Security for Your Network

The preceding section dealt with security access to the switch itself. This section covers some security features that affect traffic as it flows through the switch, including port security, VLAN ACLs, and private VLANs.

Basic Port Security

The user's initial access to the network is typically via a switch port. Because this is the user's initial access, the port on the switch becomes your first line of defense. There are two security tools that you can use to restrict the user's access: port security and port authentication using IEEE's 802.1x. The following sections discuss these solutions.

Port Security

The port security feature is also known as MAC address lockdown and works on access link ports—it is not supported ...

Get BCMSN Exam Cram™ 2 (Exam Cram 642-811) now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.