I have about 185 or so 3750's all runing 12.2(50) IOS. I was hoping someone here could help. We are very big on Layer 2 security and are in the process of implementing 802.1x. We have been disabling ports manually and putting them in a dead Vlan whenever a port shows not connected. Is there any way to have the switch do that automatically or can CiscoWorks LMS 3.2 do this? All help is greatly appreciated.
Why do you prefer a dead vlan to just shutting the port? If you implement 802.1x, there is the concept of a guest vlan where unauthenticated clients are connected to an alternate vlan if they do not authenticate with a certificate.
client is connected to the port. your situations descripes when a client is using dot1x but is not authorized. anyway i g
uess it will be the easiest thing if you set the switchport access vlan to an unused vlan.
and if you disable the vlan on the trunks, your clients won't have any connection there. other thing to use is the embedded event manager, but you have to update to 12.3 or 12.4 for this. but there you can configure the port dynamicly with whatever you want if the port goes up or down. there are some breakouts from cisco live where you can find informations about it.
Question We run asr9001 with XR 6.1.3, and we have a very long delay to
login w/ SSH 1 or 2 to the device compare to IOS device. After
investigation, the there is 1s delay between the client KEXDH_INIT and
the server (XR) KEXDH_REPLY. After debug ssh serv...
Introduction The purpose of this document is to demonstrate the Open
Shortest Path First (OSPF) behavior when the V-bit (Virtual-link bit) is
present in a non-backbone area. The V-bit is signaled in Type-1 LSA only
if the router is the endpoint of one or ...
Hi, I am seeing quite a few issues with patch install and wanted to
share my experience and workaround to this. Login to admin via CLI, then
access root with the “shell” command Issue “df –h” and you’ll probably
see the following directory full or nearly ...