CCENT/CCNA ICND1 Official Exam Certification Guide, Second Edition

This is the eBook version of the printed book.

LAN Switch Security: What Hackers Know About Your Switches
A practical guide to hardening Layer 2 devices and stopping campus network attacks

Eric Vyncke
Christopher Paggen, CCIE® No. 2659

Contrary to popular belief, Ethernet switches are not inherently secure. Security vulnerabilities in Ethernet switches are multiple: from the switch implementation, to control plane protocols (Spanning Tree Protocol [STP], Cisco® Discovery Protocol [CDP], and so on) and data plane protocols, such as Address Routing Protocol (ARP) or Dynamic Host Configuration Protocol (DHCP). LAN Switch Security explains all the vulnerabilities in a network infrastructure related to Ethernet switches. Further, this book shows you how to configure a switch to prevent or to mitigate attacks based on those vulnerabilities. This book also includes a section on how to use an Ethernet switch to increase the security of a network and prevent future attacks.

Divided into four parts, LAN Switch Security provides you with steps you can take to ensure the integrity of both voice and data traffic traveling over Layer 2 devices. Part I covers vulnerabilities in Layer 2 protocols and how to configure switches to prevent attacks against those vulnerabilities. Part II addresses denial-of-service (DoS) attacks on an Ethernet switch and shows how those attacks can be mitigated. Part III shows how a switch can actually augment the security of a network through the utilization of wirespeed access control list (ACL) processing and IEEE 802.1x for user authentication and authorization. Part IV examines future developments from the LinkSec working group at the IEEE. For all parts, most of the content is vendor independent and is useful for all network architects deploying Ethernet switches.

After reading this book, you will have an in-depth understanding of LAN security and be prepared to plug the security holes that exist in a great number of campus networks.



Download this eBook

CCNP ONT Official Exam Certification Guide

This is the eBook version of the printed book.

CCNP ONT Official Exam Certification Guide

Master all 642-845 exam topics with the official study guide
Assess your knowledge with chapter-opening quizzes
Review key concepts with foundation summaries
Practice with hundreds of exam questions on the CD-ROM

Amir Ranjbar, CCIE® No. 8669

CCNP ONT Official Exam Certification Guide is a best of breed Cisco® exam study guide that focuses specifically on the objectives for the Optimizing Converged Cisco Networks exam (642-845 ONT). Successfully passing the ONT 642-845 exam certifies that you have the knowledge and skills necessary to optimize and apply effective QoS techniques for converged networks.

CCNP ONT Official Exam Certification Guide follows a logical organization of the CCNP® ONT exam objectives. Material is presented in a concise manner, focusing on increasing your retention and recall of exam topics. You can organize your exam preparation through the use of the consistent features in these chapters. “Do I Know This Already?” quizzes open each chapter and allow you to decide how much time you need to spend on each section. Exam topic lists and concise Foundation Summary information make referencing easy and give you a quick refresher whenever you need it. Challenging chapter-ending review questions help you assess your knowledge and reinforce key concepts.