[nsp] port security on 29xx switches
Kristofer Sigurdsson
ks at rhi.hi.is
Wed May 19 05:04:58 EDT 2004
Terry Baranski, Tue, May 18, 2004 at 07:23:33PM -0400 :
> > anybody know if port security is enabled on the 29xx series switches.
>
> It's supported on the 2900XL's:
> http://www.cisco.com/univercd/cc/td/doc/product/lan/c2900xl/29_35wc6/cli
> /clicmds.htm#xtocid68
You might also want to try out VMPS. It gives more centralized control over
who can connect to what (and even which VLAN). In short, when a node connects
to a switch, the switch asks a VMPS server what to do with this mac address on
this port in this switch. The server responds with "OK, put it on this VLAN"
or "no, we don't want this one", which means the computer doesn't even get a
link with the switch. This is also useful in mapping mac addresses to VLANs,
centrally.
Most commonly. the VMPS server will be run on a Catalyst 6000 switch, but there's
an open source VMPS server called OpenVMPSd, which we've been using with great success.
--
Kristófer Sigurðsson Tel: +354 525 4103 / MSN: ks at rhi.hi.is
Netsérfræðingur/Network specialist Reiknistofnun HÍ/University of Iceland
More information about the cisco-nsp
mailing list