Re: How to Block STP, VTP, etc. on Access Ports? [7:61796] posted 01/25/2003
- Subject: Re: How to Block STP, VTP, etc. on Access Ports? [7:61796]
- From: "Larry Letterman" <lletterm@xxxxxxxxx>
- Date: Sat, 25 Jan 2003 08:50:58 GMT
Port host is a macro that turns off port channelling, turns
on portfast. Nothing in port host
that I know of shuts off VTP or HSRP frames from running
around the layer 2 broadcast domain....you might be able to
do something with a VACL, i am not sure..we deny access in
our 6509's to rogue dhcp servers with a VACL...
----- Original Message -----
From: "Daniel Cotts"
Sent: Friday, January 24, 2003 2:49 PM
Subject: RE: How to Block STP, VTP, etc. on Access Ports?
> It appears that the "Security Consultants" then didn't
earn their fee. Must
> be a company run by Dogbert.
> Consulting truism: "The higher up the chain of command you
> services - the less you have to know and the higher you
> > -----Original Message-----
> > From: s vermill [mailto:nobody@xxxxxxxxxxxxxx]
> > Thanks Priscilla. I found it interesting that the
> > consultants made
> > note of these "findings" and made a strong
> > that we fix them.
> > No suggestions on how to do so were offered. I imagine
> > is a L2 ACL
> > solution or something along those lines. I was hoping
> > something clean,
> > but I guess it's time to earn our paycheck.
> > Regards,
> > Scott
Message Posted at:
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to abuse@xxxxxxxxxxxxxx