Hi,
I am trying to protect my internal network from cdp attacks, after the lots of trobleshooting I came to know the maximum cpu utilization of routes are rely on cdp, to desabling the cdp on specific interface is not a proper solution for this, I used port security and allow 4 mac addresses on each interface until to get the proper way to prevent this.
Is there any way to protect this type of attacks ?