I am running a network with Cisco 2811 router connected to 3 catalyst 2960 switch
I don't have much knowledge in Cisco cli so I would need someone's assitance in making few small modifications
I would like to optimise and secure the local network by various mathod -
block untrusted dchp server from the lan
enable qos
disable various usages of applications (file sharing p2p)
secure network so anyone on lan cannot get any information or connect to the router.
Any other recommendation for securing this public network will be very useful.
So, as I understand, u need DHCP snooping, QOS, IOS firewall feature-set, blocking P2P ( I would need to check if this is possible with the gear that you have got), private vlan,security on the edge router and switches etc..I have ample experience on these SMB deployments, and would like to work with you to make your IT setup more secure and reliable. I am CCNP R&S, CCNP Security certified. Can fwd you the link for verfiication.
I'm a Cisco certified network engineer (CCNA, CCNP R&S) with 4 years of experience working in an ISP company.
I think I can be helpful for you or your business.
Karen