[112194] in North American Network Operators' Group
external L2 ethernet connections
daemon@ATHENA.MIT.EDU (Joe Maimon)
Fri Feb 20 09:41:47 2009
Date: Fri, 20 Feb 2009 09:41:37 -0500
From: Joe Maimon <jmaimon@ttec.com>
To: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org
Does anyone have a best practice list of things to disable/filter/turn
off on ethernet ports l2 connected to other AS's
cdp
stp
switchport negotiate
vtp
if trunking, limit vlans, no vlan1
So on so forth.
Switches do so many darn things all by themselves, as any packet capture
shows.
Thanks,
Joe
