| Channel | Publish Date | Thumbnail & View Count | Download Video |
|---|---|---|---|
 | Publish Date not found |  0 Views |
Layer 2 management protocols such as STP, MSTP, TRILL, SPB, CDP, VTP, HSRP, etc. should never be visible on user-facing ports. There are some technical challenges when implementing something like VOIP in a converged network solution, but other than that, exposing these protocols is an easy to find and obvious indication of misconfiguration.
In this short video, we'll take a quick introduction to Wireshark, review some of its features, and see simple ways to find these packets if they're visible. We also talk about how a network engineer or security engineer would remove traffic and identify interesting traffic that doesn't belong.
This video is an example of one of the labs covered in David Hoelzer's SANS Advanced Audit course (AUD507). Visit http://www.sans.org for more information!
Please take the opportunity to connect and share this video with your friends and family if you find it helpful.
