1. TCP: Transmission Control Protocol
2. UDP: User Datagram Protocol
3. ICMP: Internet Control Message Protocol
4. IP: Internet Protocol
5. 10BaseT: 10 Mpbs (10 Mega Buts Per Second)
6. 802.11: 2.4GHz / 1 or 2Mbps /
...
1. TCP: Transmission Control Protocol
2. UDP: User Datagram Protocol
3. ICMP: Internet Control Message Protocol
4. IP: Internet Protocol
5. 10BaseT: 10 Mpbs (10 Mega Buts Per Second)
6. 802.11: 2.4GHz / 1 or 2Mbps / DSSS or FHSS / 20 m indoors or 100 m outdoors 7. 802.11a: 5GHz 6-54mbps
8. 802.11b: 2.4 GHz / 11 Mbps
9. 802.11g: 2.4 GHz, 54 Mbps
10. 802.11n: 2.4GHz or 5GHz up to 600mbps
11. VLAN hopping attack: Based on dynamic trunk protocol. DTP is used for negotiating trunking on a link between 2 devices and for negotiating the type of trunking (802.1Q)
12. Double encapsulation VLAN hopping attack: As basic VLAN hopping sttack hs been defeated. Attackers has found a new way to implement VLAN Hopping
13. ARP Attacks: ARP is based on ARP spoofing. Gratuitous is used by host to announce their IP address to local network and avoid duplicate IP address
14. SPANNING TREE Attack: STP is used to maintain loop free topologies in a redundant layer 2 infrastructure. Messages are sent using Bridge Protocol Data Unit (BPDU).
The attacker send BPDU which can force a root bridge change and thus create a DOS condition on the network. The attacker also has the ability to see frames he couldn't. There are tools that are used to replay this attack (brconfig + macof).
A bad idea, would be to disable STP. Introducing loops would introduce another source of attack. There are two features which are called BPDU Guard and Root Guard. BDPU Guard disables interfaces using portfast upon detection of a BDPU message on the interface (spanning-tree portfast dpguard). Root Guard
disables interfaces who become the root bridge due to their BDPU advertisement (spanning-tree guard root).
[Show More]