Firewall Wizards mailing list archives

Re: Layer 4 switch vs. firewall

From: Drew Simonis <dsimonis () fiderus com>
Date: Tue, 20 Feb 2001 13:21:48 -0500

hesselsp () ashaman dhs org wrote:


I find this interesting.  I have not read anywhere about someone getting
around VLAN'd switches.  I read on bugtrac that it might be possible to
inject garbage packets into a different vlan, but I was not aware of
anyone doing anything useful with it.



Well, he specified "physically present" and also said:

change your IP and hookup to the right port and you are 
talking to something.


If you can plug your computer into any of the switch ports (assuming
that they haven't turned off unused ports) you can do alot of bad
things.  There is also a (very) theoretical possibility of overloading
the switch CPU, possibly causing the switch to flatten out and start
broadcasting packets out all ports.
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards

Current thread:

Layer 4 switch vs. firewall kince@hvbs (Feb 14)
- Re: Layer 4 switch vs. firewall Drew Simonis (Feb 15)
- Re: Layer 4 switch vs. firewall Tony Miedaner (Feb 15)
  - Re: Layer 4 switch vs. firewall istong (Feb 16)
  - Re: Layer 4 switch vs. firewall hesselsp (Feb 20)
    - Re: Layer 4 switch vs. firewall Drew Simonis (Feb 20)
    - Re: Layer 4 switch vs. firewall Crist Clark (Feb 20)
- <Possible follow-ups>
- RE: Layer 4 switch vs. firewall agetchel (Feb 20)
  - RE: Layer 4 switch vs. firewall hesselsp (Feb 20)
- RE: Layer 4 switch vs. firewall agetchel (Feb 20)