On Tue, 17 Aug 2004, Simone Ricci wrote: > Surely, 802.1Q wasn't designed with security in mind...change tagging, > change vlan...
I have not used any ip-phones with vlan support but several switches. They all allow you to confgiure which tags are accepted on which ports. Can the phones be confifured to only allow untagged traffic on the port towards the pc? If one provides physical access to a port with a sertain lan segment, then that segment is vulnerable to a malicious user, be that through a vlan or a separate port in the wall. Peter _______________________________________________ Asterisk-Users mailing list [EMAIL PROTECTED] http://lists.digium.com/mailman/listinfo/asterisk-users To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
