Port Security Flashcards
What is dhcp snooping?
A rogue dhcp server can cause connection issues
Dhcp snooping only allows requests dhcp servers on ports you define
Will create an ip to mac table by tracking dhcp traffic to and from server
Arp inspection
Attacker pollutes arp table
Arp inspection drops any altered frames w/ no mapping
What is port bonding
Connects multiple links/channels, layer 3 treats it as one link
Combines 2-8 ports together b/w 2 swicthes to achieve more bandwidth and resiliency
What is port mirroring
Allows you to sniff traffic on network
Can see how a typical switch will read forwarding table and only send out destination port
Good to use strategically for short periods
What is spanning tree protocol?
Creates topology base, removes redundant links(saves path), eliminates looping, finds shortest link
What is BPDU
Bridge protocol data unit
5 states of stp
Blocking- doesnt allow frames: default port mode
Listening: port listens to bpdu’s to make sure no loop, forwards data; doesnt populate mac table
Learning- learns all paths in network, populates mac table, doesnt forward data
Forwarding- sends and receieves data frame on bridged port
Disabled-doesn’t particpate in stp