Got it
Huawei Enterprise Support Community
Community Forums Transmission Network
THE MAC/IP address spoofi...

THE MAC/IP address spoofing of ACCESS

Latest reply: Dec 27, 2018 09:28:07 1211 7 10 0 0
View the author 1#

MAC/IP address spoofing




MAC/IP address spoofing is a very serious security threat. The essence of MAC address spoofing is that MAC address duplication occurs, which results in the learning and migration of MAC address of switching chip, and some users can not access the Internet. MAC address spoofing can be divided into the following two types:




(1) User's MAC address spoofing.




(2) MAC address spoofing of upstream network service servers (such as BRAS, DHCP server/relay, default gateway, etc.).




Because of the characteristics of Ethernet itself, MAC address information is public. Through scanning tools, users can easily access other users'MAC address information. If the same MAC address appears on different user ports of the device, it will cause the learning disorder of the MAC address and make the user unable to access the Internet. In order to enhance security, in broadband access networks, it is generally required to isolate user ports at access nodes: users under the same VLAN can not communicate with each other, but can only communicate with upstream sink ports. User port isolation can be achieved through private virtual local area network (PVLAN) technology. Not all switching chips support the function of PVLAN. Even if they support the function of PVLAN, it may cause the problem of MAC address duplication due to improper MAC address settings of devices, or users can obtain other users'MAC through other channels (such as "violent" MAC attempts). PVLAN technology itself is not enough to completely solve the problem of user-side MAC address spoofing

Like (10) Dislike (0) Favorite(0) Share Report
Previous: HOW to solve the user side MAC address spoofings
Next: Basic knowledge of fast entry broadband access network for beginners
(0) (0)
2#
xiaomumu
Created Dec 24, 2018 02:07:03

This post was last edited by xiaomumu at 2018-12-27 01:56. ACCESS MAC/IP address spoofing, what is the main cause? Can you elaborate on that?
View more
  • x
  • convention:
(0) (0)
3#
Yolanda_617
Created Dec 24, 2018 02:07:42

Nice share, hope we can learn more
View more
  • x
  • convention:
(0) (0)
4#
YOO
Created Dec 24, 2018 02:21:11

Such a good solution
View more
  • x
  • convention:
(0) (0)
5#
user_2915719
Created Dec 24, 2018 06:11:48

Network operators should be prepared for such problem otherwise it will cause huge security problems.
View more
  • x
  • convention:
(0) (0)
6#
wissal
MVE Created Dec 24, 2018 18:25:54

thanks
View more
  • x
  • convention:
(0) (0)
7#
dagui
Created Dec 27, 2018 00:45:50

MAC address spoofing of upstream network service servers (such as BRAS, DHCP server/relay, default gateway, etc.).Can you provide a more detailed explanation?
View more
  • x
  • convention:
(0) (0)
8#
Hain
Created Dec 27, 2018 09:28:07

Not all switching chips support the function of PVLAN. Even if they support the function of PVLAN, it may cause the problem of MAC address duplication due to improper MAC address settings of devices, or users can obtain other users'MAC through other channels (such as "violent" MAC attempts). PVLAN technology itself is not enough to completely solve the problem of user-side MAC address spoofing
View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.