Implementation step for end point protections:
Switch# config t
spanning-tree
portfast bpduguard default
errdisable
recovery cause all
errdisable
recovery interval 30
b) Command to be applied on access ports of
switch except critical devices, Uplinks and Trunk Ports.
interface
GigabitEthernet< interface number>
switchport
mode access
switchport
access vlan
logging
event link-status
spanning-tree
portfast
spanning-tree
bpduguard enable
switchport
port-security
switchport
port-security maximum 1
Rollback step for end point
protections:
a) Command to be applied on L2switch
switch# config t
no
spanning-tree portfast bpduguard default
no
errdisable recovery cause all
no
errdisable recovery interval 30
b) Command to be applied on access ports of
switch except critical devices, Uplinks and trunk Ports.
interface
GigabitEthernet< interface number>
logging
event link-status
no
spanning-tree portfast
no
spanning-tree bpduguard enable
no
switchport port-security
no
switchport port-security maximum 1
No comments:
Post a Comment