external L2 ethernet connections

Joe Maimon jmaimon at ttec.com
Fri Feb 20 08:41:37 CST 2009


Does anyone have a best practice list of things to disable/filter/turn 
off on ethernet ports l2 connected to other AS's

cdp
stp
switchport negotiate
vtp
if trunking, limit vlans, no vlan1

So on so forth.

Switches do so many darn things all by themselves, as any packet capture 
shows.

Thanks,

Joe





More information about the NANOG mailing list