Gvrp and network security – Allied Telesis AT-8100 Series User Manual
Page 950
Chapter 62: GARP VLAN Registration Protocol
950
GVRP and Network Security
GVRP should be used with caution because it can expose your network to
unauthorized access. If a network intruder were to connect to a switch port
running GVRP and transmit a bogus GVRP PDU containing VIDs of
restricted VLANs, GVRP would make the port a member of the VLANs,
giving the intruder access to restricted areas of your network.
Here are a couple of suggestions to protect against this type of network
intrusion:
Activating GVRP only on those switch ports connected to other
GVRP devices. Do not activate GVRP on ports that are connected
to GVRP-inactive devices.
Converting all dynamic GVRP VLANs and dynamic GVRP ports to
static assignments, and then turning off GVRP on all the switches.
This preserves the new VLAN assignments while protecting
against network intrusion.
- AT-GS908M (54 pages)
- AT-x230-10GP (80 pages)
- AT-GS950/48PS (64 pages)
- AT-GS950/10PS (386 pages)
- AT-GS950/16PS (386 pages)
- AT-GS950/48PS (386 pages)
- AT-9000 Series (258 pages)
- AT-9000 Series (1480 pages)
- IE200 Series (70 pages)
- AT-GS950/48 (410 pages)
- AT-GS950/8 (52 pages)
- AT-GS950/48 (378 pages)
- AT-GS950/48 (60 pages)
- SwitchBlade x8106 (322 pages)
- SwitchBlade x8112 (322 pages)
- SwitchBlade x8106 (240 pages)
- SwitchBlade x8112 (240 pages)
- AT-TQ Series (172 pages)
- AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) (2220 pages)
- FS970M Series (106 pages)
- 8100L Series (116 pages)
- 8100S Series (140 pages)
- x310 Series (116 pages)
- x310 Series (120 pages)
- AT-GS950/24 (404 pages)
- AT-GS950/24 (366 pages)
- AT-GS950/16 (44 pages)
- AT-GS950/16 (404 pages)
- AT-GS950/16 (364 pages)
- AT-GS950/8 (404 pages)
- AT-GS950/8 (364 pages)
- AT-GS950/8 (52 pages)
- AT-8100 Series (330 pages)
- AT-FS970M Series (330 pages)
- AT-FS970M Series (1938 pages)
- SwitchBlade x3106 (288 pages)
- SwitchBlade x3112 (294 pages)
- SwitchBlade x3106 (260 pages)
- SwitchBlade x3112 (222 pages)
- AT-S95 CLI (AT-8000GS Series) (397 pages)
- AT-S94 CLI (AT-8000S Series) (402 pages)
- AT-IMC1000T/SFP (23 pages)
- AT-IMC1000TP/SFP (24 pages)
- AT-SBx3106WMB (44 pages)