Translate

Tuesday, 6 January 2015

Internet Security Issues and Prevention (DHCP Snooping)

Internet has various Security issues like

  • DNS attack- It involves no authentication as the original website has been attacked.
  • Phising - It involves in security breach of entering login information on fake websites.
  • Spams - It includes all fake emails and messages, mostly sent through botnets of infected computers.
Protecting Layer 2-

  • Attacks on Switch- DHCP Snooping is the common attack where DHCP Servers are attacked. It is the man in the middle attack which migrates the traffic going to DHCP Server, by attacking it.
  • This can be prevented by protecting switch ports by not allowing offers & acknowledgement on untrusted ports.
SW1(config)# ip dhcp snooping vlan3

SW1(config)# ip dhcp snooping

SW1(config)# int g 0/1

SW1(config)# ip dhcp snooping trust

IN DHCP Snooping, it doesnt trust all access ports, we have to specify port as trusted ones.

No comments:

Post a Comment