Cisco 2975 - Catalyst LAN Base Switch Bedienungsanleitung PDF herunterladen (Seite 7)

MAC Address Flooding Attacks

Port Security Limits MAC Flooding

Attack and Locks down Port and

Sends an SNMP Trap

00:0e:00:aa:aa:aa

00:0e:00:bb:bb:bb

00:0e:00:aa:aa:aa

00:0e:00:bb:bb:bb

“Script Kiddie” Hacking Tools

Enable Attackers Flood Switch

CAM Tables with Bogus Macs;

Turning the VLAN into a “Hub”

and Eliminating Privacy

Switch CAM Table Limit of 32K

Mac Addresses

Only 3 MAC

Addresses

Allowed on

the Port:

Shutdown

132,000

Bogus MACs

Problem:

Solution:

Port Security

√

1 MAC Address

What It Does:

Limits the number of MAC addresses that are able to connect to a switch

and ensures only approved MAC addresses are able to access the switch.

Benefit:

Ensures only approved users can log on to the network.

Additional MAC

Address

Additional MAC

Address

1 2 3 4 5 6 7 8 9 10 11 12 ... 28 29

Keine Kommentare

Cisco 2975 - Catalyst LAN Base Switch Bedienungsanleitung Seite 7