Penetration Testing mailing list archives

Re: [PEN-TEST] Spoofing switched networks

From: Simon Waters <Simon () wretched demon co uk>
Date: Wed, 7 Feb 2001 01:42:21 +0000

Sam Quigley wrote:


Because they can, sometimes, be made to fail open.  Then, everything
is on one big LAN, and standard switch sniffing methods can reveal
all the network traffic.


This was a hot topic at one site I went to. Especially when looking at
the top end Netscreen Firewalls (and similar) where multiple virtual
firewalls sit on the same gigabit ethernet segments using VLAN's to
divide the traffic out at lower end switches nearer the hosted servers.

Some of the switch vendors are claiming that their VLAN implementations
are pretty tight. Certainly the managability benefits that this kind of
firewalling solution brings to hosting sites means we will see more
VLAN's used in fairly sensitive areas.

I'd be interested in knowing if anyone has breeched any VLANs, and if so
who's.

Current thread:

[PEN-TEST] Spoofing switched networks Salyars, Marty (Feb 04)
- Re: [PEN-TEST] Spoofing switched networks Robert van der Meulen (Feb 04)
  - Re: [PEN-TEST] Spoofing switched networks Brian Hartsfield (Feb 05)
- Re: [PEN-TEST] Spoofing switched networks Dave Ryan (Feb 05)
- <Possible follow-ups>
- Re: [PEN-TEST] Spoofing switched networks Chris St. Clair (Feb 04)
- Re: [PEN-TEST] Spoofing switched networks Lindqvist, Johan (Feb 06)
  - Re: [PEN-TEST] Spoofing switched networks Sam Quigley (Feb 06)
    - Re: [PEN-TEST] Spoofing switched networks Simon Waters (Feb 06)
    - Re: [PEN-TEST] Spoofing switched networks Nathan Catlow (Feb 07)
    - Re: [PEN-TEST] Spoofing switched networks shawn . moyer (Feb 06)
- Re: [PEN-TEST] Spoofing switched networks Eduardo_Campos (Feb 06)
  - Re: [PEN-TEST] Spoofing switched networks Shoten (Feb 06)
- Re: [PEN-TEST] Spoofing switched networks Jason Brvenik (Feb 06)
  - Re: [PEN-TEST] Spoofing switched networks Ryan Russell (Feb 06)