Manuals / TP-Link / Computer Equipment / Switch

TP-Link TL-SL5428E manual ARP Attack Cheating Gateway, ¾ Cheating Terminal Hosts

Models: TL-SL5428E

1 259

Page 174

Figure 11-10 ARP Attack – Cheating Gateway

As the above figure shown, the attacker sends the fake ARP packets of Host A to the Gateway, and then the Gateway will automatically update its ARP table after receiving the ARP packets. When the Gateway tries to communicate with Host A in LAN, it will encapsulate this false destination MAC address for packets, which results in a breakdown of the normal communication.

¾Cheating Terminal Hosts

The attacker sends the false IP address-to-MAC address mapping entries of terminal Host/Server to another terminal Host, which causes that the two terminal Hosts in the same network segment can not communicate with each other normally. The ARP Attack implemented by cheating terminal Hosts is illustrated in the following figure.

166

Page 174

Image 174

TP-Link TL-SL5428E manual ARP Attack Cheating Gateway, ¾ Cheating Terminal Hosts

Contents

Rev 1910010529 Copyright & Trademarks Contents Gvrp TC Protect 101 11.4.1 11.4.2 NtdpVII Package Contents Conventions About this GuideIntended Readers Overview of This GuidePath Switch, which facilitates you to monitor the Igmp messages Return to Contents Overview of the Switch Main FeaturesIntroduction Appearance Description Front Panel¾ LEDs Name Status Indication Rear Panel Login to the Switch LoginConfiguration Return to Contents System Summary SystemSystem Info ¾ Port StatusType ¾ Port InfoPort RateDevice Description ¾ Bandwidth Utilization¾ Device Description ¾ Time Config System Time¾ Time Info System IP User Manage User TableUser Config ¾ User InfoConfirm Password Retype the password Config RestorePassword User ID, Name, Access Level and status OperationConfig Backup Firmware Upgrade¾ Config Backup System Reboot System ResetAccess Security Access ControlIP Address&Mask ¾ Access Control Config¾ Session Config MAC AddressSSL Config ¾ Access User Number¾ Certificate Download SSH Config¾ Global Config ¾ Key DownloadIdle Timeout ProtocolMax Connect Download ¾ Configuration ProcedureKey Type ¾ Network RequirementsApplication Example 2 for SSH Page Return to Contents Port SwitchingPort Config Port SelectSpeed and Duplex Port MirrorDescription Flow ControlIngress ¾ Mirroring Port¾ Mirrored Port EgressPort Security ¾ Port SecurityPort Isolation Max Learned MACLearned Num ¾ Port Isolation List ¾ Port Isolation ConfigForward Portlist Select the port that to be forwarded to Forward Portlist Display the forwardlistLAG LAG TableGroup Number Aggregate Arithmetic¾ LAG Table Member¾ LAG Config Static LAGLacp Config LAG will delete this LAGSystem Priority ¾ Lacp ConfigAdmin Key Port PriorityTraffic Monitor Traffic Summary¾ Auto Refresh Traffic Statistics MAC Address Bound Type Configuration Way Aging outRelationship Address and the port¾ Search Option ¾ Address TableDisplays the corresponding Vlan ID of the MAC address MAC Address Displays the MAC address learned by the switchStatic Address ¾ Create Static AddressDynamic Address ¾ Static Address Table¾ Aging Config ¾ Dynamic Address TableFiltering Address Bind¾ Create Filtering Address ¾ Filtering Address TableVlan Vlan implementation802.1Q Vlan ¾ Link Types of portsVlan Config ¾ PvidDescription ： ¾ Vlan TableVlan ID Select Members Operation ：Is valid or not ¾ Vlan ConfigEnter the ID number of Vlan ¾ Vlan Members¾ Vlan Port Config Port Displays the port number¾ Vlan of Port Required. On the VLAN→802.1Q VLAN→Port Config page, setRequired. On the VLAN→802.1Q VLAN→VLAN Config Vlan DescriptionOptional. On the VLAN→802.1Q VLAN→VLAN Config MAC VlanPort Enable ¾ MAC Vlan TableMAC Select Required. On the VLAN→MAC VLAN→Port Enable Protocol Vlan¾ Create Protocol Vlan Protocol VlanProtocol Template ¾ Protocol Vlan Table¾ Create Protocol Template ¾ Protocol Template TableApplication Example for 802.1Q Vlan Application Example for MAC Vlan Required. On VLAN→802.1Q VLAN→Port Config page, configureRequired. On VLAN→802.1Q VLAN→VLAN Config page, create a Operation Description¾ Network Diagram ¾ Configuration Procedure Application Example for Protocol Vlan Required. On VLAN→Protocol VLAN→Protocol Template On VLAN→Protocol VLAN→Protocol Vlan page, create protocol Protocol type ValueVPN Config Vlan Mapping¾ VPN Up-link Ports ¾ Vlan Mapping Config ¾ Vlan Mapping TableRequired. On the VLAN→VLAN VPN→Port Enable Required. On the VLAN→VLAN VPN→VPN ConfigOptional. On the VLAN→VLAN VPN→VPN Config Required. On the VLAN→VLAN VPN→VLAN MappingGvrp ¾ Garp¾ Gvrp ¾ Port Config Select Port Status Registration ModeConfiguration Procedure Private Vlan¾ Features of Private Vlan ¾ The Elements of a Private Vlan¾ Private Vlan Implementation Pvid ¾ Packet forwarding in Private Vlan Pvlan Primary Vlan ¾ Create Private Vlan¾ Private Vlan Table Secondary Vlan¾ Private Vlan Port Table Port Select the desired port for configuration Port TypeRequired. On the VLAN→Private VLAN→Port Configure Required. On the VLAN→Private VLAN→PVLANApplication Example for Private Vlan Required. On the VLAN→802.1Q VLAN→VLAN Config page, click Spanning Tree ¾ STP Elements¾ STP Timers ¾ Bpdu Comparing Principle in STP mode¾ STP Generation Step OperationTips： ¾ Rstp Elements¾ Mstp Elements ¾ Port States ¾ Port RolesSTP Config STP ConfigHello Time Forward DelayVersion Max AgeSTP Summary Port Config STP SummaryIntPath PriorityExtPath Edge PortPort Role Region ConfigMstp Instance Port StatusInstance Config ¾ Region ConfigInstance Instance Port Config¾ Instance Table ClearInstance ID Path CostSTP Security Port Protect¾ TC Protect ¾ Bpdu Protect¾ Bpdu Filter TC Protect Loop ProtectRoot Protect Bpdu ProtectTC Protect 11 TC ProtectApplication Example for STP Function On Spanning Tree→STP Config→STP ConfigOn Spanning Tree→STP Config→Port Config On Spanning Tree→MSTP Instance→InstanceBridge of Instance Configure Switch D ¾ Suggestion for Configuration Multicast ¾ Multicast Overview¾ Multicast Address ¾ Multicast Address Table Multicast IP Port¾ Igmp Snooping Process Igmp Snooping¾ Igmp Snooping ¾ Igmp MessagesSnooping Config ¾ Igmp Snooping Fundamentals¾ Igmp Snooping Status Description Displays Igmp Snooping status MemberIgmp Snooping Fast LeaveLeave Time Router Port TimeMember Port Time Static Router PortMulticast Vlan Snooping→Snooping Config and Port ConfigMulticast→IGMP Snooping→VLAN Config Router Port¾ Multicast Vlan Vlan On the Multicast→IGMP Snooping→Snooping ConfigApplication Example for Multicast Vlan Multicast→IGMP Snooping→Multicast VlanSnooping→Snooping Config ¾ Configuration Procedure Step Operation DescriptionSnooping→Port Config Multicast IPMulticast IP Table Static Multicast IP¾ Create Static Multicast ¾ Static Multicast IP TableMulticast Filter IP-Range¾ Port Filter Config Port FilterPacket Statistics Multicast→Multicast Filter→IP-RangeMulticast→Multicast Filter→Port Filter ¾ Igmp Statistics ¾ Priority Mode QoS¾ QoS ¾ Schedule Mode 802.1Q frameSP-Mode Port Priority ¾ Port Priority ConfigDiffServ Displays the LAG number which the port belongs toSchedule Mode ¾ Schedule Mode Config¾ 802.1P Priority Config 3 802.1P Priority¾ Priority Level Dscp Priority Priority Level ¾ Dscp Priority ConfigIt ranges from 0 to Priority levels are labeled as TC0, TC1, TC2 and TC3¾ Rate Limit Config Bandwidth ControlRate Limit Storm Control Ingress Rate bpsEgress Ratebps Bps ¾ Storm Control ConfigBroadcast Rate Multicast Rate¾ Port Voice Vlan Mode Voice VlanNumber OUI Address Vendor ¾ Security Mode of Voice Vlan Packet Type Processing ModeGlobal Config 12 Global ConfigurationPort Mode 13 Port ConfigOUI Config Required. On QoS→Voice VLAN→Port Config Required. On VLAN→802.1Q VLAN→Port ConfigOptional. On QoS→Voice VLAN→OUI Config page, you Required. On QoS→Voice VLAN→Global ConfigTime-Range Summary ACLTime-Range IndexTime-Range Create ¾ Create Holiday ACL ConfigHoliday Config ¾ Holiday Table¾ Rule Table ACL SummaryACL Create ¾ Create ACLRule ID MAC ACL¾ Create MAC ACL EtherTypeFragment Standard-IP ACL¾ Create Standard-IP ACL MaskExtend-IP ACL ¾ Create Extend-IP ACLPolicy Config Policy SummarySelect Policy Policy CreateAction Create Desired policy, please click the Delete button11 Action Create ¾ Create ActionPort Binding Policy BindingBinding Table ¾ Policy Bind TableVlan Binding Direction Displays the binding directionEnter the ID of the Vlan you want to bind Application Example for ACL ¾ VLAN-Bind TableOn ACL→ACL Config→ACL Create page, create ACL On ACL→ACL Config→Standard-IP ACL page, select ACL Network Security IP-MAC BindingManual Binding Protect Type Select the Protect Type for the entry ¾ Manual Binding OptionEnter the Vlan ID ¾ Manual Binding TableARP Scanning End IP Address Dhcp SnoopingStart IP Address ScanNetwork diagram for DHCP-snooping implementation ¾ Dhcp Working Principle¾ Option Dhcp Cheating Attack Implementation Procedure ¾ Dhcp Cheating Attack163 Decline Threshold Decline Flow Control ¾ Option 82 Config¾ Port Config Port Select Customization Circuit ID Remote IDARP Inspection ¾ Imitating Gateway¾ Cheating Gateway 10 ARP Attack Cheating Gateway ¾ Cheating Terminal Hosts¾ Man-In-The-Middle Attack ¾ ARP Flooding Attack ARP Detect ¾ ARP Detect¾ Trusted Port ARP Defend Required. On the Network Security→IP-MACNetwork Security→ARP Defend ARP Statistics¾ ARP Defend SpeedIP Source Guard ¾ Illegal ARP Packet¾ IP Source Guard Config DoS DefendDoS Attack Type Description DoS Defend DoS DetectDetect 11.5Detect Time Attack Type¾ The Mechanism of an 802.1X Authentication System ¾ 802.1X Authentication Procedure178 179 ¾ 802.1X Timer ¾ Guest VlanGuest Vlan Authentication Method802.1X Guest Vlan IDSupplicant Timeout Server TimeoutRetry Times Control Type Control ModeRadius Server AuthorizedRequired. On the Network Security→802.1X→Radius On the Network Security→802.1X→Global Config802.1X Client Software Required. On the Network Security→802.1X→Port¾ Snmp Management Frame Snmp¾ Snmp Overview ¾ Snmp Versions¾ Snmp Configuration Outline ¾ MIB IntroductionSnmp Config ¾ Local Engine¾ Remote Engine View Type Snmp ViewMIB Object ID View Name¾ Group Config Snmp GroupSnmp User ¾ Group TablePrivacy Mode Auth ModeAuth Password Privacy Password¾ Community Config AccessSnmp Community MIB View Required. On the SNMP→SNMP Config→GlobalRequired. On the SNMP→SNMP Config→SNMP ¾ Community TableOn the SNMP→SNMP Config→SNMP NotificationUser TimeoutUDP Port RetryRmon ¾ Rmon GroupRmon Group Function Event Config History Control¾ History Control Table Alarm Config ¾ Event TableRising Threshold VariableSample Type Rising Event200 Cluster ¾ Cluster Role13.1 NDP Neighbor Info¾ Introduction to Cluster NDP Summary ¾ Neighbor¾ Neighbor Info ¾ Port Status Displays the port number of the switch NDPNDP Config Detail ：Aging Time Device Table Port Displays the port number of the switchNtdp Displays NDP status of the current portNtdp Summary Ntdp Summary Ntdp Config Ntdp Interval TimeNtdp Hops Enable ClusterCluster Summary ¾ Global Cluster ¾ Global Config Cluster¾ Cluster Config ¾ Member InfoSwitch 11 Cluster Summary for Member SwitchCluster Config ¾ Current Role¾ Role Change 14 Cluster Configuration for Commander Switch Member Config 16 Cluster Configuration for Individual SwitchDevice Name Cluster Topology¾ Create Member Member MAC18 Collect Topology ¾ Graphic ShowApplication Example for Cluster Function On Cluster→NDP→NDP Config page, enable NDP On Cluster→NTDP→NTDP Config page, enable220 Maintenance System MonitorCPU Monitor Memory Monitor 14.2 Log Time ContentLog Table ModuleRemote Log ¾ Local Log ConfigLocal Log Log BufferBackup Log ¾ Log HostHost IP Cable Test ¾ Backup LogDevice Diagnose ¾ Cable TestLoopback ErrorSwitch is available LengthPing ¾ Ping ConfigNetwork Diagnose Test¾ Tracert Config TracertSystem Maintenance via FTP Hardware InstallationConfigure the Hyper Terminal 232 Download Firmware via bootrom menu 5Port SettingsTP-LINK ifconfig ip 172.31.70.22 mask 255.255.255.0 gateway TP-LINK upgrade You can only use the port 1 to upgradeTP-LINK start Start User Access Login Appendix a Specifications Appendix B Configuring the PCs Configure TCP/IP component238 Now Installation Guide Appendix C 802.1X Client Software241 242 Uninstall Software Figure C-7 InstallShield Wizard CompleteConfiguration Figure C-10 Uninstall Complete245 Figure C-15 Connection Status FAQ Appendix D Glossary Ieee 802.1D Multicast SwitchingGroup Attribute Registration Protocol Garp Ieee 802.1QLink Aggregation Port AuthenticationRemote Authentication Dial-in User Service Radius Link Aggregation Control Protocol LacpSpanning Tree Algorithm STA Simple Network Management Protocol SnmpSimple Network Time Protocol Sntp Telnet