Jens Neelsen wrote: > > Hi, > > disabling STP is not recommended. Use Portfast instead. VTP is > only on trunk ports active. HSRP is configured per interface (on > router). What do you want to achieve? > > Jens Neelsen > CCNP, CCDP, CCSI >
Jens, Thanks. I have no intention of turning off STP. We are using Portfast. VTP advertisements were captured by the security consultant and pasted into an appendix. We controlled where they got access to the network, so it isn't a sham. They got to it. I assumed that it was a multicast that IGMP snooping didn't block. Ditto for HSRP. What I want to achieve is what I asked: prevent STP, VTP, and HSRP frames from finding thier way to access ports. Ideally, with a clean, single 'set' command. Not looking good for the home team though. I do plan to trace thier steps with an analyzer and see what ideas I might be able to come up with. I'll post back what I learn if anything interesting. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=61816&t=61796 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
