Mastodawn

Страшно, когда не видно: аудит сетевых устройств

Представьте, что вы не знаете, какие устройства подключены к вашей сети, как они настроены и что там происходит. Страшно? Ещё бы! Многие компании как раз так и живут — не уделяют внимания аудиту сетевого оборудования. А зря. Без такой инвентаризации невозможно ни нормально управлять ИТ-инфраструктурой, ни защититься от угроз. Мы наблюдаем в инфраструктуре клиентов это так часто, что поняли – нужно выдать базу. Мы – это руководитель практики развития MaxPatrol Carbon Константин Маньяков и эксперт центра безопасности (PT ESC) Данил Зарипов, и в этой статье мы будем разбираться в ключевых аспектах аудита сетевых устройств, его роли в построении эффективного управления активами и повышении уровня защищенности ИТ-инфраструктуры.

https://habr.com/ru/companies/pt/articles/1016806/

#maxpatrol_carbon #ptesc #pci_dss #cdp #lldp #mitm #arpspoofing #edr #bgp #nat

Страшно, когда не видно: аудит сетевых устройств

Хабр

Bruce Simpson, Ph.D.Mar 8

This little post has been invaluable in bending the rules of #802.1D and getting my VMs to see the physical #LAN beyond with #802.1AB #LLDP. The "magic" MACs are now all in https://git.sr.ht/~bms/pcs/tree/master/item/pcs/packets/ethernet.py along with popular #hypervisor OUIs: https://interestingtraffic.nl/2017/11/21/an-oddly-specific-post-about-group_fwd_mask/

rvstaveren Feb 28

Tinkering with #LibreNMS’s geographical map. It has the ability to draw lines between location based on #lldp adjacency.

This works pretty neat but for 2 sites it doesn’t do it: Device X at site A has links to devices Y & Z at site B.

Libre sees and correctly links Y&Z in device X’s neighbour overview.
However, neither Y & Z link back to X and no line gets drawn.

Doing a cli & snmp “show lldp neigh” on X,Y, and Z shows that they do see each other. Is there something I’m missing here?

Hacker News May 28, 2025

A UEFI app that sends LLDP-MED pkt at boot to negotiate PoE+ power before the OS

https://roderickkhan.com/posts/2025-05-16-poe-uefi-solution

#HackerNews #UEFI #PoE #Power #LLDP #MED #Networking

Negotiating PoE+ Power in the Pre‑Boot Environment

Solving a boot-time power challenge on PoE+ x86 systems by creating our own UEFI app to handle LLDP power negotiation at the firmware level, allowing our machines to request higher power from network switches before the OS loads.

The Polymath's Playbook

Peter N. M. Hansteen May 7, 2025

LLDP daemon and tool committed to -current https://www.undeadly.org/cgi?action=article;sid=20250507045746 #openbsd #lldp #lldpd #networking

LLDP daemon and tool committed to -current

Peter N. M. Hansteen Apr 25, 2025

Introducing an OpenBSD LLDP daemon https://www.undeadly.org/cgi?action=article;sid=20250425082010 #openbsd #lldp #linklayer #networking #libresoftware #freesoftware

Introducing an OpenBSD LLDP daemon

Daniel Keer Mar 25, 2025

🆕🐇🕳️
I recently encountered an issue with a UniFi AP and an Aruba switch. I went down a rabbit hole and learned how PoE and LLDP work together.

Here's how I fixed it and what I learned along the way.

https://thedxt.ca/2025/03/poe-and-lldp/

#PoE #LLDP #UniFi #Aurba #Networking #HPE

PoE and LLDP

For the most part, PoE (Power over Ethernet) works perfectly with LLDP (Link Layer Discovery Protocol). I recently ran into a bizarre issue with a UniFi AP and an HPE Aruba switch where the AP would reboot under load. In this post, I will cover how I fixed it and everything I learned in this…

theDXT

Peter N. M. Hansteen Dec 19, 2024

FRAME sockets added to OpenBSD https://www.undeadly.org/cgi?action=article;sid=20241219080430 #openbsd #networking #frame #ethernet #lldp #bpf #development #freesoftware #libresoftware

FRAME sockets added to OpenBSD

Teri Radichel Sep 4, 2023

LLDP on Ubiquiti UDM Pro Causing Network Glitches?
~~
Random issues with network cutting out and attacks on LLDP
~~
#lldp #network #security #scan #spoof #udm #pro #ubiquiti #pfsense

https://medium.com/cloud-security/lldp-on-ubiquiti-udm-pro-causing-network-glitches-38d59637054c