VXLAN is an encapsulation protocol becoming more popular with cloud deployments these days. This talk will be a reminder that VXLAN encapsulation by itself does not have any security features, so networks must be protected by other means. The seriousness will be underlined using examples of injection and firewall circumvention with packet injection code examples including data and numbers from real life experiments.
If you dont protect your VXLAN decapsulation remote layer 2 injection attacks becomes a high risk.
also my patches for adding VXLAN header to hping3 will be released
MetadataTo be recorded?: Yes
URLs for VXLAN Security or Injection
No URLs found.
- Sunday Aug. 19 15:00 - 16:00 at Speakers Tent