{"id":5025,"date":"2019-09-23T16:50:19","date_gmt":"2019-09-23T15:50:19","guid":{"rendered":"https:\/\/www.n-able.com\/?p=5025"},"modified":"2024-03-04T16:51:44","modified_gmt":"2024-03-04T16:51:44","slug":"vlan-hopping-security","status":"publish","type":"post","link":"https:\/\/www.n-able.com\/de\/blog\/vlan-hopping-security","title":{"rendered":"VLAN Hopping"},"content":{"rendered":"

Virtualization has become ubiquitous in the IT sector, and networking is no exception.\u00a0Virtual Local Access Networks<\/a>\u00a0(VLANs) are widely used in today\u2019s digitally driven environment. If you\u2019re a managed services provider (MSP) configuring VLANs for your clients, it\u2019s essential to be aware of VLAN security considerations and vulnerabilities. The primary threat that this type of network faces is VLAN hopping\u2014this article will explain how it works and how to prevent it.<\/p>\n

Is VLAN secure?<\/b><\/h2>\n

A Local Area Network (LAN) connects a group of computers in a single physical location to a server using Ethernet cables or wireless internet. In contrast, a VLAN is a group of devices on multiple LAN sections that behave as if they are on a single LAN. Computers in the VLAN may be separated by bridges, routers, or switches and may be housed in different locations. Compared to LANs, VLANs have the advantage of reducing network traffic and collisions, as well as being more cost effective.<\/p>\n

Moreover, a VLAN can also bring added security. When devices are separated into multiple VLANs\u2014often by department\u2014it\u2019s easier to prevent a compromised computer from infecting the entire network. Nevertheless, VLANs do come with some unique security risks that MSPs must keep in mind. The most important risk to consider is VLAN hopping.<\/p>\n

\n

Set your sights on the future of the MSP industry with the first ever MSP Horizons Report<\/a>, jointly produced by N\u2011able and international MSP-focused research firm, Canalys\u2026<\/strong>
\n\"\"<\/a><\/p>\n

\n

What is the easiest way for an attacker to perform VLAN hopping?<\/b><\/h2>\n

What is VLAN hopping? In a VLAN hopping attack, a hacker connected to one VLAN gains access to other VLANs that they do not have permission to enter. In a secure VLAN, each computer is connected to one switch access port. Each computer can only send traffic to their specific connected port by accessing a single VLAN. However, with VLAN hopping, an attacker is able to send packets to ports that are not normally accessible, penetrating other VLANs. VLAN hopping can be accomplished in one of two ways:<\/p>\n