Cisco Ethernet switch Manual de usuario Pagina 56
- Pagina / 84
- Tabla de contenidos
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
565656
© 2002, Cisco Systems, Inc. All rights reserved.
l2-security-bh.ppt
STP Attack Mitigation
¥ DonÕt disable STP, introducing a loop would become another attack
¥ BPDU Guard
Disables ports using portfast upon detection of a BPDU message on the port
Globally enabled on all ports running portfast
Available in CatOS 5.4.1 for Cat 2K, 4K, 5K, and 6K; 12.0XE for native IOS 6K;
12.1(8a)EW for 4K Sup III; 12.1(4)EA1 for 3550; 12.1(6)EA2 for 2950
¥ Root Guard
Disables ports who would become the root bridge due to their BPDU
advertisement
Configured on a per port basis
Available in CatOS 6.1.1 for Cat 29XX, 4K, 5K, and 6K; 12.0(7) XE for native IOS 6K,
12.1(8a)EW for 4K Sup III; 29/3500XL in 12.0(5)XU; 3550 in 12.1(4)EA1; 2950 in
12.1(6)EA2
CatOS> (enable)set spantree portfast bpdu-guard enable
IOS(config)#spanning-tree portfast bpduguard
CatOS> (enable) set spantree guard root 1/1
IOS(config)#spanning-tree guard root (or rootguard)
- Hacking Layer 2: Fun with 1
- Ethernet Switches 1
- ¥ Layer 2 Attack Landscape 2
- ¥ Summary and Case Study 2
- The Domino Effect 5
- The Numbers from CSI/FBI 7
- MAC Attacks 8
- MAC Address/CAM Table Review 9
- Normal CAM Behaviour 1/3 10
- Normal CAM Behaviour 2/3 11
- Normal CAM Behaviour 3/3 12
- CAM Overflow 1/3 13
- CAM Overflow 2/3 14
- CAM Overflow 3/3 15
- Catalyst CAM Tables 16
- CAM Table Full! 18
- ¥ Port Security 19
- Port Security Details 20
- VLAN ÒHoppingÓ Attacks 21
- Trunk Port Refresher 22
- 0100.0ccc.cccc 24
- Dynamic Trunk Protocol (DTP) 25
- Basic VLAN Hopping Attack 26
- Hopping Attack 27
- Outer Tag, Attacker VLAN 28
- Inner Tag, Victim VLAN 28
- Disabling Auto-Trunking 29
- Security Best Practices 30
- ARP Attacks 31
- ARP Refresher 32
- Gratuitous ARP 33
- Misuse of Gratuitous ARP 34
- A Test in the Lab 35
- ¥ ARP spoofing 36
- ¥ MAC flooding 36
- ¥ Selective sniffing 36
- ¥ SSH/SSL interception 36
- Arpspoof in Action 37
- More on Arpspoof 38
- Selective Sniffing 39
- SSL/SSH Interception 40
- Dsniff evolves: Ettercap 43
- Can It Get Much Easier? 44
- ARP Entries do not age out 46
- Community Ports 46
- Private VLAN Configuration 47
- More ARP Spoof Mitigation 49
- Spanning Tree Attacks 50
- Spanning Tree Basics 51
- STP Attack Mitigation 56
- VLAN Trunking Protocol (VTP) 57
- Potential VTP Attacks 58
- Layer 2 Port Authentication 59
- Dynamic VLAN Access Ports 60
- VMPS Architecture 61
- VMPS/VQP Attacks 62
- VMPS/VQP Attack Mitigation 63
- (TLS, MD5, OTP) 64
- 802.1X Port Authentication 65
- Other Attacks 66
- 0100.0ccc.cccc 67
- CDP Attacks 68
- DHCP Starvation Attacks 69
- Private VLAN Attacks 1/2 71
- Private VLAN Attacks 2/2 72
- PVLAN Attack Mitigation 73
- Nice Try 74
- Random Frame Stress Attack 75
- IP Telephony Considerations 76
- Switch Management 77
- Summary and Case Study 78
- Your Own Security Policy 80
- A Relevant Case Study 81
- A More Secure Alternative 82
- Lessons Learned 83
- Further Reading 84
Relacionado con productos y manuales para Redes Cisco Ethernet switch
Redes Cisco TES301 Guía de usuario
(98 paginas)
(98 paginas)
Redes Cisco 7300-6T3 Especificaciones
(50 paginas)
(50 paginas)
Redes Cisco 813 Especificaciones
(112 paginas)
(112 paginas)
Redes Cisco Aironet 340 Series Guía de usuario
(22 paginas)
(22 paginas)
Redes Cisco Engine 611 Especificaciones
(718 paginas)
(718 paginas)
Redes Cisco 3745 Guía de instalación
(32 paginas)
(32 paginas)
Redes Cisco 1003 - 1003 Router Manual de usuario
(34 paginas)
(34 paginas)
Redes Cisco uBR10-SRP-OC12SML Especificaciones
(236 paginas)
(236 paginas)
Redes Cisco UBR904 - Router - EN Especificaciones
(30 paginas)
(30 paginas)
Redes Cisco AIR-PCM352 - Aironet 350 Series 11Mbps Wireless LAN PC Card Adapter Manual de usuario
(6 paginas)
(6 paginas)
Redes Cisco ADSL Modem Router Manual de usuario
(12 paginas)
(12 paginas)
Redes Cisco MGX-FRSM-HS2 Guía de instalación
(44 paginas)
(44 paginas)
Redes Cisco UBR924 - uBR 924 Router Guía de instalación
(188 paginas)
(188 paginas)
Redes Cisco RPM-XF Especificaciones
(688 paginas)
(688 paginas)
Redes Cisco IAD2431-16FXS Guía de usuario
(94 paginas)
(94 paginas)
Redes Cisco 2613 Manual de usuario
(16 paginas)
(16 paginas)
Redes Cisco IOS Router Manual de usuario
(9 paginas)
(9 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.052 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales