Thread: Cat5e or what?
View Single Post
  #105   Report Post  
Posted to uk.d-i-y
The Natural Philosopher[_2_] The Natural Philosopher[_2_] is offline
external usenet poster
  
Posts: 39,563
Default Cat5e or what?
On 30/01/16 02:48, John Rumm wrote:
On 30/01/2016 00:38, The Natural Philosopher wrote:
On 30/01/16 00:25, dennis@home wrote:
On 29/01/2016 23:44, The Natural Philosopher wrote:
On 29/01/16 18:04, dennis@home wrote:
On 29/01/2016 17:02, The Natural Philosopher wrote:
On 29/01/16 16:44, dennis@home wrote:
On 29/01/2016 14:34, The Natural Philosopher wrote:

8

A VLAN will stop a device on one port talking to a device on another
port using a plain switch will not!

Actually it will.

No it won't!
Just download an IP address scanner app and it will find everything
(using IP) on any port.

Dennis. PLEASES read up about how a switch works, and why we HAVE
switches instead of repeaters. And why the little blinken lights on
your
switch do not all blink at the same time but in pairs, because packets
are not on all segments simultaneously.

For heavens sake admit you are wrong.
Switches are layer 2 devices and are transparent so everything is
visible whatever you claim.
Vlan switches are not as transparent.


Please dennis, stop making a fool of yourself an READ UP on how they
work.

Its embarrassing.

A leyer two router, is a switch and its NOT transparent.


I can assure you that you can ping every device connected to a switch
just as though they were connected to the same segment of ethernet.

So what? thats because they route the pings. I can ping almost every
device on te internet. That doesn't means I can read every packet on the
internet ..

Hmmm, its interesting that TNP has romped off on a tangent about whether
a switch will leak information flowing between two ports to other ports
not involved in the discussion (which generally it won't unless
instructed to port mirror), as if that alone will provide security.

I didnt say that at all.

PLEASE read waht I am saying., I have said all along that I cant see
what the point of 'secure house networks' is, and that the claims that
'Vlan segeregates traffic' are in fact silly, because a normal; s3witch
does that too.

But switches DO provide security. Maybe you haven't used a packet
sniffer on a coaxial ethernet network, but I have, You can read every
packet between every machine passively. YoOu can do that with a wifi
password as well . That simply cant be done with a switch unless you
have a backdoor into the switch.


Its
missing the elephant in the room that the switch will allow any device
on any port to make contact with any other device irrespective of the
ports its attached to, the IP subnet its on, or for that matter even the
higher level protocol being used.

In principle yes, *if it is actively configured especially to do so*.

My point is by the time you have someone who can do that inside your
home network, security is gone anyway.





So yes a switch may make it harder

*impossible*

for the outsider to eavesdrop on the
*established conversation between a PC and NAS for example. However it
will happily allow the outsider to talk to the PC or the NAS directly,
which makes the former a bit of a moot point.

Well hello.

I can talk to any web server on the internet directly too,. but guess
what, they all have passwords that people cant read or use because they
too cant intercept established traffic..or its encrypted.



And just because its perfectly possible to send a broadcast and get a
response back from every ethernet devices on a given network, doesnt
means that all those devices receive traffic OTHER than broadcasts on a
routine basiss.

How does that equate with your claim a switch will stop things talking
to each other?


I didn't say it would stop these talking to each other dennis. I said
that traffic between devices is not available to other devices and does
not occupy their segments.

Do9nt straw man me.

ISTR dennis said:

A VLAN will stop a device on one port talking to a device on another
port using a plain switch will not!

Which is true....

TNP countered that

Actually it will.

Which is clearly not true.

It is in the context of what was iunder discussion.

That dennis was maintaining tat all traffic was available on all
segments simultaneously.



Well, why dont *you* actually use google to check what you are saty9ing
before you make a fool of yourself?

When in glass houses?




--
How fortunate for governments that the people they administer don't think.

Adolf Hitler

Reply With QuoteReply With Quote