Posted on 13th July 2008No Responses
Cisco Discovery Protocol Attacks






Security issues, especially if enabled on the serial interfaces.




How to disable CDP globally ?
no cdp run
How to disable CDP per interface ?
int s0/0
no cdp enable

Many tools to exploit Cisco CDP. For example some of these tools can generate a large number of CDP (multicast ) packets and fool other Cisco routers / switches into thinking that they are connected to 1000s of other Cisco devices.

While very useful for network management, this can lead to information leak by letting hackers/ intruders query your devices using CDP !




Category : Uncategorized.
You can follow any responses to this entry through the RSS 2.0 feed.
You can leave a response, or trackback from your own site.
Comments
No comments yet.
Leave a Response
XHTML: You can use these tags: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>