Q

Practical solution to prevent users from sniffing traffic

Can you please advice me of a practical solution to prevent users from sniffing traffic (revealing others data and passwords) inside my LAN. All switches and routers are Cisco, and the LAN contains more than 500 users.
One word: encryption! Encrypt your data using a strong cipher. Avoid using programs such as FTP, Telnet, Remote Shell (rsh), etc, which use clear text and can be easily sniffed. Instead, use Kerberos tickets for your LAN, private/public key pairs for transfers, VPN for remote connectivity, SSL for commerce site, and encryption (EFS) for Win2K. Prevent unnecessary services and ports from going through your routers and firewalls. Read through my series for security tips on configuring Secure FTP (SFTP) and SSH2 Server; protecting your border routers and firewalls; securing your web servers and database servers.
Kind regards,
Luis
This was first published in May 2003

Dig deeper on Network Monitoring

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

SearchSDN

SearchEnterpriseWAN

SearchUnifiedCommunications

SearchMobileComputing

SearchDataCenter

SearchITChannel

Close