Port-Security

Layer 2 অ্যাটাকের হাত থেকে রক্ষা পাওয়ার জন্য Cisco সুইচে Port Security Configure করা হয়। Untrusted কোন user নেটওয়ার্কে অ্যাক্সেস করতে পারবে না। Internal নেটওয়ার্কে শুধু মাত্র Trusted ইউজারা অ্যাক্সেস করতে পারবে। Port Security হল সুইচিং টেকনোলজি যা ম্যাক অ্যাড্রেসের উপর বেস করে Security প্রদান করে।

Port Security মাধ্যমে Physical সুইচের ইন্টারফেসে Trusted ইউজারের ম্যাক অ্যাড্রেস Bind করা হয়। একটা ইন্টারফেসে একাধিক ম্যাক অ্যাড্রেস Bind করা যায়।

ম্যাক অ্যাড্রেস গুলো Static ভাবে Assign করা যায় আবার Sticky করে দিলে প্রথমে যে User Connect করবে তার ম্যাক অ্যাড্রেস অটোমেটিক Bind করে নিবে।

**Automatic MAC Bind With “sticky” Command**

Port-security violation এড় ৩ টা মোডে রয়েছে :
1.Protect :- Untrusted MAC থেকে আশা Traffic কে Discurt করে ।
2.Restrict :- Untrusted MAC থেকে আশা Traffic কে Discurt করে এবং Log Generate করে ।
3.Shutdown :- Untrusted MAC থেকে আশা Traffic কে Discurt করে এবং এর সাথে Port কে Shutdown করে error disable state এ নিয়ে যায় ।

LAB:

Cmd:

Switch(config)#
Switch(config)#interface fastEthernet 0/1
Switch(config-if)#switchport mode access
Switch(config-if)#switchport port-security
Switch(config-if)#switchport port-security maximum 1
Switch(config-if)#switchport port-security mac-address sticky
Switch(config-if)#switchport port-security violation shutdown
Switch(config-if)#

Result:

Error Disable State থেকে Port কে Recovery করার Command:

Switch(config)#
Switch(config)#interface fastEthernet 0/1
Switch(config-if)#shutdown
Switch(config-if)#no shutdown
Switch(config-if)#

Verify করার কিছু Command:

show port-security
show port-security interface fastEthernet 0/1
show port-security address

Have Any query Please Comment Below

By Md Hedaet Shake| 2021-04-02T18:57:19+06:00 December 25th, 2020|Security|14 Comments

14 Comments

Agnes September 1, 2021 at 12:55 am - Reply

I’m gone to convey my little brother, that he should also pay a quick visit this webpage on regular basis to take updated from most recent information.
- Md Hedaet Shake September 1, 2021 at 8:37 pm - Reply
  
  Thank you for your nice comment and your support 🙂
Kay September 2, 2021 at 12:28 am - Reply

I’d like to thank you for the efforts you have put in writing this blog.

I really hope to view the same high-grade content
from you later on as well. In fact, your creative writing
abilities has encouraged me to get my own, personal blog now 😉
- Md Hedaet Shake September 2, 2021 at 1:37 pm - Reply
  
  Thank you for your nice comment and your support 🙂
ideias de captaçăo de alunos September 2, 2021 at 12:40 am - Reply

Oi, muito bom o seu blog! Adorei!.
- Md Hedaet Shake September 2, 2021 at 1:40 pm - Reply
  
  Thank you for your nice comment and your support 🙂
Eva September 2, 2021 at 1:00 am - Reply

What’s up, all is going fine here and ofcourse every one is sharing data, that’s in fact fine, keep up writing.
- Md Hedaet Shake September 2, 2021 at 1:47 pm - Reply
  
  Thank you for visiting our blog, hope you’ll be with us 🙂
Janessa September 2, 2021 at 1:23 am - Reply

It is the best time to make some plans for the future and it’s time to be happy.
I have read this post and if I could I want to suggest you some interesting things
or suggestions. Perhaps you can write next articles referring to this
article. I want to read more things about it!
- Md Hedaet Shake September 2, 2021 at 2:02 pm - Reply
  
  Thank you for visiting our blog, hope you’ll be with us 🙂
Romeo September 2, 2021 at 2:38 am - Reply

Article writing is also a excitement, if you know after that you can write
otherwise it is complicated to write.
- Md Hedaet Shake September 2, 2021 at 2:15 pm - Reply
  
  I agree with you. Thank you for your nice comment and your support 🙂
Lupe September 2, 2021 at 2:44 am - Reply

I have fun with, cause I discovered exactly
what I used to be taking a look for. You have ended my 4 day lengthy hunt!
God Bless you man. Have a great day. Bye
- Md Hedaet Shake September 2, 2021 at 2:17 pm - Reply
  
  Thank you for visiting our blog, hope you’ll be with us 🙂