Security Basics mailing list archives

PortFast Question

From: Josh Sukol <secnews () gmail com>
Date: Fri, 24 Sep 2004 10:05:04 -0400

I am running a small network using four Cisco Catalyst 2950 switches. 
I am in the process of configuring a new software package that uses
some proprietary hardware that connects to the  network via Ethernet. 
When plugged into the network the device would connect for a minute or
two and than connectivity would drop (i.e. ping would fail, and the
light on the switch would turn from green to amber)  This pattern
continued for as long as the device was plugged into the network.  The
cabling was checked and tested with other equipment and there were no
other problems.

After trying several other things I eventually started changing the
ethernet port settings on the switch itself and found that by enabling
portfast the device functioned fine.  I have found very little
information about port fast security issues.  I was able to find and
did read up on PortFast BPDU guard and potential DoS using malformed
packets.  Are there any other security issues that effect me enabling
Portfast on specific ports that connect back to a single device?  Are
there any other ways to solve this problem that might allow me to
sidestep this potential security issues all together?

- Slightly Off Topic - 
If anyone knows why this behavior occurs and why enabling portfast
fixes the connectivity issue I would be very interested to a hear an
explanation.


Thanks in advance for the wisdom!

---------------------------------------------------------------------------
Computer Forensics Training at the InfoSec Institute. All of our class sizes
are guaranteed to be 12 students or less to facilitate one-on-one
interaction with one of our expert instructors. Gain the in-demand skills of
a certified computer examiner, learn to recover trace data left behind by
fraud, theft, and cybercrime perpetrators. Discover the source of computer
crime and abuse so that it never happens again.

http://www.infosecinstitute.com/courses/computer_forensics_training.html
----------------------------------------------------------------------------

Current thread:

PortFast Question Josh Sukol (Sep 24)
- Re: PortFast Question John R. Morris (Sep 28)
- <Possible follow-ups>
- RE: PortFast Question Stephen W. Corey - 5535 (Sep 27)
  - RE: PortFast Question Steve Fletcher (Sep 28)
- RE: PortFast Question LordInfidel (Sep 28)
  - RE: PortFast Question JGrimshaw (Sep 28)
    - Re: PortFast Question Maarten Claes (Sep 29)
  - Re: PortFast Question Sec News (Sep 28)
    - Re: PortFast Question Chris Moody (Sep 30)
  - RE: PortFast Question David Gillett (Sep 29)
- RE: PortFast Question Scherer, Brian (Sep 28)

(Thread continues...)