Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
413
Views
0
Helpful
1
Replies

switchport configuration...

rvaccare
Level 1
Level 1

‎03-29-2004 08:45 AM - edited ‎03-02-2019 02:37 PM

I am looking at a 6500 configuration (IOS 12.2(14)), and I am trying to determine exactly what is going on and more importantly, if the switchport configurations for the interfaces are SECURED properly. The following lines are configured on the interfaces:

switchport

switchport access vlan XXX

switchport mode access

switchport port-security

switchport port-security mac-address XXXX.XXXX.XXXX

My understanding is that because of the "switchport mode access" line, that the interface is nontrunking, nontagged, which I thought was not a good idea. If that is the case, what exposures are there. Also, should 802.1Q tunneling be done instead, and if so, are there some limitations as to why 802.1Q tunneling may not be done in this instance?

Thanks.

Labels:
0 Helpful
1 Reply 1

gleithner
Level 1
Level 1

‎03-29-2004 09:40 AM

mode access is usually for end devices attached to the port. there's no reason really to trunk unless you are connecting another switch or a vlan-routing router to that port.

the port-security command only allows that specific mac-address to connect to the switch on that port.

0 Helpful
Customers Also Viewed These Support Documents