IP/MPLS virtual private networks * Frame Relay link management and support for DS-1 and fractional DS-0 circuits * Address Resolution
Protocol mediation for IP interworking of Layer 2 VPNs * IP Connection Admission Control * VPLS * Support for Ethernet frames over DS-3 encapsulation * Flexible, plugable Gigabit Ethernet interface modules * Support for stringent security access for network administration and maintenance functions * Extensive network management data collection
These easily obtained tools will passively monitor a network for 'interesting' data and allow a hacker to intercept traffic not normally available (due to the Layer 2 switch) by 'poisoning' a host's Address Resolution
Protocol (ARP) cache.
Also, networking functionality, such as PING, Telnet and BOOTP address resolution
, can be incorporated -- essentially making NetLite part of the network.
Once clients are operational, it provides a centralized and redundant platform with signaling protocol mediation for the distribution of call setup information, including address resolution
, least-cost routing and quality of service information.
Security is important - Encryption, password protection, and Address resolution
allow users to secure their products' link to the network.
The following broadcast protocols are large consumers of bandwidth and they should be configured so they are limited to the subnetworks where they originate: Address Resolution
Protocol (ARP), Reverse Address Resolution
Protocol (RARP), and Boot Protocol (BOOTP).
The use case for Diameter signaling control has expanded well beyond centralized routing to include PCRF binding, LTE-to-LTE roaming, LTE-to-2G/3G roaming, and HSS address resolution
Examples of the tools used are Arpspoof, which redirects packets from a target host on the LAN to the intended host on the same LAN, by forging Address Resolution
Protocol replies to the target host; SSLStrip, to hijack HTTP traffic; Ettercap, a utility for sniffing, intercepting and logging; or Wireshark, a network protocol analyser used as a packet sniffer.
The vulnerabilities include spanning tree, VLAN tags, DHCP, the address resolution
protocol, IPv6 neighbor discovery, and the hot standby routing protocol.
VoIP interconnects are growing around the globe and service providers require scalable address resolution
as well as security and control at the interconnect borders," commented Seamus Hourihan, Vice President Marketing and Product Management, Acme Packet.