Cisco ME-3400G-12CS-A-RF - Ethernet Access Switch Manual de usuario Pagina 110
- Pagina / 137
- Tabla de contenidos
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
© 2009 Cisco Systems, Inc. All rights reserved.
111
Cisco PublicBRKBBA-2006
Risk :
• A rogue user spoof a DHCP server and send fake DNS, IP, Default. Gateway
DHCP request
DHCP request
DHCP Ack
DHCP Ack
X
X
√
√
Rogue Server
Trusted Port
Valid
DHCP
Server
Untrustred Port for
DHCP
Untrusted Ports
Prevent denial of service (DoS) attacks based on DHCP protocol
Malicious—user pretends to be the Network DHCP Server
Misconfiguration—user configures router (DHCP server) incorrectly
How it works:
The access switch only forwards DHCP requests from access ports (untrusted
ports); All other types of DHCP traffic from access ports is dropped
If the server is not local to the Catalyst Switch, trust the uplink port
DoS attack can be prevented by rate limiting the DHCP packets on access ports
DHCP Snooping
- Fiber to the Home 1
- Access Architectures 1
- Housekeeping 2
- FTTH Technologies 3
- Exchange 4
- Framework 4
- Introduction to FTTH 5
- FTTH Motivations/Drivers 6
- OAN Example:Citynet Amsterdam 9
- Voice SPs 10
- Video SPs 10
- Application SPs 10
- Requirements for OANs 11
- Generic EAN Model 13
- Technologies 15
- Next Generation Network 16
- Broadband First Mile Options 16
- Passive Optical 17
- Networks 17
- PON Architecture 18
- Central Office 19
- Serving Area 19
- PON Protocol Overview 23
- PON Flavors 24
- Port saving in the CO/POP 25
- About Next-Gen PON: 26
- GPON vendors say 26
- GPON with DWDM solution 29
- DWDM PON Architecture 30
- Main Issues with PONs 33
- PON CPE Aspects 35
- Point-to-Point 36
- Ethernet Star Architecture 37
- Characteristics (a.k.a. P2P) 38
- Secondary 41
- LCC Cabinet 41
- CPE Aspects 43
- Deployment 45
- Deployment models 46
- FTTH Subscriber Connection 47
- 2. UTP Copper CAT V-VII 48
- Interface Definitions 49
- Customer Premises Equipment 50
- Customer Premise Equipment 51
- Analogue Phones 52
- USER DEVICES 52
- Video STB 52
- In-House Connections 54
- The Connected Home 54
- HomePlug AV 55
- Centralized POP Approach 56
- Centralized Access Pop 58
- New Mechanical Solution 59
- Distributed Access 60
- Decentralized Access 61
- Architecture 62
- Overview 62
- SP Ethernet Access 63
- Multi-Edge Architecture 64
- Considerations 65
- E-FTTH Design Considerations 66
- Service Delivery 67
- Centralized Access – All IP 69
- Services Connectivity 72
- Non Trunk UNI, N:1 VLAN 72
- Service Prioritization 73
- Trunk UNI, N:1 Service VLAN 74
- 802.3, 802.11b/g 76
- Open Access: 77
- Single VLAN with 78
- Policy Based Routing (PBR) 78
- Per-SP VLAN Architecture 79
- Per SP VLAN 80
- Address Management 81
- IP Address Management 82
- Subscriber Provisioning 84
- Generic Provisioning Platform 85
- Subscriber Portal Example 95
- Service Subscription 96
- Subscriber Identification 97
- How does it work: 99
- PPPoE Intermediate Agent 100
- Design Considerations 101
- Subscriber Isolation & 101
- Security 101
- Cisco PublicBRKBBA-2006 102
- Potential Security Threats 103
- Subscriber Security 105
- Subscriber Security Solutions 106
- Private VLAN 107
- DHCP Security 109
- DHCP Snooping 110
- ARP attacks (ARP spoofing) 111
- Solution: 112
- Access Nodes Security 113
- Security Concern: Solution 114
- Port Security 116
- Controlling multicast traffic 117
- Options: 118
- Infrastructure Security 120
- Security Threats Solution 121
- Network Resilience 122
- Devil? (Not Anymore!) 124
- Cisco Spanning Tree Toolkit 125
- Resilient Ethernet Protocol 126
- Cisco REP Solution 127
- Deployment Example 127
- REP is a Segment Protocol 128
- Quality of Service (QOS) 129
- FTTH QoS Strategy 130
- QoS Mechanisms—Example 132
- Meet The Expert 134
- Recommended Reading 135
- Thank You 136
Relacionado con productos y manuales para Los conmutadores de red Cisco ME-3400G-12CS-A-RF - Ethernet Access Switch
Los conmutadores de red Cisco 3750G - Catalyst Integrated Wireless LAN Controller Especificaciones
(48 paginas)
(48 paginas)
Los conmutadores de red Cisco MGX 8260 Especificaciones
(588 paginas)
(588 paginas)
Los conmutadores de red Cisco 116T Manual de usuario
(29 paginas)
(29 paginas)
(138 paginas)© 2020, manymanuals.es. Todos los derechos reservados | 0.144 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales