wellcoveted.com wellcoveted.com
   Index >> About Us >> Privacy Policy >> Terms & Conditions >> Add Url >> Add Article
Search:   
Add Url
 

Government & Politics

Health & Hygiene

Employment & Careers

Banking & Finance

Food & Recipe

Automotive

Home & Garden

Children

Society & Issues

Property & Estate

Malls & Shopping

Healthcare & Medicine

Recreation

Travel & Accommodation

Sports & Adventure

Business & Commerce

Self Enhancement

Education & Reference

Art & Culture

Lifestyle & Fashion

Internet & Computers

Online & Board Games

News & Events

Technology & Science
 

Index › Internet & Computers › IT Certification
 

Cisco CCNA Certification Exam Tutorial: Port-Based Authentication
 
Author: Chris Bryant
 

To pass your CCNA exam and earn this coveted certification, you must understand the details of port-based authentication. This knowledge has a great deal of value in production networks as well, since this authentication scheme is regularly implemented. Let's take a look at this particular CCNA skill.

Consider a situation where you have a server that will be connected to your switch, and you want the port to shut down if a device with a different MAC address that that of the switch attempts to connect to that port. You could also have a situation where you have someone who has a connection to a switch port in his office, and he wants to make sure that only his laptop can use that port.

Both of these examples are real-world situations, and there are two solutions for each. First, we could create a static MAC entry for that particular switch port. I don't recommend this, mainly because both you and I have better things to do than manage static MAC entries. The better solution is to configure port-based authentication on the switch.

The Cisco switch uses MAC addresses to enforce port security. With port security, only devices with certain MAC addresses can connect to the port successfully. This is another reason source MACs are looked at before the destination MAC is examined. If the source MAC is non-secure and port-based authentication is in effect, the destination does not matter, as the frame will not be forwarded. In essence, the source MAC address serves as the password.

MAC addresses that are allowed to successfully communicate with the switch port are secure MAC addresses. The default number of secure MAC addresses is 1, but a maximum of 132 secure MACs can be configured.

When a non-secure MAC address attempts to communicate with the switch port, one of three actions will occur, depending on the port security mode. In Protect mode, frames with non-secure MAC addresses are dropped. There is no notification that a violation has occurred. The port will continue to switch frames for the secure MAC address.

In Restrict mode, the same action is taken, but a syslog message is logged via SNMP, which is a messaging protocol used by Cisco routers.

In Shutdown mode, the interface goes into error-disabled state, the port LED will go out, and a syslog message is logged. The port has to be manually reopened. Shutdown mode is the default port-security mode.

Port-based authentication is just one of the many switching skills you'll have to demonstrate to earn your CCNA certification. Make sure you know the basics shown here, including the action of each particular mode, and you're on your way to CCNA exam success!
 
 
 

Related Articles
 
The Case for HTML
 
How Does Your Website Measure Up?
 
A Night In San Francisco
 
Cisco Certification: The "Secret" Key To Getting Your CCNA And CCNP
 
Doing It Yourself: SEO And Increasing Traffic To Your Website
 
Your Newsletter Marketing Strategy: Five Things to Consider
 
Web Design for Speed
 
Website Development Software
 
Cisco CCNP / BSCI Exam Tutorial: BGP Adjacency States
 
Who's Your Target Market
 
 
 
 

Computer Security Vital

Have you thought about computer security at all? Most likely not. Many unsuspecting individuals beli ... - Ruby Vanharen
 

Microsoft CRM for Large Corporation - Security

Microsoft Business Solutions CRM proved to be reliable solution in the whole spectrum of industries ... - Andrew Karasev
 

Google Page Rank - Important Or Just Another Number?

In my last newsletter I wrote about how your websites Alexa rating is not actually that important to ... - Richard Grady
 
 

Learn How To Repair Your Hard Drive Problems Fast

Since computer users are human, the user can be the primary cause of computer failure. And we operat ... - Otis Cooper -
 

Free Anti Spyware programs available for direct download

Downloading Anti-Spyware programs from the Internet. It's convenient, it's safe and it's FREE. Learn ... - Jason Frovich
 

1 - Blogging: Let's Get You Started!

So what is blogging really all about? First off, let me tell you that it's a lucrative business to b ... - Chonticha Marijne
 

You Need Traffic For Your Blog, Here's How To See It.

For those who blog, or write in online journals, keeping track of visitors can be a great way to see ... - Rudolf Freidlander
 

Enterprise Risk Management

Enterprise risk management (ERM) is the process of planning, organizing, and controlling the activit ... - Jason Gluckman
 
 
Index >> Privacy Policy >> Terms & Conditions  
© 2006 www.wellcoveted.com - All Rights Reserved