8. Switch Config

Borderless switched network

• Hierarchical

  • Access Layer

  • Distribution Layer

  • Core Layer

• Traffic flow in Switch

  • ingress

  • egress

Switch MAC Table

• learn from source MAC address

  • source MAC and physical port binding

Type of Switch

• Fixed

• Modular

• Stackable

Switch Environment

• Collision Domain

• full duplex / half duplex

• Port density

• Port speed

• auto-MDIX

Switch Operation

• POST

• load boot loader

• the boot loader locates and loads a default IOS

• IOS loads the startup configuration

Switch Remote Management

• IP address, subnet mask and the default gateway.

Switch Security Management

• Secure Shell (SSH) - Port 22

• Configuration

  • Configure the hostname

  • Configure the IP domain name.

  • Generate RSA key pairs

    • A minimum modulus size of 1,024 bits is required.

  • Configure user authentication.

  • Configure the vty lines.

• enabling SSH version 2

Switch Threat

• MAC Address Flooding

Port security

• MAC Addresses

  • Static secure (key in manually)

  • Dynamic secure

  • Sticky secure (save in config file)

• Maximum number

• Violation Mode

  • Protect

  • Restrict (notification)

  • Shutdown

• aging time

  • absolute

  • inactivity