Port Security & SNMP traps

Discussion in 'Cisco' started by mmm_danone@dsl.pipex.com, May 6, 2005.

  1. Guest

    I'm wanting to set up Port Security to limit ethernet ports on cisco
    switches to a single mac-address. This is easy enough to do, however I
    know we have a lot of users with hubs on their desks and I'd rather
    gather info on these users first and issue warnings than just
    auto-disable their connections.

    I was hoping Port Security would have a Violation Mode which just sends
    an SNMP trap but still allows traffic to be forwarded. Then after a
    warning, i can change the mode and start blocking ports with >1 mac.

    I've been checking "show mac-address table" manually and looking for
    duplicate interface entries, but this is painfully slow & ultimately
    not very accurate. Has anybody any other ideas. This needs to be done
    on various different types of cisco switch (from 2900 to 6500),
    including some CatOs.

    Any guidance much appreciated.
    , May 6, 2005
    #1
    1. Advertising

  2. On 6 May 2005 00:05:57 -0700, wrote:

    >I'm wanting to set up Port Security to limit ethernet ports on cisco
    >switches to a single mac-address. This is easy enough to do, however I
    >know we have a lot of users with hubs on their desks and I'd rather
    >gather info on these users first and issue warnings than just
    >auto-disable their connections.
    >
    >I was hoping Port Security would have a Violation Mode which just sends
    >an SNMP trap but still allows traffic to be forwarded. Then after a
    >warning, i can change the mode and start blocking ports with >1 mac.
    >
    >I've been checking "show mac-address table" manually and looking for
    >duplicate interface entries, but this is painfully slow & ultimately
    >not very accurate. Has anybody any other ideas. This needs to be done
    >on various different types of cisco switch (from 2900 to 6500),
    >including some CatOs.
    >
    >Any guidance much appreciated.


    Check the "cam notification" option. With this you can set ports to
    alert when a MAC address is learned on the port. This in turn can
    generate a SNMP message. While you'll certainly have to do some
    post-notification processing, it may give you what you're after.

    Scott
    Scott Fringer, May 13, 2005
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Illusion

    Syslog or SNMP traps?

    Illusion, Oct 31, 2003, in forum: Cisco
    Replies:
    3
    Views:
    15,378
    Pete Mainwaring
    Nov 4, 2003
  2. Ross

    sending snmp traps

    Ross, Mar 1, 2004, in forum: Cisco
    Replies:
    0
    Views:
    747
  3. Marco Roda

    SNMP traps / SYSLOG documentation

    Marco Roda, Oct 11, 2004, in forum: Cisco
    Replies:
    1
    Views:
    773
    Michael Janke
    Oct 12, 2004
  4. Christian Roos

    SNMP-Version to send traps (CatOS 7.6)

    Christian Roos, Mar 7, 2006, in forum: Cisco
    Replies:
    0
    Views:
    507
    Christian Roos
    Mar 7, 2006
  5. Replies:
    1
    Views:
    773
    Walter Roberson
    Nov 22, 2006
Loading...

Share This Page