GSO Full Disclosure Archives: Re: [Full-Disclosure] MPLS Securit

From: Nicolas FISCHBACH <nicolist@securite.org>
Date: Tue Dec 02 2003 - 03:27:35 CST

Nicob wrote:
> On Thu, 2003-11-27 at 17:48, IndianZ wrote:
>
>>Does anybody know more about MPLS Vulnerabilities and what to/how to
>>pentest in a MPLS architecture? Any input about tools, hints and tricks is
>>welcome...
>
> You may find this useful :
> http://www.securite.org/presentations/ripe46/COLT-RIPE46-NF-MPLS-TrafficShunt-v1.pdf

This presentation is actually about MPLS-based traffic diversion :)

MPLS security is discussed here (slides 46+):
[PPT] http://www.securite.org/presentations/secip/BHUS-IPBackboneSecurity.ppt
[PDF] http://www.securite.org/presentations/secip/BHUS-IPBackboneSecurity.zip

Also, have a look at Michael's I-Ds on MPLS Security (local copies):
http://www.securite.org/nico/XP/draft-behringer-mpls-security-05.txt
http://www.securite.org/nico/XP/draft-behringer-mpls-vpn-auth-03.txt

Nico.

-- 
Nicolas FISCHBACH (nico@securite.org) <http://www.securite.org/nico/>
Senior Manager - IP Engineering/Security - COLT Telecom
Securite.Org Team <http://www.securite.org/>
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Received on Tue Dec 02 04:06:34 2003

This archive was generated by hypermail 2.1.8 : Tue Dec 02 2003 - 05:01:00 CST

Re: [Full-Disclosure] MPLS Security