Seminariode Seguridad L2
-
Upload
christian-nieto -
Category
Technology
-
view
1.169 -
download
0
Transcript of Seminariode Seguridad L2
![Page 1: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/1.jpg)
1© 2005 Cisco Systems, Inc. All rights reserved.10849_Icons_May2005 Cisco Public
L2 Security Issues for small and medium enterprise
Joffre Pesántez V. Ing.
CCNA – CCDA – CCDP
CCNP – Comp Tia Linux +
![Page 2: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/2.jpg)
2© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
AGENDA
• Ataques comunes en Capa 2
• Asegurando sus equipos de Capa 2
![Page 3: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/3.jpg)
3© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Ataques comunes en Capa 2
![Page 4: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/4.jpg)
4© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Ataques Comunes en Capa 2
• MAC Attacks (CAM Table Overflow)
• DHCP Attacks
• ARP Attacks
• Spoofing Attacks
• Power over Ethernet Attack
• VLAN hopping
• General Countermeasures
![Page 5: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/5.jpg)
5© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Mac Attacks
![Page 6: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/6.jpg)
6© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
CAM Overview
![Page 7: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/7.jpg)
7© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Poblando la Tabla CAM (1)
![Page 8: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/8.jpg)
8© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Poblando la Tabla CAM (2)
![Page 9: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/9.jpg)
9© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Poblando la Tabla CAM (3)
![Page 10: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/10.jpg)
10© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
CAM Overflow
![Page 11: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/11.jpg)
11© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
CAM Overflow: Macof tool
![Page 12: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/12.jpg)
12© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
CAM Overflow: Macof tool
![Page 13: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/13.jpg)
13© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Mac Flooding using macof
![Page 14: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/14.jpg)
14© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Mack Attack: Contramedidas
![Page 15: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/15.jpg)
15© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
MAC Attack: Contramedidas
![Page 16: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/16.jpg)
16© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
MAC Attack: Contramedidas
![Page 17: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/17.jpg)
17© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
DHCP Attacks
![Page 18: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/18.jpg)
18© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
DHCP Overview
![Page 19: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/19.jpg)
19© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
DHCP Attack: Starvation
![Page 20: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/20.jpg)
20© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Countermeasures: Port Security
![Page 21: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/21.jpg)
21© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
DHCP Attack: Rogue DHCP Server
![Page 22: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/22.jpg)
22© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedida: VLAN access-list
![Page 23: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/23.jpg)
23© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedida: DHCP Snooping
![Page 24: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/24.jpg)
24© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedidas: DHCP Snooping
![Page 25: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/25.jpg)
25© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
ARP Attacks
http://www.oxid.it/downloads/apr-intro.swf
![Page 26: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/26.jpg)
26© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
ARP Attacks
![Page 27: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/27.jpg)
27© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedidas: Dynamic ARP Inspection
![Page 28: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/28.jpg)
28© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedidas: DAI
![Page 29: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/29.jpg)
29© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedidas: DAI
![Page 30: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/30.jpg)
30© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedidas: DAI
![Page 31: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/31.jpg)
31© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedidas: DAI
![Page 32: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/32.jpg)
32© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedidas: DAI
![Page 33: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/33.jpg)
33© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Spoofing Attack
![Page 34: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/34.jpg)
34© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Spoofing Attack
![Page 35: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/35.jpg)
35© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedida: IP Source Guard
![Page 36: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/36.jpg)
36© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedida: IP Source Guard
![Page 37: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/37.jpg)
37© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedida: IP Source Guard
![Page 38: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/38.jpg)
38© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Sumario
![Page 39: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/39.jpg)
39© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Spanning Tree Attack
![Page 40: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/40.jpg)
40© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Spanning Tree Basics
![Page 41: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/41.jpg)
41© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Spanning Tree Attack
![Page 42: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/42.jpg)
42© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Spanning Tree Attack
![Page 43: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/43.jpg)
43© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedidas: BPDU Guard
![Page 44: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/44.jpg)
44© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Contramedidas: Root Guard
![Page 45: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/45.jpg)
45© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
CDP Attack
![Page 46: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/46.jpg)
46© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
CDP Attack
![Page 47: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/47.jpg)
47© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
MATRIZ DE EQUIPOS
![Page 48: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/48.jpg)
48© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Más Contramedidas
![Page 49: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/49.jpg)
49© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Storm Control
![Page 50: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/50.jpg)
50© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Rate Limiting
![Page 51: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/51.jpg)
51© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Priority Policing
![Page 52: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/52.jpg)
52© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Secure Shell
![Page 53: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/53.jpg)
53© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Configuration File Security
![Page 54: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/54.jpg)
54© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Power Over Ethernet Attacks
![Page 55: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/55.jpg)
55© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
PoE Attacks
![Page 56: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/56.jpg)
56© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
PoE Attacks: Contramedidas
![Page 57: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/57.jpg)
57© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
PoE Attacks: Contramedidas
![Page 58: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/58.jpg)
58© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
VLAN HOPPING ATTACK
![Page 59: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/59.jpg)
59© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
VLAN HOPPING
![Page 60: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/60.jpg)
60© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
VLAN HOPPING: CONTRAMEDIDAS
![Page 61: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/61.jpg)
61© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
USANDO SU CATALYST PARA PROTEGERSE: ACLs
![Page 62: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/62.jpg)
62© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
TIPOS DE ACCESS LISTS
![Page 63: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/63.jpg)
63© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
TIPOS DE ACCESS LISTS
![Page 64: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/64.jpg)
64© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
CONFIGURING VACLs
![Page 65: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/65.jpg)
65© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
CONFIGURING VACLs
![Page 66: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/66.jpg)
66© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
CONFIGURING VACLs
![Page 67: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/67.jpg)
67© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
CONFIGURING VACLs
![Page 68: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/68.jpg)
68© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
CONFIGURING VACLs
![Page 69: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/69.jpg)
69© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
CONFIGURING VACLs
![Page 70: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/70.jpg)
70© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Monitoring VACLs – Capture Port
![Page 71: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/71.jpg)
71© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Monitoring VACLs – Capture Port
![Page 72: Seminariode Seguridad L2](https://reader034.fdocuments.in/reader034/viewer/2022052506/557adfb2d8b42a8f648b4fe6/html5/thumbnails/72.jpg)
72© 2005 Cisco Systems, Inc. All rights reserved. 10849_Icons_May2005 Cisco Public
Monitoring VACLs – Capture Port