Chapter 10. Can We Bring VRRP Down?
Virtual Router Redundancy Protocol (VRRP) is the standard equivalent of Hot Standby Router Protocol (HSRP). The same vulnerabilities exist in VRRP as in HSRP with minor differences, such as denial of service (DoS), man in the middle (MITM) attack (rerouting traffic through the hacker’s PC), and some information leakage. Mitigation techniques, including strong authentication and the use of access control list (ACL), are also described to make VRRP a real high-availability solution instead of a DoS target.
Discovering VRRP
Even if you are familiar with how VRRP works, feel free to read on to refresh your knowledge or to gather new information, because this section focuses on specific points linked to the security ...
Get LAN Switch Security: What Hackers Know About Your Switches now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
