White Paper Issue: October 2006 Integration of BX600 SB9 Switches in Cisco Networks Page 46 / 47
View the passed
authentications
4.5 Cisco Discovery Protocol
4.5.1 Introduction
The Cisco Discovery Protocol (CDP) is intended to provide a way of finding out about the physical cabling of a switch
environment. It is often implemented in data center networks to give the administrator additional help with troubleshooting and
documentation.
In some situations CDP will be a security issue, since it would also give a hacker interesting information about the network.
4.5.2 Recommended Solution
In normal solutions CDP will not represent a security risk. In high security areas or hosted environments, the administrator may
decide to disable CDP. In this case we recommend you to disable CDP at the access ports to the server.
4.5.3 Configuration of CDP
The following steps are necessary to disable CDP at the access ports.
• Step 1: Configure the SB9
• Step 2: Check the configuration
Step 1: Configure the SB9
! SB9 CDP configuration
!
! Disable CDP
interface range 0/1 - 0/10
no cdp run
!
Step 2: Check the configuration
(bx6-sb9-a) #show cdp
Global CDP information
CDP Admin mode................................. Enable
CDP Hold Time (sec)............................ 180
CDP Transmit Interval (sec).................... 60
Port CDP
------ -------
0/1 Disable
0/2 Disable
0/3 Disable
0/4 Disable
0/5 Disable
0/6 Disable
0/7 Disable
0/8 Disable
0/9 Disable
0/10 Disable