Last year I added port security restrict maximum 10 on our access ports on our 48 port layer 2 switches. I wanted to prevent a MAC flood attack.
How many MAC addresses does it take to flood a CAM table / MAC table? Will setting port security restrict maximum 10 prevent a MAC flood attack?
I was trying to be conservative in order to prevent any accidental business interruptions. Unfortunately there are not enough patch panels and we haven't been able to get new patch panels installed yet, so there are some crappy switches out on the floor in a couple places to provide wired Ethernet to VOIP phones, users and printers. Also we have all our computers getting Ethernet through a port on the VOIP phones So I can easily see there are more than five MAC addresses on a port.
No comments:
Post a Comment