> > We found that under specific conditions it was possible to inject
> > frames into one VLAN and have them 'hop' to a different VLAN. This
> > is a serious concern if the VLAN mechanism is being used to
> > maintain a security gradient between two network segments. This
> > has been discussed with Cisco and we believe that it is an issue
> > with the 802.1q specification rather than an implementation issue.
This sounds more like an exploit and security vulnerability than anything
else. At least cisco is aware of this and is working on it. It would be
nasty if people could "hop" across from vlan to vlan bypassing all security
issues.
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
