Do not use on any
shared computer
July 25, 2008 12:37pm pdt
null
[x]
Attachment Details

VACL against IP Spoofing

Zones: Network Management, Network Switches & Hubs, Network Design & Methodology
Tags: Cisco
Hi,
It is a network from 20 Layer2 switches (24 , 48 ports). Network has security problems with IP Spoofing attacks. Using Layer2 switches, we can just link MAC address to port,  but not the IP.

How can we protect Layer 2 network against IP Spoofing with minimum investment?

I thought to buy a Cisco core switch with VALC feature. After that to configure each port of each L2 switch on separate VLAN. After that to make VACL rules on core switch against IP spoofing (to link IP with VLAN ID). In this case the clients from the same L2 switch will comunicate via L3 core switch. I don't know if L3 core switch will handle with such amount of traffic.

It is a good idea? Or could be anothe one?

Thanks
Start your free trial to view this solution
Question Stats
Zone: Networking
Question Asked By: simbure
Question Asked On: 04.25.2008
Participating Experts: 2
Points: 500
Views: 0
Translate:
Loading Advertisement...
 
[+][-]Expert Comment by donjohnston

Rank: Wizard

Expert Comment by donjohnston:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
[+][-]Author Comment by simbure
Author Comment by simbure:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
[+][-]Expert Comment by donjohnston

Rank: Wizard

Expert Comment by donjohnston:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
[+][-]Author Comment by simbure
Author Comment by simbure:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
[+][-]Expert Comment by donjohnston

Rank: Wizard

Expert Comment by donjohnston:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
[+][-]Expert Comment by donjohnston

Rank: Wizard

Expert Comment by donjohnston:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
[+][-]Expert Comment by harbor235

Rank: Master

Expert Comment by harbor235:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
[+][-]Expert Comment by donjohnston

Rank: Wizard

Expert Comment by donjohnston:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
[+][-]Expert Comment by harbor235

Rank: Master

Expert Comment by harbor235:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
[+][-]Expert Comment by donjohnston

Rank: Wizard

Expert Comment by donjohnston:

All comments and solutions are available to Premium Service Members only.

Start your 7-day free trial and see for yourself why Experts Exchange is the easiest and most proven technology resource in the world. Get Started

Already a member? Login to view this solution.

 
 
Loading Advertisement...
20080723-EE-VQP-34 / EE_QW_2_20070628