RE: Locating switches in a multi-layer switching environment
- From: "Jacek Materna" <jmaterna@xxxxxxxxxxxxxx>
- Date: Fri, 23 Mar 2007 17:27:39 -0500
LLDP is trying to be standardized. If you're developing applications, that's the way to go since it encapsulates current and future layer2 procs.
Jacek Materna
Development Team Lead
VoIPshield Systems Inc.
16 Fitzgerald Rd, Suite 250
Ottawa, Ontario K2H 8R6
tel +1 (613) 224-4443 ext. 305
fax +1 (613) 224-3891
cell +1 (613) 878-6980
email: jmaterna@xxxxxxxxxxxxxx
SIP: 305@xxxxxxxxxxxxxx
www.voipshield.com
Security for VoIP
-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx] On Behalf Of Mathieu CHATEAU
Sent: Wednesday, March 21, 2007 4:20 PM
To: Lay, Rob; Jon R. Kibler; pen-test@xxxxxxxxxxxxxxxxx
Subject: Re: Locating switches in a multi-layer switching environment
hopefully or not, many switched run very outdated firmware :) and portfast
is not enabled by default :)
with this it's easy to now if portfast is on... plug the network, without
portfast you have to wait nearly 30s before getting network going through
Regards,
Mathieu CHATEAU
http://lordoftheping.blogspot.com
----- Original Message -----
From: "Lay, Rob" <Robert.Lay@xxxxxxxxxxxxx>
To: "Mathieu CHATEAU" <gollum123@xxxxxxx>; "Jon R. Kibler"
<Jon.Kibler@xxxxxxxx>; <pen-test@xxxxxxxxxxxxxxxxx>
Sent: Wednesday, March 21, 2007 4:32 PM
Subject: RE: Locating switches in a multi-layer switching environment
Hi
This would work in some cases but a lot of switch deployments now
configure user ports to shutdown if they receive spanning tree BPDUs (In
Cisco switches the feature is called BPDU Guard which is enabled by
default if the port is set for portfast) and so your activity would
become "Noisy" very quickly.
Switch spoofing is something which most major switch manufacturers
(Cisco, Juniper etc) are now aware of and as such features similar to
the above are becoming a) more common, and b) starting to be turned on
by default.
You may have more luck with Trunking, although again features such as
portfast will not allow trunk negotiation.
HTH
Rob
-----Original Message-----
From: listbounce@xxxxxxxxxxxxxxxxx [mailto:listbounce@xxxxxxxxxxxxxxxxx]
On Behalf Of Mathieu CHATEAU
Sent: 18 March 2007 09:20
To: Jon R. Kibler; pen-test@xxxxxxxxxxxxxxxxx
Subject: Re: Locating switches in a multi-layer switching environment
hello,
you might use open source tool to behave as a switch with your pc.
You can then try to access other vlan (trunking) or be in the spanning
tree
(which is the root one?)
Regards,
Mathieu CHATEAU
http://lordoftheping.blogspot.com
----- Original Message -----
From: "Jon R. Kibler" <Jon.Kibler@xxxxxxxx>
To: <pen-test@xxxxxxxxxxxxxxxxx>
Sent: Sunday, March 18, 2007 2:46 AM
Subject: Locating switches in a multi-layer switching environment
Hi,
A network recon question: When pen testing an environment that deploys
multi-layer switching, how can one reliably map the network and thedifferent
relative location of all of the switches?
Add to this VLANS... How can you map VLANs that are on the network,
especially if your access is but on one VLAN, and that VLAN is
than the switch management VLAN?------------------------------------------------------------------------
Thoughts, tools, tricks, white papers, etc. appreciated.
THANKS!
Jon Kibler
--
Jon R. Kibler
Chief Technical Officer
Advanced Systems Engineering Technology, Inc.
Charleston, SC USA
(843) 849-8214
This List Sponsored by: Cenzichttp://www.cenzic.com/products_services/download_hailstorm.php?camp=7016
Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
00000008bOW
------------------------------------------------------------------------
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=7016
00000008bOW
------------------------------------------------------------------------
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Need to secure your web apps?
Cenzic Hailstorm finds vulnerabilities fast.
Click the link to buy it, try it or download Hailstorm for FREE.
http://www.cenzic.com/products_services/download_hailstorm.php?camp=701600000008bOW
------------------------------------------------------------------------
- Prev by Date: Re: Locating switches in a multi-layer switching environment
- Next by Date: Re: When cat comes chasing...
- Previous by thread: RE: Locating switches in a multi-layer switching environment
- Next by thread: TOOL: LLTD implementation in Perl
- Index(es):
Relevant Pages
|
