cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3424
Views
0
Helpful
2
Replies

what is this cofig?

datamaven
Level 1
Level 1

no device -tracking logging theft

I found this on a config of a switch that we copying to our new switches 

2 Replies 2

ammahend
VIP
VIP

Cisco switches support Switch Integrated Security Features based (SISF-based) device tracking feature. The main role of the feature is to track the presence, location, and movement of end-nodes in the network. SISF snoops traffic received by the switch, extracts device identity (MAC and IP address), and stores them in a binding table.

‘device-tracking logging packet drop’ this command generate syslogs for MAC and/or IP theft events, is SIFS is enabled,  in your case it’s disabled. SIFS is also disabled by default.
documentation is not very clear on what attributes/logic is used to determine if theft event has occurred. 

-hope this helps-

Hello @ammahend , can you please have more details for this command ??   So I see this command is disabled " no device-tracking logging theft".   If it is enable, while SIFSF is already enable . Benefits and/or any other things that need to be taken care of.

Review Cisco Networking for a $25 gift card