Re: [Fwd: Layer 2 Switches]

[peyo <peyo () netbg com>]

Hi!

I suggest you to visit this link:
http://www.digitalsol.net/tinyip.htm

I have some pieces from this module 
and use them for similar function. 

I'm not sure, but the price is really low  per module (see the 
pricelist..maybe 20-22 USD), and 
attached to 8 port switch with RTL chipset you receive a really good 
manageable switch with port-based and 802.1q. BTW on this site you can find 
free software for tinyIP and switch control(via snmp) or of course you can 
write your own. 

The control module can be protected too via access MACs, skip broadcast 
option, 802.1q tag etc. Once you configure the switch, you can simply remove 
the control module(tinyIP) or can leave it connected(and have permanent 
online control).

Another suitable (and very useful for me:) ) function is, that tinyIP can 
restart the switch, if he become unreachable (echo reply loss). 

I hope, this can help.

Regards:
Peyo 






On Friday 01 October 2004 17:17, Chris Scott wrote:
> They may have features for improving security. For example:
> - restricting which switch ports can communicate with each other
> - defining MAC addresses to prevent flooding of frames to all ports
> - using VLANs to isolate a management network from the operational network
>
>
> -------- Original Message --------
> Subject: Layer 2 Switches
> Date: Thu, 30 Sep 2004 21:03:10 +0100
> From: Andy Paton <andy.paton () gmail com>
> Reply-To: Andy Paton <andy.paton () gmail com>
> To: security-basics () securityfocus com
>
> Hi All
>
> I'm building a new network & firewall implementation with a DMZ.
>
> I need basic L2 switch functionality in the DMZ and between the
> firewall, should I avoid the more expensive switches with management?
> as they have more potential for bugs/holes etc..
>
>
> Thoughts please,
> Andy

-- 
---
Peyo Todorov
senior network administrator
University of Mining and Geology
"St. Ivan Rilski"