RE: discovering network layout at layer2

From: Brian_Peterson@Dell.com
Date: Wed Feb 11 2004 - 17:45:14 EST

• Next message: wjnorth: "RE: OPST vs CEH"
• Previous message: Harry de Grote: "Re: discovering network layout at layer2"
• Maybe in reply to: Dev: "discovering network layout at layer2"
• Next in thread: Dave Killion: "RE: discovering network layout at layer2"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Cisco's layer 2 discovery protocol is CDP, which is enabled by default. You
can either find a tool to enumerate devices using CDP or you can write a
script to ssh, rsh, or telnet in and issue the 'sh cdp neighbor detail'
command to learn about all directly connected layer 2 devices, then issue
the same command on those devices, etc., until you have it all mapped out.

-----Original Message-----
From: Dev [mailto:u02113@cs.unipune.ernet.in]
Sent: Friday, February 06, 2004 10:27 AM
To: pen-test@securityfocus.com
Subject: discovering network layout at layer2

Hello ppl,

I am new to this list. Plz redirect me to another list if this is not the
appropriate list to post to this query.

Having read the phrack article "Fun with the spanning tree protocol", I was
wondering as to how i could use some layer2 protocols to my advantage to
discover the network layout of my campus network (at layer 2).

Additionally, all equipment is CISCO.

Identification of my nearest switch is easily done by sniffing for STP BPDU
packets & i did receive the STP hello BPDU packets on the user port that our
gateway was connected to. This kind of packet gives me the following
information:

1) How many more STP -capable devices are there up to the root bridge (root
path cost)

2) The bridge & port ID & the root bridge & port ID.

Can somebody suggest how can i find out my network topology using this STP
protocol or some other layer2 protocol (CDP?? etc).

regards,
Devrat Mittal
u02113@cs.unipune.ernet.in
Department of computer Science
University of Pune
Pune.

---------------------------------------------------------------------------
----------------------------------------------------------------------------

---------------------------------------------------------------------------
Free trial: Astaro Security Linux -- firewall with Spam/Virus Protection

Protect your network with the comprehensive security solution that
integrates six applications for ease of use and lower TCO.

Firewall - Virus protection - Spam protection - URL blocking - VPN
- Wireless security.

Download 30-day evaluation at:
http://www.astaro.com/php/contact/securityfocus.php
----------------------------------------------------------------------------

• Next message: wjnorth: "RE: OPST vs CEH"
• Previous message: Harry de Grote: "Re: discovering network layout at layer2"
• Maybe in reply to: Dev: "discovering network layout at layer2"
• Next in thread: Dave Killion: "RE: discovering network layout at layer2"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:53:48 EDT