SlideShare a Scribd company logo

Switching and Port Security

Download as PPTX, PDF
U
usman19

This document discusses port security on switches. It describes switches as devices that forward data from input and output ports to their destinations. It outlines different types of port security including dynamic, static, and sticky MAC address configurations. It also discusses what causes port security violations and the different violation modes of shutdown, protect, and restrict.

Technology
1 of 21
Downloaded 97 times
1
2
Most read
3
Most read
4
5
6
7
8
9
10
11
12
Most read
13
14
15
16
17
18
19
20
21
Switching and Port Security
GROUP MEMBERS USMAN IMRAN/16237 ADNAN SAFDAR/17539
Port Security in Switching
• Device that forwards data from input/output ports towards it’s destination . • network hubs, home routers and network bridges are called switches . • It donot need to be configured. • Plug and pay devices.
• Nodes connected through links and differenciated by mac addresses • Maintain forwarding table that contain link number and mac addresses. • Clear table when switch is off.
Switch
Switch
Ports • Location on switch where devices are connected. • Devices maybe computers , printers , games etc. • Number of ports vary to devices.
• rectangular openings a bit bigger than phone cord. • have a single port called an uplink or (WAN) port, but the rest are switch ports • switch port allows connected devices to talk to each other in parallel
Switching and Port Security
Switching and Port Security
Switch port Security • Feature in switches to secure nework • Limit the number of devices on switch ports • Uses mac addresses for limitations
Types of port security • Port Security With Dynamic Mac Addresses • Port Security With Static Mac Addresses • Port Security With Sticky Mac Addresses
Port Security With Dynamic Mac Addresses • Dynamically configure secure mac addresses of devices connected to port. • Addresses will be stored in address table. • Doesn’t forward traffic of unspecified devices • Addresses will be lost when the switchport goes down or switch reboots.
Port Security With Static Mac Addresses • Secure MAC addresses are statically configured on each switchport. • Stored in the address table. • Static configuration is stored by default in port Security. • Addresses table can be made permanent by saving them to the startup configuration.
Port Security with Sticky MAC Addresses • Sticky secure MAC addresses are a hybrid • Dynamically learned from the devices connected to the switchport • Addresses are put into the address table AND are entered into the running configuration as a static secure MAC address • MAC addresses will be lost until and unless saved to the startup configuration
violation • Violation happens when a person breaks a law or do some thing that isn’t allowed. TYPES • Shutdown • Protect • Restrict
Shutdown • Default switch port security mode • Port will be taken out of service • errDisable mode will be activated • Manually removed from the state
Protect • switchport will permit traffic from known MAC addresses • Drop traffic of unknown mac. • No notification msgs for violation
Restrict • the switchport will permit traffic from known MAC addresses • drop traffic of unknown MAC addresses. • Send notification msgs of violation occured.
Causes of a Switchport Violation Two situation that causes Switch Port Violation • Whe maximum number of secure MAC addresses has added in address table and traffic from unknown MAC address is received on the switchport. • When an address that has been seen on a secure switchport has already been seen on another secure switchport in the same VLAN.

More Related Content

PPTX
Network Security- port security.pptx
SulSya
 
PPTX
Port Security
NetProtocol Xpert
 
PPT
network Switch
zeeshan hanif
 
PPTX
Access Control List (ACL)
ISMT College
 
PPT
Arp spoofing
Luthfi Widyanto
 
PDF
CCNAv5 - S2: Chapter5 Inter Vlan Routing
Vuz Dở Hơi
 
PDF
CCNAv5 - S2: Chapter2 Basic Switching Concepts and Configuration
Vuz Dở Hơi
 
PDF
Inter VLAN Routing
Netwax Lab
 
Network Security- port security.pptx
SulSya
 
Port Security
NetProtocol Xpert
 
network Switch
zeeshan hanif
 
Access Control List (ACL)
ISMT College
 
Arp spoofing
Luthfi Widyanto
 
CCNAv5 - S2: Chapter5 Inter Vlan Routing
Vuz Dở Hơi
 
CCNAv5 - S2: Chapter2 Basic Switching Concepts and Configuration
Vuz Dở Hơi
 
Inter VLAN Routing
Netwax Lab
 

What's hot (20)

PPT
Switch configuration
Muuluu
 
PPTX
Spanning tree protocol
Muhammad Arshad
 
PPTX
Wpa3
Bhavya Dashora
 
PPT
Vlan
ilias ahmed
 
PDF
CSMA /CD PPT ON SLIDESHARE
Khushboo Pal
 
PPTX
VLAN
Varsha Honde
 
PPTX
The medium access sublayer
Lal Bahadur Gehlot
 
PPTX
Ethernet - LAN
Adeel Rasheed
 
PPT
Acl
Raghu Kiran
 
PDF
Overview of Spanning Tree Protocol
Arash Foroughi
 
PPT
Lan technologies
Online
 
PPTX
Network Security
Manoj Singh
 
PPTX
Firewall ( Cyber Security)
Jainam Shah
 
PDF
Lecture 19 22. transport protocol for ad-hoc
Chandra Meena
 
PPT
CCNA PPT
Reetesh Gupta
 
PPT
Vlan
Mayank Saxena
 
PPTX
Media Access Control
VijayaLakshmi514
 
PPTX
Switches on Networking
Gayan Geethanjana
 
PPT
Ch07 Access Control Fundamentals
Information Technology
 
PPTX
Transmission impairments(presentation)
Vivek Kumar
 
Switch configuration
Muuluu
 
Spanning tree protocol
Muhammad Arshad
 
Wpa3
Bhavya Dashora
 
Vlan
ilias ahmed
 
CSMA /CD PPT ON SLIDESHARE
Khushboo Pal
 
VLAN
Varsha Honde
 
The medium access sublayer
Lal Bahadur Gehlot
 
Ethernet - LAN
Adeel Rasheed
 
Acl
Raghu Kiran
 
Overview of Spanning Tree Protocol
Arash Foroughi
 
Lan technologies
Online
 
Network Security
Manoj Singh
 
Firewall ( Cyber Security)
Jainam Shah
 
Lecture 19 22. transport protocol for ad-hoc
Chandra Meena
 
CCNA PPT
Reetesh Gupta
 
Vlan
Mayank Saxena
 
Media Access Control
VijayaLakshmi514
 
Switches on Networking
Gayan Geethanjana
 
Ch07 Access Control Fundamentals
Information Technology
 
Transmission impairments(presentation)
Vivek Kumar
 
Ad

Viewers also liked (8)

PPT
Port security
borepatch
 
PPT
Cisco Switch Security
dkaya
 
PPTX
Mac addresses(media access control)
Ismail Mukiibi
 
PDF
Cisco Router and Switch Security Hardening Guide
Harris Andrea
 
PPTX
Switching
sheekha_11
 
PPT
Switching Techniques
tameemyousaf
 
PPTX
Computer network switching
Shivani Godha
 
PPTX
Medium Access Control
anishgoel
 
Port security
borepatch
 
Cisco Switch Security
dkaya
 
Mac addresses(media access control)
Ismail Mukiibi
 
Cisco Router and Switch Security Hardening Guide
Harris Andrea
 
Switching
sheekha_11
 
Switching Techniques
tameemyousaf
 
Computer network switching
Shivani Godha
 
Medium Access Control
anishgoel
 
Ad

Similar to Switching and Port Security (20)

PPT
Cap2 configuring switch
Hector Camba Lainez
 
PPTX
Switch security
nullowaspmumbai
 
PPTX
Security Concerns in LANs.pptx
joko
 
DOCX
Switchport port security explained with examples
teameassefa
 
PDF
Cisco Switch How To - Secure a Switch Port
IPMAX s.r.l.
 
PPT
Cisco Training CCNA and Routing Switching.ppt
AniruddhSharma65
 
PDF
Vlan
PAF-KIET
 
PPTX
Layer 2 switching
NetProtocol Xpert
 
DOCX
Configuring dynamic switchport security
IT Tech
 
PPTX
SRWE_Module_11.pptx
Josimar Caitano
 
PDF
tep 2 Display the switch MAC address .pdf
furqanfazl2
 
PDF
Increasing network efficiency by preventing attacks at access layer
eSAT Publishing House
 
PPTX
Attack.pptx
ISMT College
 
PDF
CCNP_qefwqqw3fqwfq2wrffqwf2qwfwqwfS1.pdf
almuhtarifegyptianya
 
PDF
CCNP_sdbsdbsdbsdbsdbsdbsdbsdbsdbsdbS1.pdf
almuhtarifegyptianya
 
PDF
A Presentation About Network Switches.pdf
pikakenkk
 
PDF
Wp ci securing_layer2
Amargo Durazno
 
PPTX
Switching
CYBERINTELLIGENTS
 
PPT
Mitigating Layer2 Attacks
dkaya
 
DOCX
Cisco ios order of operation
IT Tech
 
Cap2 configuring switch
Hector Camba Lainez
 
Switch security
nullowaspmumbai
 
Security Concerns in LANs.pptx
joko
 
Switchport port security explained with examples
teameassefa
 
Cisco Switch How To - Secure a Switch Port
IPMAX s.r.l.
 
Cisco Training CCNA and Routing Switching.ppt
AniruddhSharma65
 
Vlan
PAF-KIET
 
Layer 2 switching
NetProtocol Xpert
 
Configuring dynamic switchport security
IT Tech
 
SRWE_Module_11.pptx
Josimar Caitano
 
tep 2 Display the switch MAC address .pdf
furqanfazl2
 
Increasing network efficiency by preventing attacks at access layer
eSAT Publishing House
 
Attack.pptx
ISMT College
 
CCNP_qefwqqw3fqwfq2wrffqwf2qwfwqwfS1.pdf
almuhtarifegyptianya
 
CCNP_sdbsdbsdbsdbsdbsdbsdbsdbsdbsdbS1.pdf
almuhtarifegyptianya
 
A Presentation About Network Switches.pdf
pikakenkk
 
Wp ci securing_layer2
Amargo Durazno
 
Switching
CYBERINTELLIGENTS
 
Mitigating Layer2 Attacks
dkaya
 
Cisco ios order of operation
IT Tech
 

More from usman19 (7)

PDF
: Configuration of Kernel Virtual Machine (KVM) for Monitoring Software Defi...
usman19
 
PPTX
And the mountains echoed
usman19
 
PPTX
Usman
usman19
 
PPTX
probability in telecom switching
usman19
 
PPTX
Sociology-Challenge of Family Institution
usman19
 
PPTX
transport layer
usman19
 
PPTX
Child abuse
usman19
 
: Configuration of Kernel Virtual Machine (KVM) for Monitoring Software Defi...
usman19
 
And the mountains echoed
usman19
 
Usman
usman19
 
probability in telecom switching
usman19
 
Sociology-Challenge of Family Institution
usman19
 
transport layer
usman19
 
Child abuse
usman19
 

Recently uploaded (20)

PDF
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
PPTX
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
PDF
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
PPT
Teaching material agriculture food technology
LiaRayya
 
PDF
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
PDF
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
PDF
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
PDF
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
PDF
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
PPTX
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
PPTX
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
PDF
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
PPTX
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
PDF
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
PDF
Approach and Philosophy of On baking technology
30anthuong17
 
PPTX
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
PDF
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
PDF
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
PPT
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
PDF
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 
Unlocking AI with Model Context Protocol (MCP)
Brian McKeiver
 
Programs and apps: productivity, graphics, security and other tools
4mqw9zch22
 
Dropbox Q2 2025 Financial Results & Investor Presentation
Dropbox
 
Teaching material agriculture food technology
LiaRayya
 
Encapsulation_ Review paper, used for researhc scholars
gurumoop
 
Profit Center Accounting in SAP S/4HANA, S4F28 Col11
Libreria ERP
 
Review of recent advances in non-invasive hemoglobin estimation
IAESIJAI
 
MIND Revenue Release Quarter 2 2025 Press Release
MIND CTI
 
cuic standard and advanced reporting.pdf
SimoneTitaniumTomase
 
KOM of Painting work and Equipment Insulation REV00 update 25-dec.pptx
muhammadmuneebnaeem7
 
Digital-Transformation-Roadmap-for-Companies.pptx
David Malick Dieng
 
Blue Purple Modern Animated Computer Science Presentation.pdf.pdf
Akar16
 
ACSFv1EN-58255 AWS Academy Cloud Security Foundations.pptx
23bcla24
 
Architecting across the Boundaries of two Complex Domains - Healthcare & Tech...
Peter Tan
 
Approach and Philosophy of On baking technology
30anthuong17
 
Big Data Technologies - Introduction.pptx
kuthubussaman1
 
The Rise and Fall of 3GPP – Time for a Sabbatical?
3G4G
 
Diabetes mellitus diagnosis method based random forest with bat algorithm
IAESIJAI
 
“AI and Expert System Decision Support & Business Intelligence Systems”
ZubinRadhakrishnan
 
NewMind AI Weekly Chronicles - August'25 Week I
NewMind AI
 

Switching and Port Security

  • 3. Port Security in Switching
  • 4. • Device that forwards data from input/output ports towards it’s destination . • network hubs, home routers and network bridges are called switches . • It donot need to be configured. • Plug and pay devices.
  • 5. • Nodes connected through links and differenciated by mac addresses • Maintain forwarding table that contain link number and mac addresses. • Clear table when switch is off.
  • 8. Ports • Location on switch where devices are connected. • Devices maybe computers , printers , games etc. • Number of ports vary to devices.
  • 9. • rectangular openings a bit bigger than phone cord. • have a single port called an uplink or (WAN) port, but the rest are switch ports • switch port allows connected devices to talk to each other in parallel
  • 12. Switch port Security • Feature in switches to secure nework • Limit the number of devices on switch ports • Uses mac addresses for limitations
  • 13. Types of port security • Port Security With Dynamic Mac Addresses • Port Security With Static Mac Addresses • Port Security With Sticky Mac Addresses
  • 14. Port Security With Dynamic Mac Addresses • Dynamically configure secure mac addresses of devices connected to port. • Addresses will be stored in address table. • Doesn’t forward traffic of unspecified devices • Addresses will be lost when the switchport goes down or switch reboots.
  • 15. Port Security With Static Mac Addresses • Secure MAC addresses are statically configured on each switchport. • Stored in the address table. • Static configuration is stored by default in port Security. • Addresses table can be made permanent by saving them to the startup configuration.
  • 16. Port Security with Sticky MAC Addresses • Sticky secure MAC addresses are a hybrid • Dynamically learned from the devices connected to the switchport • Addresses are put into the address table AND are entered into the running configuration as a static secure MAC address • MAC addresses will be lost until and unless saved to the startup configuration
  • 17. violation • Violation happens when a person breaks a law or do some thing that isn’t allowed. TYPES • Shutdown • Protect • Restrict
  • 18. Shutdown • Default switch port security mode • Port will be taken out of service • errDisable mode will be activated • Manually removed from the state
  • 19. Protect • switchport will permit traffic from known MAC addresses • Drop traffic of unknown mac. • No notification msgs for violation
  • 20. Restrict • the switchport will permit traffic from known MAC addresses • drop traffic of unknown MAC addresses. • Send notification msgs of violation occured.
  • 21. Causes of a Switchport Violation Two situation that causes Switch Port Violation • Whe maximum number of secure MAC addresses has added in address table and traffic from unknown MAC address is received on the switchport. • When an address that has been seen on a secure switchport has already been seen on another secure switchport in the same VLAN.