Switching

What is an UPLINK port?

René Jorissen on October 21, 2008 • 0 Comments • Tags: #0x9000 #keepalives #trunk #uplink

A colleague recently encountered some problems with keepalives on switch ports. He wrote a post about it. Keepalives are, quoted from his blog post: By default Cisco routers and switches periodically test their (Fast) Ethernet links by sending out Loopback frames (ethertype 0×9000) addressed to themselves. Call it a “L2 self-ping” if you will. In … Read More

Switching

Fiber optics and UDLD

René Jorissen on October 20, 2008 • 0 Comments • Tags: #aggressive #bpdu #detection #fiber #forwarding #learning #link #listening #mode #normal #optics #stp #udld #unidirectional

UDLD (Unidirectional Link Detection) is a protocol to help prevent forwarding loops in switched networks. A fiber cable is build from two separate fibers (transmit and receive), where one of the two fiber could fail, which would result in a switch port not able to receive or send traffic. This scenario could result in some … Read More

Configuration Example, Routing, Security, Switching

Secure HSRP configuration

René Jorissen on July 25, 2008 • 2 Comments • Tags: #authenticate #cdp #clear #dtp #hsrp #keystring #md5 #preempt #priority #spoofing #standby #text #timeout #wireshark #yersinia

A friend of mine works for a well known auditing and penetration testing company in the Netherlands. Recently we were talking about how he starts looking for flaws in network infrastructures. My friend told me that the first thing he does is simply starting WireShark and start looking at all the packets he receives. By … Read More

Switching

IBM Blade with Nortel and HP switches

René Jorissen on July 23, 2008 • 0 Comments • Tags: #blade #channel #hp #ibm #lacp #nortel #problems #switches #vrrp

Today I had to troubleshoot an IBM Blade system. The customer was complaining that all servers, except one, weren’t able to communicate with the rest of the network. The blade system contains two Nortel switches. Each Nortel switch is connected with a 3 Gbps LACP channel to separate HP switches. The HP switches are the … Read More

Configuration Example, Security, Switching

Layer 2 security

René Jorissen on July 6, 2008 • 2 Comments • Tags: #address #arp #attacks #bpduguard #dhcp #dynamic #hopping #inspection #ip #layer #mac #rootguard #source #spoofing #two #vlan

I attended the session layer 2 security, because I had some discussions about layer 2 security with one of my colleagues. We were discussing about using layer 2 security and especially implementing it in the environments from our customers. Looking at my/our customers, I don’t see environments where layer 2 threats would be immediate. But … Read More

Switching

HP Blade Switch Development

René Jorissen on May 2, 2008 • 1 Comment • Tags: #3120g #3120x #blade #stack

Maybe old news for some of you, but HP has developed the Cisco switches for the HP Blade servers. The Cisco Catalyst Blade Switch 3120G and 3120X provide stacking functionality. This improves the functionality of the switches by creating a single switch from two physical switches. Source: The Cisco Catalyst Blade Switch 3120 Series Switches … Read More