- Title: ÜberGeek
- Status: Offline
- From: Fairfax, VA, USA
- Registered: 2008-07-28
- Posts: 33
Topic: VLAN Security
Last night I had a discussion with Tony about all sorts of VLAN attacks- hopping, arp attacks, etc.
As I thought this would be a good discussion topic for this category I would like to pose the question:
What methods, if any, do you all employ to prevent these forms of attacks from occurring on your networks?
- Title: Security Guru
- Status: Offline
- From: McLean Va, or Chicago IL
- Registered: 2008-08-01
- Posts: 6
Re: VLAN Security
I statically assign my MAC's that are my vital services. However that doesn't apply to corp. networks where machines are moved and your devices must accept Gratuitous arp's. However there should be some kind of limit or restriction on the number of MAC's and changes to a CAM table on a switch.
01101110 01100101 01110110 01100101 01110010 01100111 01101001 01110110 01100101 01110101 01110000
- Title: Resident USSRian
- Status: Offline
- Registered: 2008-08-01
- Posts: 2
Re: VLAN Security
alex wrote:What methods, if any, do you all employ to prevent these forms of attacks from occurring on your networks?
i personally wear a condom before entering the tubeseses....
other methods use chicken blood, gypsy tears, and in very, very severe cases, holy water and a cross, that ought to keep anyone secured.
all jokes aside, i've experimented with some nix modules on some routers that prevent cache poisoning, to some extent.
Posts [ 3 ]
Guest posting is disabled. You must login or register to post a reply.
