[112198] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: external L2 ethernet connections

daemon@ATHENA.MIT.EDU (Adam Davenport)
Fri Feb 20 10:01:22 2009

Date: Fri, 20 Feb 2009 09:59:00 -0500
From: Adam Davenport <adam@choopa.com>
To: Joe Maimon <jmaimon@ttec.com>
In-Reply-To: <499EC121.9090204@ttec.com>
X-MailScanner-From: adam@choopa.com
Cc: nanog@nanog.org
Errors-To: nanog-bounces@nanog.org

If you're using a Cisco device on your side, you'll likely want to 
disable MOP as well:

http://www.ciscotaccc.com/kaidara-advisor/lanswitching/showcase?case=K20523308

Adam Davenport / adam@choopa.com
www.choopa.com / 1.866.2.CHOOPA



Joe Maimon wrote:
> Does anyone have a best practice list of things to disable/filter/turn 
> off on ethernet ports l2 connected to other AS's
>
> cdp
> stp
> switchport negotiate
> vtp
> if trunking, limit vlans, no vlan1
>
> So on so forth.
>
> Switches do so many darn things all by themselves, as any packet 
> capture shows.
>
> Thanks,
>
> Joe
>
>


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[112198] in North American Network Operators' Group

Re: external L2 ethernet connections

daemon@ATHENA.MIT.EDU (Adam Davenport)Fri Feb 20 10:01:22 2009

daemon@ATHENA.MIT.EDU (Adam Davenport)
Fri Feb 20 10:01:22 2009