Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1540
Views
0
Helpful
1
Replies

CDP on ASA - why not ?

martin.law
Level 1
Level 1

‎01-21-2013 02:50 PM - edited ‎03-11-2019 05:50 PM

Have just spent a load of time debugging issues with a pair of ASAs I found not having CDP a real pain.

There appears to be lots of comments that CDP is not available but none that explain why.

Is it just laziness or is there a good reason ? After all its available (sort of) on other platforms such as CSS and even other manufacturers.

Discuss ...

Labels:
0 Helpful
1 Reply 1

Karsten Iwen
VIP
VIP

‎01-21-2013 03:06 PM

CDP could expose information that others shouldn't have. And in many best-practices for security you find the recommendation to disable CDP. So it could be an enforced implementation of the "need to know" principle.

For me (as a more or less paranoid security guy), I really would like to have the possibility to decide it on my own on which interface I enable CDP and on which not. But sadly, we can't ...

-- 
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card