2 If i do show cdp nei i am seeing local switch name as remotes device name
Device ID Local Intrfce Holdtme Capability Platform Port ID TEC-DC-COR-N6.tec.local Gig 9/5 170 R S I WS-C6509- Gig 9/4 TEC-DC-COR-N6.tec.local Gig 9/2 168 R S I WS-C6509- Gig 9/3 TEC-DC-COR-N6.tec.local Gig 9/3 174 R S I WS-C6509- Gig 9/2 TEC-DC-COR-N6.tec.local Gig 9/4 146 R S I WS-C6509- Gig 9/5
In that setup the IPS is inline configured. To force the traffic to flow through the sensor, we need two vlans for one IP subnet. I.E. traffic enters on a vlan 500 from a PC/Server and should go to the DG which is the router. If the router would be attached on vlan 500 the the sensor wouldn't be inline. But one port of the sensor is also in vlan 500 and the packet flows to the sensor. The second interface of the sensor is connected to a vlan 506-port where also the router is connected.
In the end, when the switch sends a cdp-packet on the vlan 500-port it comes back to the switch on a port configured for vlan 506. For these setup, the forwarding of CDP-packets should be disabled on the sensor:
On December 8, FireEye reported that it had been compromised in a sophisticated supply chain attack: more specifically through the SolarWinds Orion IT monitoring and management software. The attackers leveraged business software updates in order to distr...
About this Document
Cisco Secure Endpoint (formerly AMP for Endpoints) is a comprehensive Endpoint Security solution designed to function both as a stand-alone tool, and as a part of the architecture of natively integrated Cisco and 3rd par...
To verify the status of RADIUS server from NAD, use the command show aaa server
4507#sh aaa servers
RADIUS: id 3, priority 1, host 10.10.14.20, auth-port 1812, acct-port 1813
State: current UP, duration 10862s, previ...