

Community Member

Re: Non-working interfaces

Physical attacks (person plugging a PC into the port directly)

This is why you have the ports shutdown and even have them assigned to a null vlan.

123
Views
0
Helpful
3
Replies
CreatePlease to create content