[11832] in bugtraq
Re: VLAN Security
daemon@ATHENA.MIT.EDU (Roche-Kelly, Edmund B.)
Sat Sep 11 00:35:50 1999
Mime-Version: 1.0
Content-Type: text/plain
Message-Id: <A7942428AD51D211907500A0C9DEFBBDE60D51@MSGBOS627NTS.fmr.com>
Date: Wed, 8 Sep 1999 09:40:34 -0400
Reply-To: "Roche-Kelly, Edmund B." <Edmund.B.Roche-Kelly@FMR.COM>
From: "Roche-Kelly, Edmund B." <Edmund.B.Roche-Kelly@FMR.COM>
X-To: "Basil V. Dolmatov" <dol@EAST.RU>, BUGTRAQ@SECURITYFOCUS.COM
To: BUGTRAQ@SECURITYFOCUS.COM
> On Wed, 1 Sep 1999 bugtraq@SIS.ALPHAWEST.COM.AU wrote:
>
> > To Bugtraq,
> >
> >
> > If you MUST use them in a security context, ensure that the trunking
> > ports have a unique native VLAN number.
> I would spell it as: "Try not to use 802.1q VLANs as a..."
>
> If you have Cisco equipment at hand, you can use ISL for VLANs and
> trunking,
> which has no peculiarities mentioned in your posting...
>
Unless you use the new 9 port gig modules for the 5000 series, which do not
support
ISL trunking.
> >
>
> --------------------------------------
> Basil (Vasily) Dolmatov CCNP-Security, CCDA
> East Connection ISP, Moscow, Russia. (http://www.east.ru)
