Networking – Page 33 – How Does Internet Work

Spoofing Attacks – ARP Spoofing

Valter Popeskic February 22, 2012 Security - layer 2

How attacker can launch man in the middle attack using ARP spoofing and what is ARP spoofing?
Attackers can attempt to launch an attack by sending gratuitous ARP – GARP replies. GARP reply messages are sent from some device in the network to other without the prior receiving of a request for sending a ARP reply. Is an ARP reply without cause. This reply without cause can tell network devices that the attacker’s MAC address corresponds to specific IP addresses that is actually IP address of some other device in the LAN.

[Continue Reading...]

Prevent DHCP Server Spoofing by using DHCP snooping

Valter Popeskic February 21, 2012 Configuration, Security - layer 2

Function of DHCP

On our networks all the different clients will usually obtain their IP address information automatically, using DHCP – Dynamic Host Configuration Protocol. This is faster and more precise than having their IP address information statically configured by manually entering the IP address, subnet mast and Default gateway into PC.

DHCP Attack

To dynamically obtain IP address information, a client makes a DHCP request. A DHCP server sends back a DHCP response in which includes information as an IP address, subnet mask, and default gateway. If an attacker puts and false DHCP server in our LAN network, the rogue DHCP server can respond to a client’s DHCP request. Even if the rogue DHCP server and the actual DHCP server both respond to the request of our PC, the PC will use the rogue DHCP server’s response if it reaches the PC faster than actual DHCP server.

More about DHCP and about DHCP attack here. Let’s se the mechanisms to mitigate the attacks or prevent them fully:

DHCP snooping

The DHCP snooping feature on Cisco and Juniper switches can be used to mitigate a DHCP server spoofing attack. With this mechanism switch ports are configured in two different state, the trusted and untrusted state. If a port is configured to be trusted, it can receive DHCP responses. In other way, if a port is untrusted, it is not allowed to receive DHCP responses, and if a false attackers DHCP response attempts to enter an untrusted port, the port will be disabled.

[Continue Reading...]

Network – Computer network

Valter Popeskic February 20, 2012 Network Fundamentals

In information technology, a network is a series of places called nodes that are interconnected by some kind of communication. Networks can interconnect with other networks and contain subnetworks.

[Continue Reading...]

Routers hardware – How are the Routers made?

Valter Popeskic February 17, 2012 Equipment and tools

A router is basically a computer like PC. We we see now all about router hardware components and what are they doing inside router

Routers have many of the same hardware and software components that are found in computers:

RAM
ROM
CPU
Operating System

[Continue Reading...]

Routing – How are routers working?

Valter Popeskic February 15, 2012 Network Fundamentals

Routers job is to determine the best path for a packet across the network

The primary responsibility of a router is to forward packets to local or remote network by deciding the best path to send packets and then forward packets toward their destination using that path.

[Continue Reading...]

Category: Networking