Cisco devices have many features that are good for something but they can be easily exploited. You must know that the Internet is full of people that want to exploit your network for different or no reasons. We will show you the best ways for thinking ahead and securing the layer 2 of the network – the switches. Let’s start…
Lightweight Directory Access Protocol
The purpose of LDAP introduction was to supply a directory service offering protocol. That protocol is active on a layer, resting on top of the TCP/IP stack. Its mechanism is available for the connection, searching, and modification of the Internet directories. Actually, Lightweight Directory Access Protocol (a directory service) is consisted on the client-server representation. The main job of that protocol is to the facilitate right of entry to an accessible directory.
Private VLAN – PVLAN configuration needs to be started by defining any secondary VLANs that are needed for isolation. Secondary VLAN can be isolated or community VLAN.
Switch(config)# vlan 4 Switch(config-vlan)# private-vlan community Switch(config)# vlan 5 Switch(config-vlan)# private-vlan community Switch(config)# vlan 6 Switch(config-vlan)# private-vlan isolated
Isolating Traffic inside a VLAN Using Private VLANs
In the article VACL – VLAN Access Lists we mention one way how to provide security on switch device like Cisco Catalyst switch. In this article we will see the other way of providing security with use of private VLANs – PVLAN.
The whole idea is to make possible to group VLANs inside the VLANs. You see from the picture here on the right that this will give you the opportunity to make group od computers or servers inside main (primary) VLAN. It will be possible to have two servers in the VLAN 10 and both of them on the same subnet. Here it becomes little bit strange, then they can be separated into two Secondary VLANs, VLAN 4 and VLAN 5.
If you are interested in the PVLAN configuration: PVLAN configuration article
A network proper running is an indispensable issue for the successful operations of that network. Today’s companies have become more and more reliant over the networking services. And the good performances of these services mean a business good quality management. In this regard, the network’s management fundamentals proffer you an easy to get outline of the network managing. That will not just cover the administration of a network itself but as well offer the coverage to those services running on that specific network.