[unisog] Network security police no hubs/switches/routers?

BACHAND, Dave (Info. Tech. Services) BachandD at easternct.edu
Mon May 23 19:07:02 GMT 2005

One issue we've seen is that many of the newer switches have a feature
called auto MDX.  In effect it adds cross-over ability to the port
negotiation process.  When a student does something swift, like plug a
cable into two ports, it can result in a considerable broadcast storm.

Dave Bachand 
Data Network Manager 
Information Technology Services 
Eastern Connecticut State University 
83 Windham Street 
Willimantic, CT 
Tel. (860)465-5376 



From: unisog-bounces at lists.sans.org
[mailto:unisog-bounces at lists.sans.org] On Behalf Of Vijay S Sarvepalli
Sent: Monday, May 23, 2005 9:29 AM
To: UNIversity Security Operations Group
Subject: [unisog] Network security police no hubs/switches/routers?

We have just spelled out some policies that no hubs/routers are to be
connected to the network.  There seems to be  a lot of 
resistance for this policy.  I know the technical reasons for not
allowing this, but anybody have a lay man explanation in their policy 
about "Why hubs/routers are not allowed on the campus network?" 

If you have one please do share.  If you have a strong network security
that limits what type of devices attach to the network, again 
in non technical terms please do share this as well. 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.dshield.org/pipermail/unisog/attachments/20050523/550626f4/attachment.htm

More information about the unisog mailing list