Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: about CAM table overflow attack?

From: "Rick Zhong" <sagiko () gmail com>
Date: Wed, 19 Apr 2006 17:03:47 +0800
I am just curious whether this behaviour is still valid in newer
switches, like those IOS 12+ ... it sounds to me a very old tricks and
seems the successful rate for this type of attack is very lower
nowadays.



On 18 Apr 2006 20:11:45 -0000, inoutsec () gmail com <inoutsec () gmail com> wrote:

Basically what would happen is all traffic would be flooded to all ports.(No VLANS Yet) This would happen to only 
unkown traffic though, that is MAC addresses that are not in the CAM.

If the VLAN is configured then, only ports on the same VLAN would receive the broadcasts. The nature of VLANs prevent 
broadcast from being delivered to another VLAN.

Hopes this helps.

-------------------------------------------------------------------------
This List Sponsored by: Webroot

Don't leave your confidential company and customer records un-protected.
Try Webroot's Spy Sweeper Enterprise(TM) for 30 days for FREE with no
obligation. See why so many companies trust Spy Sweeper Enterprise to
eradicate spyware from their networks.
FREE 30-Day Trial of Spy Sweeper Enterprise

http://www.webroot.com/forms/enterprise_lead.php
--------------------------------------------------------------------------




-------------------------------------------------------------------------
This List Sponsored by: Webroot

Don't leave your confidential company and customer records un-protected.
Try Webroot's Spy Sweeper Enterprise(TM) for 30 days for FREE with no
obligation. See why so many companies trust Spy Sweeper Enterprise to
eradicate spyware from their networks.
FREE 30-Day Trial of Spy Sweeper Enterprise

http://www.webroot.com/forms/enterprise_lead.php
--------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: