08-23-2009 03:24 PM - edited 03-06-2019 07:23 AM
Hi,
Can we have the port access security control at the switch since this is like vlan extention into another side via leased line?
For example, i plug the leased into port fastethernet 20 of cisco switch 2950. How to do the port access security on port 20? Can open certain port/services on faste 20? Any examples?
08-24-2009 12:35 AM
hello Swee,
if out port fas0/20 there is a remote site it may be legitimate to see multiple MAC addresses on the port and several source ip addresses.
So you need to be careful or the switch can react to legitimate users.
Port security works at OSI layer2 trying to distinguish between legitimate MAC addresses and not legitimate MAC addresses.
Hope to help
Giuseppe
08-24-2009 01:18 AM
Hi
I would not put port security on a uplink, port security should be on the access ports only and therefore removing the need to place it on a uplink.
Hope this helps
Kev
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide