Module 14: Layer Two Considerations

Question 1

What is Layer 2 on the OSI Model

Answer 1

Data Link (ethernet frames) - If layer 2 is compromised all layers above are too.

Question 2

What is the weakest link in the OSI Model

Answer 2

Layer 2

Question 3

What are some types of Layer 2 Attacks

Answer 3

Mac Table Attacks
VLAN Attacks
DHCP Attacks
ARP Attacks
Address Spoofing Attacks

Question 4

How to mitigate MAC Table Attacks

Answer 4

Port Security to limit the number of Valid MAC addresses allowed

Question 5

How to secure unused ports?

Answer 5

Disable all unused ports

Question 6

What is VLAN hopping?

Answer 6

a attacking host can gain access to all traffic on a VLAN that would not normally be accessible.

Question 7

How to mitigate VLAN hopping?

Answer 7

Disable DTP (autotrunking)

Question 8

What is DHCP Starvation Attack?

Answer 8

is to DOS connecting clients to the DHCP server

Question 9

What is a DHCP Spoofing Attack

Answer 9

when a rouge DHCP server is connected to the network and provides false IP configs.

Question 10

How to mitigate DHCP attacks

Answer 10

Enable DHCP snooping on trusted ports. Or limit the rate of the number of DHCP discovery messages a untrusted port can recieve.

Question 11

How to mitigate a ARP attack

Answer 11

Enable DAI (dynamic ARP inspection)