ak8bk_sem-proj/staff.tex

\subsection{\texttt{STAFF}}

set hostname \&\& port-sec recovery timeout
% port-sec recovery timeout - 120s
\begin{verbatim}
en
conf t
#
# set hostname to STAFF
#
hostname STAFF
#
# port-sec recovery timeout - 120s
#
errdisable recovery interval 120s
errdisable recovery cause psecure-violation
\end{verbatim}

\noindent
enable port-sec for g0/{1|2}
\begin{verbatim}
# no need to elevate privileges since we did that in the previous block
#
# g0/2
#
interface g0/1
switchport mode access
switchport port-security maximum 2
switchport port-security violation shutdown
switchport port-security mac-address sticky
switchport port-security
#
# g0/2
#
interface g0/2
switchport mode access
switchport port-security maximum 2
switchport port-security violation shutdown
switchport port-security mac-address sticky
switchport port-security
\end{verbatim}

\noindent
trust arp packets from g0/0 (\texttt{CoreRouter})
\begin{verbatim}
en
conf t
in g0/0
no shut
ip arp inspection trust
end
#
# verify
#
show ip arp inspection interfaces g0/0
\end{verbatim}

\noindent
trust arp packets from g0/3 (\texttt{INTRA})
\begin{verbatim}
en
conf t
in g0/3
no shut
ip arp inspection trust
end
#
# verify
#
show ip arp inspection interfaces g0/3
\end{verbatim}
add partial solution files 2022-05-15 20:28:48 +02:00			`\subsection{\texttt{STAFF}}`
add corerouter,staff,intra configs (wip) 2022-05-16 00:37:24 +02:00
			`set hostname \&\& port-sec recovery timeout`
			`% port-sec recovery timeout - 120s`
add partial solution files 2022-05-15 20:28:48 +02:00			`\begin{verbatim}`
add corerouter,staff,intra configs (wip) 2022-05-16 00:37:24 +02:00			`en`
			`conf t`
			`#`
			`# set hostname to STAFF`
			`#`
			`hostname STAFF`
			`#`
			`# port-sec recovery timeout - 120s`
			`#`
			`errdisable recovery interval 120s`
			`errdisable recovery cause psecure-violation`
			`\end{verbatim}`

			`\noindent`
			`enable port-sec for g0/{1\|2}`
			`\begin{verbatim}`
			`# no need to elevate privileges since we did that in the previous block`
			`#`
			`# g0/2`
			`#`
			`interface g0/1`
			`switchport mode access`
			`switchport port-security maximum 2`
			`switchport port-security violation shutdown`
			`switchport port-security mac-address sticky`
			`switchport port-security`
			`#`
			`# g0/2`
			`#`
			`interface g0/2`
			`switchport mode access`
			`switchport port-security maximum 2`
			`switchport port-security violation shutdown`
			`switchport port-security mac-address sticky`
			`switchport port-security`
			`\end{verbatim}`

			`\noindent`
			`trust arp packets from g0/0 (\texttt{CoreRouter})`
			`\begin{verbatim}`
			`en`
			`conf t`
			`in g0/0`
			`no shut`
			`ip arp inspection trust`
			`end`
			`#`
			`# verify`
			`#`
			`show ip arp inspection interfaces g0/0`
			`\end{verbatim}`

			`\noindent`
			`trust arp packets from g0/3 (\texttt{INTRA})`
			`\begin{verbatim}`
			`en`
			`conf t`
			`in g0/3`
			`no shut`
			`ip arp inspection trust`
			`end`
			`#`
			`# verify`
			`#`
			`show ip arp inspection interfaces g0/3`
add partial solution files 2022-05-15 20:28:48 +02:00			`\end{verbatim}`