Bugtraq mailing list archives
Re: DoS of LAN via D-Link switches
From: Scott Nelson <sbn () thermeon com>
Date: Wed, 30 Mar 2005 16:19:36 -0600
Neil Watson wrote:
From: Frank Bures [mailto:lisfrank () chem toronto edu] Sent: Tuesday, March 29, 2005 4:41 AMIn my opinion, a switch should be immune to this admittedly insane manipulation. Otherwise, one can DoS the entire network just by shorting two RJ-45 network outlets in one's office together.I believe what you are describing is officially called a bridge loop. Abridge loop occurs when a switch, or stack of switches are plugged intothemselves. The result is that the switches report the same MAC addressat multiple ports. The solution to this is called Spanning Tree Protocol. STP is a set of algorithms that help switches remove redundant MAC entries.
And it can be particularly hard to find. XO Communication's Irvine Data Center has been struggling with what they believe to be the same kind of problem for the last couple of days (and I've been struggling with connectivity).
Current thread:
- DoS of LAN via D-Link switches Frank Bures (Mar 29)
- RE: DoS of LAN via D-Link switches David Gillett (Mar 29)
- Re: DoS of LAN via D-Link switches Tarmo Mamers (Mar 29)
- Re: DoS of LAN via D-Link switches Neil Watson (Mar 30)
- Re: DoS of LAN via D-Link switches Joel Maslak (Mar 31)
- Re: DoS of LAN via D-Link switches Scott Nelson (Mar 31)
- Re: DoS of LAN via D-Link switches Tarmo Mamers (Mar 29)
- RE: DoS of LAN via D-Link switches David Gillett (Mar 29)