[c-nsp] Alternatives for port-security in a L2 host redundancy environment

Phil Mayers p.mayers at imperial.ac.uk
Fri Apr 29 06:02:34 EDT 2011


On 04/28/2011 06:48 PM, Peter Rathlev wrote:

> I'm not deeply familiar with audits like these, but if they're seriously
> asking for port-security on infrastructure ports they have IMHO
> misunderstood something. User facing ports: yes maybe. Infrastructure
> ports: no.

Sadly, in my experience a complete lack of understanding on the auditors 
part does not necessarily reduce their power to compel you. You need 
really good, words-of-one-syllable explanations to convince them why you 
can't do something. And even that may not help :o(


More information about the cisco-nsp mailing list