![]() My question now is (if all the above is correct). ![]() Even though it will send it to all ports it's still a unicast. So the switch inspects it's CAM table looking for Host B's MAC and "says" i don't know where host B is at, so let me send the frame / packet to all ports. So because Host A knew the MAC address of Host B I'm more than sure that Host A sends out an unicast frame. Host A sends the packet, it arrives on the switch (it will not learn the port Host A is on, because the CAM table is full) but it will not find Host B's MAC address as well (I know, that it can be present, but let's assume that it's not). ![]() Host A has in his arp table the MAC address of host B. It fills up the whole MAC table ( 8.000, 16.000 entries, whatever).Now, Host A wants to connect to B (both on same switch, same VLAN). Now let's consider that I run a MAC flooding attack on the switch in question. If I'm not mistaken, in a switched environment a host will see all unicast (directly addressed to it), broadcast (within same VLAN) and multicast (when belonging to the multicast group) frames. Happy new year to all the support forums members!
0 Comments
Leave a Reply. |