Ask the Expert

Practical solution to prevent users from sniffing traffic

Can you please advice me of a practical solution to prevent users from sniffing traffic (revealing others data and passwords) inside my LAN. All switches and routers are Cisco, and the LAN contains more than 500 users.

    Requires Free Membership to View

One word: encryption! Encrypt your data using a strong cipher. Avoid using programs such as FTP, Telnet, Remote Shell (rsh), etc, which use clear text and can be easily sniffed. Instead, use Kerberos tickets for your LAN, private/public key pairs for transfers, VPN for remote connectivity, SSL for commerce site, and encryption (EFS) for Win2K. Prevent unnecessary services and ports from going through your routers and firewalls. Read through my series for security tips on configuring Secure FTP (SFTP) and SSH2 Server; protecting your border routers and firewalls; securing your web servers and database servers.
Kind regards,
Luis

This was first published in May 2003

There are Comments. Add yours.

 
TIP: Want to include a code block in your comment? Use <pre> or <code> tags around the desired text. Ex: <code>insert code</code>

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
Sort by: OldestNewest

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to: