Firewall Wizards: RE: VLAN Security

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Firewall Wizards mailing list archives

RE: VLAN Security

From: John Kougoulos <koug () intranet gr>
Date: Thu, 10 Jun 2004 19:41:24 +0300 (EEST)

* Never deliver VLAN 1 downstream (switchport trunk allowed vlan remove 1)



Is this possible? As far as I know you can not remove vlan 1 from a trunk
at least on a cisco switch. Even if it doesn't appear on the allowed
vlans, if you put a sniffer you will see traffic from vlan 1 and on show
spanning-tree you will see it running an STP instance for vlan 1.

Regards,

John


_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

By Date By Thread

Current thread:

Re: VLAN Security, (continued)
- Re: VLAN Security Mason (Jun 09)
- RE: VLAN Security Vinicius Moreira Mello (Jun 09)
- RE: VLAN Security Melson, Paul (Jun 08)
- RE: VLAN Security DCSIM Subscriptions (IA) (Jun 10)
  - RE: VLAN Security John Kougoulos (Jun 11)
    - RE: VLAN Security Carson Gaspar (Jun 14)
- RE: VLAN Security DCSIM Subscriptions (IA) (Jun 16)
- RE: VLAN Security Irwin Lazar (Jun 26)