Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

Security guidelines in switches.

Hello to everybody.

This is my first post and I don´t know if it is the right place.

I would like to know what are the security guidelines that you set up in your switched lan, I mean, do you block unused ports? do you use 802.1x with RADIUS? do you disable telnet and http access?

What are the security guidelines that you use in your company or clients?

Thanks in advance.

Everyone's tags (2)
3 ACCEPTED SOLUTIONS

Accepted Solutions
Hall of Fame Super Gold

Re: Security guidelines in switches.

Our network uses the following:

AAA;
ACS logon to network equipments;
SSH;
HTTP/HTTPS with access list

Depending on the size of your LAN, anyone whoever says that "unused ports should be shutdown" should be shot or given a labotomy.  I have more than 300 LAN switches.  Do you know the calls I'll be getting every hour just to get ports enabled or disabled?   It would make me and my team very un-popular very fast.

Configuring Auto Smartports Macros
http://www.cisco.com/en/US/docs/switches/lan/catalyst3750e_3560e/software/release/12.2_50_se/configuration/guide/swmacro.html

Re: Security guidelines in switches.

Hi,

Check out the best practices and standard guideline for hardening of cisco devices,hopw this helps out your query !!

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080120f48.shtml

Regards

Ganesh.H

Re: Security guidelines in switches.

Really great it had helped you.If it had really helped just mark this thread as resolved so that other user will benifitted.

Regards

Ganesh.H

5 REPLIES
Hall of Fame Super Gold

Re: Security guidelines in switches.

Our network uses the following:

AAA;
ACS logon to network equipments;
SSH;
HTTP/HTTPS with access list

Depending on the size of your LAN, anyone whoever says that "unused ports should be shutdown" should be shot or given a labotomy.  I have more than 300 LAN switches.  Do you know the calls I'll be getting every hour just to get ports enabled or disabled?   It would make me and my team very un-popular very fast.

Configuring Auto Smartports Macros
http://www.cisco.com/en/US/docs/switches/lan/catalyst3750e_3560e/software/release/12.2_50_se/configuration/guide/swmacro.html

Re: Security guidelines in switches.

Thanks for your help, my network has about 100 LAN switches.

Regards.

Re: Security guidelines in switches.

Hi,

Check out the best practices and standard guideline for hardening of cisco devices,hopw this helps out your query !!

http://www.cisco.com/en/US/tech/tk648/tk361/technologies_tech_note09186a0080120f48.shtml

Regards

Ganesh.H

Re: Security guidelines in switches.

Thanks for your help, this document is what I´m looking for.

Regards.

Re: Security guidelines in switches.

Really great it had helped you.If it had really helped just mark this thread as resolved so that other user will benifitted.

Regards

Ganesh.H

1097
Views
0
Helpful
5
Replies