Pages

network cisco ccna gns3 certification arteq

network cisco ccna gns3 certification arteq
a network runs through it

Search insearchofthecert

Saturday, May 5, 2012

speed dhcp and port-sec...

you don't even need the lease... it's that fast... on the client release the ip address, then renew...

dls1#debug ip dhcp serv even
dls1#term mon
dls1#config t
Enter configuration commands, one per line.  End with CNTL/Z.
dls1(config)#ip dhcp pool ozlan
dls1(dhcp-config)#netw 172.16.1.0 /24
dls1(dhcp-config)#lease 5
dls1(dhcp-config)#end
dls1#'
May  5 10:24:27: %SYS-5-CONFIG_I: Configured from console by vty2 (172.16.1.2)
dls1#
May  5 10:24:41: DHCPD: assigned IP address 172.16.1.3 to client 01e8.9a8f.98a7.03.
dls1#
May  5 10:24:42: DHCPD: Sending notification of ASSIGNMENT:
May  5 10:24:42:  DHCPD: address 172.16.1.3 mask 255.255.255.0
May  5 10:24:42:   DHCPD: htype 1 chaddr e89a.8f98.a703
May  5 10:24:42:   DHCPD: remote id 020a0000ac10010101000000
May  5 10:24:42:   DHCPD: lease time remaining (secs) = 432000
May  5 10:24:42:   DHCPD: giaddr = 0.0.0.0

May  5 10:24:42:   DHCPD: interface = Vlan1
dls1#
May  5 10:25:01: DHCPD: checking for expired leases.
dls1#

just like ny...

set up port security on the access switches...

als1(config)#int rang f0/15 - 24
als1(config-if-range)#sw port-sec
als1(config-if-range)#sw port-sec max 1
als1(config-if-range)#sw port-sec mac sticky
als1(config-if-range)#end
als1#

als1#sh port-sec int f0/15
Port Security              : Enabled
Port Status                : Secure-down
Violation Mode             : Shutdown
Aging Time                 : 0 mins
Aging Type                 : Absolute
SecureStatic Address Aging : Disabled
Maximum MAC Addresses      : 1
Total MAC Addresses        : 0
Configured MAC Addresses   : 0
Sticky MAC Addresses       : 0
Last Source Address        : 0000.0000.0000
Security Violation Count   : 0



shove something up in there...


als1#sh port-sec int f0/15
Port Security              : Enabled
Port Status                : Secure-up
Violation Mode             : Shutdown
Aging Time                 : 0 mins
Aging Type                 : Absolute
SecureStatic Address Aging : Disabled
Maximum MAC Addresses      : 1
Total MAC Addresses        : 1
Configured MAC Addresses   : 0
Sticky MAC Addresses       : 1
Last Source Address        : 0014.6ad0.da00
Security Violation Count   : 0

now shove a different device in there...

als1#sh port-sec int f0/15
Port Security              : Enabled
Port Status                : Secure-shutdown
Violation Mode             : Shutdown
Aging Time                 : 0 mins
Aging Type                 : Absolute
SecureStatic Address Aging : Disabled
Maximum MAC Addresses      : 1
Total MAC Addresses        : 1
Configured MAC Addresses   : 0
Sticky MAC Addresses       : 1
Last Source Address        : 0019.06e7.acc0
Security Violation Count   : 1

als1#sh int f0/15
FastEthernet0/15 is down, line protocol is down (err-disabled)
  Hardware is Fast Ethernet, address is 0009.b73f.ce8f (bia 0009.b73f.ce8f)

that dog don't hunt...
Posted by arteq at Saturday, May 05, 2012
Labels: , , ,

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)