Does DOS attack impact switches (L2) or not? I came across an update from someone who mentioned the following:
Switches by default do hardware based switching so it should not impact the processor because of the increase in traffic. You would see fib entries rolling out at a high utilization rather than high cpu.
How accurate is this and can someone expain this in more details please?
Switches by default do hardware based switching so it should not impact the processor because of the increase in traffic. You would see fib entries rolling out at a high utilization rather than high cpu
so it should not impact the processor because of the increase in traffic.
Ummmm ... This is not necessarily true. Ok, let's not talk about exploit for now. Let's talk about a method of completely shutting down your network. My favorite is SNMP. Let's presume that your SNMP Read-Write community string is "private" (by default) and you haven't changed it. All I do is plug my laptop into a live port and get a valid IP address. What I then do is send an SNMP string to ERASE the config of your switch. My next string would be to reboot your switch.
The are several ways of making exploits to your network difficult. It's not foolproof but it will make malicious people work harder. Another way is to regularly check the Cisco Security Advisories and Responses.
All I can say is DON'T BE COMPLAISANT. The over-used/abused line of "this bug won't affect us because we don't use this feature", in the (very) fast pace of technology, doesn't hold water for me.
To go back to your query, bottom line is this: Who is paying the person who made the comment? IF it's you then you TELL the person to initiate security measures. Don't let your guard down or the next thing you'll know someone will tell you that your network has been compromised and it's all over the net.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...