Switchport security best practices for Cisco IP phones
Hello.
I have some difficulty to understand what the safest method is to ensure a Cisco IP Phone.
Can't get info on how many course connect a switchport and a telephone computer IP Cisco with a daisy chained to him.
The thing I fear more precisely is how to secure against attacks of Double VLAN tagging and COP on this port.
I searched regardless of the possible resource for the answer and you have not found anything useful.
I also have a question regarding port security on a switch: can you set a minimum amount of MAC addresses active and then limit the period of ageing on the MAC addresses on a specific switchport, such that if someone disconnects the phone and sets up a Cisco switch or other device of thugs, then the port should be stopped during the period of ageing.
Let me know, what you would suggest to better secure the hose between the Cisco IP phone and the switch.
Best regards
Casper.
If you see all these as the attack vector for your environment, there are only 802. 1 x that can help you.
Tags: Cisco Security
Similar Questions
-
Best practices for securing the Oracle e-Business
Is there anything in addition to best practices for securing the Oracle e-Business
Suite 11i that consideration for the safety of the Oracle E-Business Suite?Try:
http://repo.solutionbeacon.NET/Collab07BestPracticesWP.PDF
http://www.Integrigy.com/Oracle-security-blog/archive/2007/07/27/11i-updated-security-best-practices
-
[ADF, JDev12.1.3] Best practices for maintaining a form validation
Hallo,
in my application, I need to create a registration form which contains fields that must be validated (for example they should follow a format like e-mail, phone number, tax code,...).
If the data inserted by the user are ok, a new record in my custom db table Users will be created.
I would like to know which are the best practices for maintaining the validation, which means the place where the controls must be made and a message to the user who fills out the form when something goes wrong.
The best vo or EO or managed bean? Or some controls should be put in the OS, others in the VO and other in the managed bean?
I would be happy if you could give me some examples.
Thank you
Federico
Assuming you want the validation on the value of the field to any screen data can be entered in (and possibly web services that rely on the same BC ADF) then put the validation on the definition of the attribute in the EO.
If you want to add a little more friendliness and eliminate some of the network traffic to the server, you can also implement the validation client in your page - for example by using the regular expression validator.
https://blogs.Oracle.com/Shay/entry/regular_expression_validation
-
Best practices for building an infrastructure of APEX for 12 c
Hi all
Have we not the docs on best practices for building an infrastructure of APEX?
Which means, for the production, it is acceptable to use Embedded PL as the listener, or we stick with the Listenr tested on Weblogic?
Thank you
Hi JCGO,.
JCGO wrote:
Hi all
Have we not the docs on best practices for building an infrastructure of APEX?
Which means, for the production, it is acceptable to use Embedded PL as the listener, or we stick with the Listenr tested on Weblogic?
Thank you
I agree with Scott's response '' it depends. '' It starts with the appropriate choice of a web listening port.
You should discourage use EPG facility based in Production environments in accordance with the recommendation of the Oracle.
Reference: See security considerations when you use the Embedded PL/SQL Gateway section.
ADR (APEX Listener) + Oracle Weblogic Server sounds good, if you already have tried and have appropriate expertise to manage it.
Also, you might consider what other facilities ADR based ADR + Apache Tomcat with Apache HTTP Server reverse proxy as described here:
But it depends on Apache skills, you have within your organization.
I hope this helps!
Kind regards
Kiran
-
Best practices for network configuration of vSphere with two subnets?
Well, then I'll set up 3 ESXi hosts connected to storage shared with two different subnets. I configured the iSCSI initiator and the iSCSI with his own default gateway - 192.168.1.1 - targets through a Cisco router and did the same with the hosts configured with its own default gateway - 192.168.2.2. I don't know if I should have a router in the middle to route traffic between two subnets since I use iSCSI ports linking and grouping of NETWORK cards. If I shouldn't use a physical router, how do I route the traffic between different subnets and use iSCSI ports binding at the same time. What are the best practices for the implementation of a network with two subnets vSphere (ESX host network: iSCSI network)? Thank you in advance.
Install the most common iSCSI would be traffic between hosts and
the storage is not being routed, because a router it could reduce performance.
If you have VLAN 10(192.168.1.0/24) iSCSI, VLAN 20 (192.168.2.0/24) ESX
MGMT and VLAN 30 (192.168.3.0/24) comments VMs and VLAN 40 (192.168.4.0/24)
vMotion a deployment scenario might be something like:
NIC1 - vSwitch 0 - active VMK (192.168.1.10) MGMT, vMotion VMK (192.168.4.10)
standby
NIC2 - vSwitch 1 - current (VLAN30) guest virtual machine port group
NIC3 - vSwitch 2 - active VMK1 (192.168.1.10) iSCSI
NIC4 - vSwitch 2 - active VMK2 (192.168.1.11) iSCSI
NIC5 - vSwitch 1 - current (VLAN30) guest virtual machine port group
NIC6 - vSwitch 0 - MGMT VMK (192.168.2.10) standby, vMotion
VMK (192.168.4.10) active
You would place you on VLAN 10 storage with an IP address of something like target
192.168.1.8 and iSCSI traffic would remain on this VLAN. The default value
gateway configured in ESXi would be the router the VLAN 20 with an ip address of
something like 192.168.2.1. I hope that scenario help set some options.
Tuesday, June 24, 2014 19:16, vctl [email protected]>
-
Best practices for adding form fillable form designer EULA & forcing acceptance by the user
What are created the best practices for adding a license agreement end user to a form with LiveCycle Designer. and to force the user to signify the acceptance of the EULA before access inside the form?
Time, I have the kludged with a series of four message boxes (which is necessary because my LICENSE agreement, like most) is too long to fit in a single messageBox). 3 first message boxes have OK/Cancel buttons. If the user clicks OK, she gets the following message EULA box; If she clicks cancel the form closes. The last post (fourth) area a Yes/No buttons with the corresponding behavior. It seems that the work (I think?), but it's ugly. Is there an "easy way" to do it with a single drop-down dialog box "I agree" and "I refuse" custom buttons?
I've seen references to Tools like this but they are marked as obsolete or abandoned due to security or other unspecified concerns.
Best, Blake
Another way might be, keep the form pages hidden at the beginning and only display a single page that has text box that contains the EULA with accept and refuse to scroll buttons. IF someone refuses, you can keep the rest of the hidden form or display message boxes to force acceptance of the EULA.
If anyone agrees, you can simply hide the EULA page, and display form pages.
I hope that used here too scripting required to reach it either.
-
Best practices for enforcement procedures
Hi all
I need to run a process on demand application (from Javascript code).
To do this, I spend the process parameters using elements of applications. (I mean I put points of application using Javascript).
In order to make it work, I have to change the Protection of the State of Session "Unrestricted".
Is this the right way to go for security best practices or is there a better way?
Thank you.
Max
Hi Max,.
Thanks for explaining, I see now. You must check in the process that the passed ID is still valid for the currently connected user, I would definitely use the global temporary variables for this apex_application.g_x.
Also, make sure that the attributes of the object are what you expect or if ensure that they do not cause a SQL injection (support) or a situation of Cross-site Scripting (properly escaped). You can use a regular expression to clean up if necessary attribute data, an expression I used the other day;
regexp_replace (apex_application.g_x01, "[^ #0-9 a - fA - F]'," ")
Which restricts the entry of color hexadecimal encoding format, i.e. ' #7f7f7f '.
Hope this helps
Kind regards
-
Measurement on the side time server? Best practices for the turn-based game
Hello
What would be the best practice for measuring time in a turn based game?
I was looking at the timeout of the room, but to use that it would mean that, for each round, I put users in a new room?
Is there a way where I can measure time serverside and keep users in the same room?
If so, I could use php, otherwise, we would need java that allows to measure a time race.
See you soon,.
G
Hello
You can definitely use PHP or Java - we provide integration of server
libraries for either. I don't know exactly what is the use case, so I can't
comment on what makes the most sense, but if it is not information which must be
totally secure, grading on the client can be a viable approach also.
Nigel
-
I'm using an EOS 7 d for 1080 p HD video shooting. New to SLR camera and digital video. I have watched several tutorials but do not yet have a good understanding of what the best practices for the development.
If I put the camera in AI Servo it will auto focus if the subject is moving away or toward me with depress me back AF-ON or the shutter button? Or should I press one of these buttons to make the camera continues to focus?
You know tutorials or video lessons that cross using update with the video?
Thanks in advance!
I don't know any tutorials, but more serious videographers say it is best to use only the manual focus.
Trial and error is a good teacher, when it comes to video DSLR. You'll quickly learn that video Auto Focus is really bad with the 7 d and most of the people do not use it all together.
The method that works for me is to use AF before the filming of the video and then adjust manually if you want to you to shoot the video. With the help of f/8 or f/11 to keep everything in short without having to keep the setting.
More recent Canon DSLR's like the T4i, T5i, 70 d and SL1 have a "hybrid AF" that does a much better job of AF during video, but it is not yet as good as a camcorder
-
Thank you for taking the time to read this. I would like to know the "best practices" for unplugging my computer permanently to the internet and other updates. I thought I would do a clean install of Windows XP, install my Microsoft Works again and nothing else. I would like to effectively transforming my computer into a word processor. He continues more and more slow. I get blue screen errors, once again. I received excellent Microsoft Support when it happened before, but since my computer is around 13 years, I think it is not worth the headache to try to remedy. I ran the Windows 7 Upgrade Advisor, and my computer would not be able to upgrade. Please, can someone tell me how to make it only a word processor without updates or internet connection? (I already have a new computer with Microsoft Windows 7 Home Premium, it's the computer that I use. The old computer is just sitting there and once a week or so I updates.) I appreciate your time, thank you!
original title: old computer unstablehttp://Windows.Microsoft.com/en-us/Windows-XP/help/Setup/install-Windows-XP
http://www.WindowsXPHome.WindowsReinstall.com/sp2installxpcdoldhdd/indexfullpage.htm
http://aumha.NET/viewtopic.php?f=62&t=44636
Clean install XP sites
You can choose which site to reinstall XP.Once it is installed, then you do not have to connect what anyone, however, some updates may be required to perform the work, test this by installing work and see if you get an error msg. Except that you should be fine.
-
HP stream 11-d008tu: best practices for migrating to Windows 10?
Hey there, I have a HP flow 11-d0008tu and received the notification I can upgrade to Windows 10. I want to do a clean install with a downloaded ISO but knowledge first of all, it is better to upgrade so that you get the activation done.
Can someone give me some ideas on best practices for the upgrade? The stream has only 30GB HD so I have no recovery disk, I'll just do a recovery later on USB or SD card. When I do the upgrade can deselect recovery option or delete?
Also, any other suggestions appreciated, especially which helps make effective for small HD
See you soon
Hi, I posted an installation procedure for Windows 10 fresh for the Tablet HP Stream here. Also, I have a laptop 11 flow but do not have that yet. I think it must be the same because they both the same drive of mem 32 GB Hynix. A change would you probably want to use the 64-bit instead of 32-bit Windows 10 ISO file, the Tablet has only 1 GB of RAM.
-
Just improved m tips on best practices for sharing files on a Server 2008 std.
The field contains about 15 machines with two domain controllers, one's data is the app files / print etc... I just upgraded from 2003 to 2008 and want to get advice on best practices for the establishment of a group of file sharing. Basically I want each user to have their their own records, but also a staff; folder. Since I am usually accustomed to using windows Explorer, I would like to know if these actions can be done in the best conditions. Also I noticed on 2008 there is a feature of contacts. How can it be used? I would like to message or send an email to users their file locations. Also, I want to implement an admin at a lower level to handle the actions without making them far in on the server, not sure.
I read a certain bbut I don't like test direct more because it can cause problems. So basically a way short and neat to manage shares using the MMC, as well as the way that I approach their mail from the server of their actions. Maybe what kind of access cintrol or permissions are suitable also for documents. Also how can I have them use office templates without changing the format of the model.
THX
g
Hello 996vtwin,
Thank you for visiting the Microsoft Answers site. The question you have posted is related to Windows Server and would be better suited to the Windows Server TechNet community. Please visit the link below to find a community that will support what ask you:
http://social.technet.Microsoft.com/forums/en-us/category/WindowsServer
Hope this helps J
Adam
Microsoft Answers Support Engineer
Visit our Microsoft answers feedback Forum and let us know what you think -
Best practices for vsphere 5.1
where can I find the doc more up-to-date about berries EQL configuration / best practices with vmware vsphere 5.1
Hello
Here is a link to a PDF file that covers best practices for ESXi and EQL.
Best EqualLogic practices ESX
en.Community.Dell.com/.../20434601.aspx
This doc mentions specifically that the storage Heartbeat VMKernel port is no longer necessary with ESXi v5.1. VMware has corrected the problem that made it necessary.
If you add it to a 5.1 system it will not hurt. It will take an IP address for each node.
If you upgrade 5.0 to 5.1, you can delete it later.
Here is a link to VMware which addresses this issue and has links to other Dell documents which confirm also that it is fixed in 5.1.
Kind regards
-
Best practices for color use in Adobe CC?
Hi all
Is there an article that describes the best practices for use of color in Adobe CC?
I produce a mixture of viewing online (PDF, for the most part) and real world print projects - often with the obligation for both. I recently updated my PANTONE + bridge books for the first time in ages and I am suddenly confused by the use of Lab colors in the Adobe Suite (Illustrator and InDesign).
Everything I found online, looks like Lab color mode preferred to use because it is device independent. And perceptual (on screen), it looks much closer to the color, it is trying to represent. But when I mark a Spot color Illustrator rectangle using laboratory coordinates, to the sides of a rectangle using PANTONE + bridge CP and then export it to PDF, the version of CP to mix CMYK color corresponds exactly to my Pantone book - while the version of laboratory (after converted to CMYK using the ink Manager) is far away.
I have this fantasy to manage only a single Illustrator or InDesign file for both worlds (PDF) printed and online. Is not possible in practice?
Any info describing the basic definitions of the color modes - or even a book tracing more than use them in the real world - would be much appreciated!
Thank you
Bob
Here are a few best practices you can already do.
1 make sure that your color settings are synchronized on all applications.
2. use a CMYK profile appropriate for your print output. Lab spot colors convert to CMYK values based on the CMYK icc profile.
3. include icc profiles when save or export pdf files
In theory, your imagination is possible today. It requires color management and the use of icc profiles. You can place RGB images in InDesign and use Pantone colors in your objects. The problem lies in the printers. If a printer uses a RIP with built in Pantone library, the colors will match when printing. Unfortunately, this kind of CUT is more expensive and not enough printers use them. Most of them is always manually approximate CMYK values composition given Pantone colors.
-
Best practices for managing exceptions and success messages.
Hey people,
These days I've been shooting packages to clean my application. And question came to my mind, ' should I treat my exceptions the right way?
So I want to ask you met guys, what is the best practice for this? (I want to learn it until it's too late )Currently I have a function that returns "OK" if all goes well.
return('OK');Can I manage my exceptions like this
EXCEPTION WHEN OTHERS THEN ROLLBACK; RETURN (SQLERRM);
At THE SUMMIT, I have a process that calls the function and then checks if the function returned "OK".
IF cRet not LIKE 'OK%' THEN RAISE_APPLICATION_ERROR(-20000,cRet); END IF;
And in 'process Error Message' I put "#SQLERRM_TEXT #" so that I can see what error occurred.
Question aside, how do you manage your messages of success?
Currently in 'process success Message' put something along the lines "Action completed successfully". What to do about all the processes.
Do you want to do differently?
I really want to hear what you have to say since I'm tired of feeling like this is a terrible way to manage these things.
Hi Para,
Para wrote:
I don't know of situations where my service throw exceptions like no_data_found.
and I need to know that the process is not so I can get to see my # #SQLERRM_TEXT.
I got this by increasing the error in the application (which I think is a bad way to go) if the return is anything other than 'OK '. I get my application error in the process of the apex, and not in my service.
And I want to show the inline error in the notification. (Which I am currently with my approach).You can use APEX_ERROR. ADD_ERROR in your PL/SQL process to throw exceptions in Oracle APEX.
Reference: Re: Re: error in the processing of the page management
Kind regards
Kiran
Maybe you are looking for
-
I can edit movie 4 k video for you tube?
Can I change 4 k video video for you tube?
-
Startup error - file is missing or corrupt: windows\system32\config\system
When I turn on my computer, I get the following error message: Windows could not start because the following gile is missing or damaged:Windows\System32\Config\SystemYou can try to repair this file by starting Windows Setup using the original Setup C
-
HP Envy 110: HP Envy 110 "full feature software and drivers" - must use the USB cable?
On another thread, it was recommended that use "full feature software and drivers" to solve a problem I had with a scan on my HP Envy 110. This network printer using a WiFi connection. In order to take advanatage of the features in this S/W, I must
-
Is it Possible to use numeric Variables in a String Variable for file names?
Hi all I don't really know how to phrase this question properly, but here's my question. I have a DotNet object and method that someone else wrote to write in an Excel file. I want to use something like: "C:\Program Files\WMT\Sequences\ProductX" + St
-
HP G62-149WM TROUBLESHOOTING SCREEN
Need help ASAP! Hello aid... so here's the problem! I decided to turn off Internet Explorer through the OFF... but TURN WINDOWS FEATURES ON AND after it restarts, my screen resolution is at 1280 × 800 and I don't know how to get back to his original