Cisco ME-3400G-12CS-A-RF - Ethernet Access Switch Manual de usuario descargar pdf (Pagina 103)

104

Cisco PublicBRKBBA-2006

Potential Security Threats

 Security attacks generally fall into one of the following categories:

Intrusion: The attacker attempts to gain unauthorized access to

network resources, including traffic from other customers

Common Examples:

Rogue DHCP server

IP & MAC address spoofing

ARP spoofing (Man-in-the-Middle) Attack

Denial of Service (DoS): The attacker attempts to disrupt normal

network and service operations

Common Examples:

MAC attacks (CAM table overflow)

Broadcast storms

L2 PDU storm (STP, LACP, PAgP, etc..)

1 2 ... 98 99 100 101 102 103 104 105 106 107 108 ... 136 137

Fiber to the Home 1
Access Architectures 1
Housekeeping 2
FTTH Technologies 3
Exchange 4
Framework 4
Introduction to FTTH 5
FTTH Motivations/Drivers 6
OAN Example:Citynet Amsterdam 9
Voice SPs 10
Video SPs 10
Application SPs 10
Requirements for OANs 11
Generic EAN Model 13
Technologies 15
Next Generation Network 16
Broadband First Mile Options 16
Passive Optical 17
Networks 17
PON Architecture 18
Central Office 19
Serving Area 19
PON Protocol Overview 23
PON Flavors 24
 Port saving in the CO/POP 25
About Next-Gen PON: 26
GPON vendors say 26
GPON with DWDM solution 29
DWDM PON Architecture 30
Main Issues with PONs 33
PON CPE Aspects 35
Point-to-Point 36
Ethernet Star Architecture 37
Characteristics (a.k.a. P2P) 38
Secondary 41
LCC Cabinet 41
CPE Aspects 43
Deployment 45
Deployment models 46
FTTH Subscriber Connection 47
2. UTP Copper CAT V-VII 48
Interface Definitions 49
Customer Premises Equipment 50
Customer Premise Equipment 51
Analogue Phones 52
USER DEVICES 52
Video STB 52
In-House Connections 54
The Connected Home 54
HomePlug AV 55
Centralized POP Approach 56
Centralized Access Pop 58
New Mechanical Solution 59
Distributed Access 60
Decentralized Access 61
Architecture 62
Overview 62
SP Ethernet Access 63
Multi-Edge Architecture 64
Considerations 65
E-FTTH Design Considerations 66
Service Delivery 67
Centralized Access – All IP 69
Services Connectivity 72
Non Trunk UNI, N:1 VLAN 72
 Service Prioritization 73
Trunk UNI, N:1 Service VLAN 74
802.3, 802.11b/g 76
Open Access: 77
Single VLAN with 78
Policy Based Routing (PBR) 78
Per-SP VLAN Architecture 79
Per SP VLAN 80
Address Management 81
IP Address Management 82
Subscriber Provisioning 84
Generic Provisioning Platform 85
Subscriber Portal Example 95
Service Subscription 96
Subscriber Identification 97
 How does it work: 99
PPPoE Intermediate Agent 100
Design Considerations 101
Subscriber Isolation & 101
Security 101
Cisco PublicBRKBBA-2006 102
Potential Security Threats 103
Subscriber Security 105
Subscriber Security Solutions 106
Private VLAN 107
DHCP Security 109
DHCP Snooping 110
ARP attacks (ARP spoofing) 111
Solution: 112
Access Nodes Security 113
Security Concern: Solution 114
Port Security 116
Controlling multicast traffic 117
Options: 118
Infrastructure Security 120
Security Threats Solution 121
Network Resilience 122
Devil? (Not Anymore!) 124
Cisco Spanning Tree Toolkit 125
Resilient Ethernet Protocol 126
Cisco REP Solution 127
Deployment Example 127
REP is a Segment Protocol 128
Quality of Service (QOS) 129
FTTH QoS Strategy 130
QoS Mechanisms—Example 132
Meet The Expert 134
Recommended Reading 135
Thank You 136

Comentarios a estos manuales

Sin comentarios

Cisco ME-3400G-12CS-A-RF - Ethernet Access Switch Manual de usuario Pagina 103

Comentarios a estos manuales

Relacionado con productos y manuales para Los conmutadores de red Cisco ME-3400G-12CS-A-RF - Ethernet Access Switch