RE: Layer 4 switch vs. firewall

[agetchel () kde state ky us]

...ala http://www.monkey.org/~dugsong/.

Thanks,
Abe

Abe L. Getchell - Security Engineer
Division of System Support Services
Kentucky Department of Education
Voice   502-564-2020x225
E-mail  agetchel () kde state ky us
Web     http://www.kde.state.ky.us/



> -----Original Message-----
> From: Drew Simonis [mailto:dsimonis () fiderus com]
> Sent: Tuesday, February 20, 2001 1:22 PM
> To: hesselsp () ashaman dhs org
> Cc: Tony Miedaner; firewall-wizards () nfr net
> Subject: Re: [fw-wiz] Layer 4 switch vs. firewall
>
>
> hesselsp () ashaman dhs org wrote:
> > I find this interesting.  I have not read anywhere about 
> someone getting
> > around VLAN'd switches.  I read on bugtrac that it might be 
> possible to
> > inject garbage packets into a different vlan, but I was not aware of
> > anyone doing anything useful with it.
>
>
> Well, he specified "physically present" and also said:
>
> > change your IP and hookup to the right port and you are 
> > talking to something.
>
> If you can plug your computer into any of the switch ports (assuming
> that they haven't turned off unused ports) you can do alot of bad
> things.  There is also a (very) theoretical possibility of overloading
> the switch CPU, possibly causing the switch to flatten out and start
> broadcasting packets out all ports.
> _______________________________________________
> firewall-wizards mailing list
> firewall-wizards () nfr com
> http://www.nfr.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards