Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Network sniffing on the wire - managed switches

From: "Mercurio, Michael D (Dante)" <michael.mercurio () verizonbusiness com>
Date: Mon, 29 Dec 2008 16:12:04 +0000
There is potential of sniffing by either ARP spoofing or MAC flooding. 
http://www.linuxjournal.com/article/5869

Most managed switches provide protection mechanisms for both through
some sort of port protection.

Good Luck,
M. Dante Mercurio, CISSP, CCNA  

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com]
On Behalf Of Tom Yarrish
Sent: Friday, December 26, 2008 2:11 PM
To: security-basics () securityfocus com
Subject: Network sniffing on the wire - managed switches

Hey all,
This may come off as somewhat of a newbie question, but it's one I've
been curious about.

When you are doing any sort of pen testing or sniffing on the wire, how
do you handle a managed switch scenario.  If you're connected to a
switch on one port, how can you monitor the traffic on the the other
ports if you're not in a monitor mode?  I've never understood how you
can sniff traffic other than the traffic from your machine to a
destination.

Thanks ahead of time,
Tom
Previous By Date Next
Previous By Thread Next

Current thread: