• Skip to main content
  • Skip to primary sidebar

crackthe.net

SINCE 2010

  • Hacking
  • Security
    • Cloud Security
    • Network Security
    • OS Security
    • OT Security
    • SoC Security
    • Web Security
  • VPN
    • Filesharing
    • Streaming
  • Hosting
crackthe.net / Security / Network Security / Network Switch – Layer 2 Security Controls

Network Switch – Layer 2 Security Controls

  • Secure Shell Protocol (SSH): SSH to secure incoming/outgoing Telnet connections; support of SSHv1 and v2
  • Secure Sockets Layer (SSL): SSL to encrypt HTTP connections; advanced security for browser-based configuration via web interface
  • IEEE 802.1X: IEEE 802.1X access control on all ports; RADIUS for
    authentication, authorization and accounting with MD5 hashing; guest
    VLAN; dynamic VLAN assignment
  • Private VLAN edge: Layer 2 isolation between clients in the same VLAN (‘protected ports”); support multiple uplinks
  • Port security: Locking of MAC addresses to ports; limiting of the number of learned MAC addresses
  • IP source guard: Blocking access for illegal IP addresses on specific ports
  • Access control lists (ACLs): Drop or rate limitation of connections
    based on source and destination MAC addresses, VLAN ID, IP address,
    protocol, port, DSCP/IP precedence,TCP/UDP source and destination ports,
    IEEE 802.1p priority, ICMP packets, IGMP packets, TCP flag
  • RADIUS/TACACS+: Authentication, authorization and accounting of configuration changes by RADIUS or TACACS+
  • Storm Control: Multicast/Broadcast/Unicast storm suppression
  • Isolated Group: Allows certain ports to be designated as protected.
    All other ports are non-isolated. Traffic between isolated group members
    ist blocked. Trafficcan only be sent from isolated group to
    non-isolalted group.
  • Top 20 Network Security Tools
  • The Future of Network Security Is In The Cloud
  • Guide to Computer Network Security Free On Springer
  • Router – Layer 3 Security Controls
  • How to Stay Anonymous Online
  • Secure Access Service Edge (SASE)
  • Encrypted Network Analytics (ETA)
  • Deep Packet Inspection (DPI)
  • HIDS, HIDP, NIDS, NIDP

Primary Sidebar

posts

  • Best VPN Service Provider
  • Ethical Hacking Online Courses
  • IT Security Online Courses
  • CISSP Exam Preparation
  • CEH, LPT & OSCP Exam Preparation
  • Top Ethical Hacker Forums
  • Virtual Penetration Testing Labs
  • Managed WordPress Hosting
  • Best Public Torrent Sites
  • Best Filehoster
  • Seedbox Providers
  • WordPress Security
  • Premium Proxies (HTTP/S, SOCKS4/5)
  • Top 20 Network Security Tools

contact

If you have any questions, don’t hesitate to get in touch: mail [at] crackthe.net, XING or LinkedIn. You can also follow me on Twitter.
© 2010 - 2021 crackthe.net • Site Notice • Privacy Policy