There are 2 common vlan attacks:
1. switch spoofing
2. double tagging
My question is: when the switch gets a double tagged frame doesn't it consider the frame an error and drops it?
Even more, does the Switch permit tagged frames as native vlan to enter an access port?
Let's assume the double frame gets to the end user in another vlan. The response frame can't get to the cracker in another vlan (native vlan) only if it is routed. So from my point of view this is only a theoretical attack. Am I right?
Has anyone tested it in a lab using real equipments?
Thank you for clarification.