
797979
© 2002, Cisco Systems, Inc. All rights reserved.
l2-security-bh.ppt
Layer 2 Security Best Practices 1/2
¥ Manage switches in as secure a manner as possible
(SSH, OOB, permit lists, etc.)
¥ Always use a dedicated VLAN ID for all trunk ports
¥ Be paranoid: do not use VLAN 1 for anything
¥ Set all user ports to non trunking
¥ Deploy port-security where possible for user ports
¥ Selectively use SNMP and treat community strings
like root passwords
¥ Have a plan for the ARP security issues in your
network
Commenti su questo manuale