Re: Port Block command 3500 series switches.

From: Robert Slaski (robin@atm.com.pl)
Date: Fri Dec 20 2002 - 22:28:39 GMT-3

• Next message: Joe: "RE: Reg New CCIE lab"
• Previous message: Chuck Church: "Re: 3500 ip permit list ?"
• Maybe in reply to: dahlene@aros.net: "Port Block command 3500 series switches."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

dahlene@aros.net wrote:
> Can someone give me a scenario where you would want to use the port block
> unicast and multicast commands. I know that it blocks unknown unicast and
> multicast packets but am having a difficult time in coming up with a time when
> I would want to use it.

For security reasons. Just consider you have networking equipment
sending UDP datagrams like syslog or SNMP traps to a logging host that
goes down or is just very silent. In five minutes by default everybody
will see your logs. You can prevent this with port blocking.

mikrobi,

-- 
.

• Next message: Joe: "RE: Reg New CCIE lab"
• Previous message: Chuck Church: "Re: 3500 ip permit list ?"
• Maybe in reply to: dahlene@aros.net: "Port Block command 3500 series switches."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Jan 17 2003 - 17:21:50 GMT-3