Presentation is loading. Please wait.

Presentation is loading. Please wait.

حملات به شبکه های محلی و راه های مقابله

Published byVictor Ray Modified over 6 years ago

Similar presentations

Presentation on theme: "حملات به شبکه های محلی و راه های مقابله"— Presentation transcript:

1 حملات به شبکه های محلی و راه های مقابله
کوشا اسماعیل پور Koosha.id.ir

2 MAC Flood

3 macof

4 DHCP starvation

5 Sending DISCOVER packet

6 Port Security Switch(config)# interface interface_id
Switch(config-if)# switchport mode access Switch(config-if)# switchport port-security Switch(config-if)# switchport port-security maximum value Switch(config-if)# switchport port-security violation {protect | restrict | shutdown }

7 VLAN hopping 1-Switch spoofing 2-Double tagging

8 1-Switch spoofing

9 Enabling trunking

10 Switch(config-if)# switchport nonegotiate
1. Ensure that ports are not set to negotiate trunks automatically : Switch(config-if)# switchport nonegotiate OR 2. Ensure that ports that are not meant to be trunks are explicitly configured as access ports Switch(config-if)# switchport mode access

11 Double tagging

12 Sending .1Q double encapsulation

13 Switch(config-if)# switchport access vlan 2
Simply do not put any hosts on VLAN 1 Switch(config-if)# switchport access vlan 2 OR Change the native VLAN on all trunk ports to an unused VLAN ID. Switch(config-if)# switchport trunk native vlan 999 Explicit tagging of the native VLAN on all trunk ports. switch(config)# vlan dot1q tag native

14 STP Attack

15 Claiming Root Role

16 BPDU guard OR Root guard
SW1(config)#interface interface_id SW1(config-if)#spanning-tree bpduguard enable OR SW1(config-if)#spanning-tree guard root

17 CDP Flood

18 Disable or Turn Off CDP on Cisco Switches & Routers
Router(config)# no cdp run OR Router(config)# int interface_id Router(config-if)# no cdp enable

19 سال نو مبارک

Download ppt "حملات به شبکه های محلی و راه های مقابله"

Similar presentations

Mitigating Layer 2 Attacks

Mitigating Layer 2 Attacks
LAN Segmentation Virtual LAN (VLAN).

LAN Segmentation Virtual LAN (VLAN).
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 3: VLANs Routing & Switching.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 3: VLANs Routing & Switching.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Common Layer 2 Attacks and Countermeasures.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Common Layer 2 Attacks and Countermeasures.
Virtual LANs.

Virtual LANs.
Virtual LAN Számítógép hálózatok gyakorlata ÓBUDAI EGYETEM 2011 TAVASZI FÉLÉV 9. LABORGYAKORLAT PRÉM DÁNIEL.

Virtual LAN Számítógép hálózatok gyakorlata ÓBUDAI EGYETEM 2011 TAVASZI FÉLÉV 9. LABORGYAKORLAT PRÉM DÁNIEL.
Cisco 3 - Switch Perrine. J Page 15/8/2015 Chapter 8 What happens to the member ports of a VLAN when the VLAN is deleted? 1.They become inactive. 2.They.

Cisco 3 - Switch Perrine. J Page 15/8/2015 Chapter 8 What happens to the member ports of a VLAN when the VLAN is deleted? 1.They become inactive. 2.They.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Protecting Against Spoofing Attacks.

© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Protecting Against Spoofing Attacks.
Packet Tracer 6 Building a VoIP Network (Part 3)

Packet Tracer 6 Building a VoIP Network (Part 3)
1 Inter-VLAN routing Chapter 6 CCNA Exploration Semester 3 Modified by Profs. Ward and Cappellino.

1 Inter-VLAN routing Chapter 6 CCNA Exploration Semester 3 Modified by Profs. Ward and Cappellino.
1 © 2005 Cisco Systems, Inc. All rights reserved. 111 © 2004, Cisco Systems, Inc. All rights reserved.

1 © 2005 Cisco Systems, Inc. All rights reserved. 111 © 2004, Cisco Systems, Inc. All rights reserved.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Understanding Switch Security Issues.

© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Understanding Switch Security Issues.
Securing the Local Area Network

Securing the Local Area Network
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—3-1 Implementing Spanning Tree Describing STP Stability Mechanisms.

© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—3-1 Implementing Spanning Tree Describing STP Stability Mechanisms.
VLAN ROUTING How can we route traffic between vlans ? By Default Vlans isolate them selves. To Route Traffic we can use: 1. Router: A Router connected.

VLAN ROUTING How can we route traffic between vlans ? By Default Vlans isolate them selves. To Route Traffic we can use: 1. Router: A Router connected.
Break Switches - Configuring and Best Practices

Break Switches - Configuring and Best Practices
© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—2-1 Extending Switched Networks with Virtual LANs Configuring VLANs.

© 2006 Cisco Systems, Inc. All rights reserved. ICND v2.3—2-1 Extending Switched Networks with Virtual LANs Configuring VLANs.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Securing Network Services.

© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—7-1 Minimizing Service Loss and Data Theft Securing Network Services.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—2-1 Implementing VLANs in Campus Networks Configuring PVLANs.

© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—2-1 Implementing VLANs in Campus Networks Configuring PVLANs.
© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—2-1 Implementing VLANs in Campus Networks Applying Best Practices for VLAN Topologies.

© 2009 Cisco Systems, Inc. All rights reserved. SWITCH v1.0—2-1 Implementing VLANs in Campus Networks Applying Best Practices for VLAN Topologies.

Similar presentations

Ads by Google