1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Router/Switch Console Cable

Discussion in 'Networks' started by zimbo, Sep 27, 2008.

  1. zimbo
    Honorary Member

    zimbo Petabyte Poster

    5,215
    98
    181
    I just realised my laptop doesnt have a serial port for a console cable to the router - would a cross over ethernet cable do? :blink
     
    Certifications: B.Sc, MCDST & MCSA
    WIP: M.Sc - Computer Forensics
  2. r.h.lee

    r.h.lee Gigabyte Poster

    1,011
    52
    105
    zimbo,

    No.
     
    Certifications: MCSE, MCP+I, MCP, CCNA, A+
    WIP: CCDA
  3. zimbo
    Honorary Member

    zimbo Petabyte Poster

    5,215
    98
    181
    so whats the solution?
     
    Certifications: B.Sc, MCDST & MCSA
    WIP: M.Sc - Computer Forensics
  4. r.h.lee

    r.h.lee Gigabyte Poster

    1,011
    52
    105
    Certifications: MCSE, MCP+I, MCP, CCNA, A+
    WIP: CCDA
  5. Bluerinse
    Honorary Member

    Bluerinse Exabyte Poster

    8,871
    167
    256
    Question.. why do Cisco devices (allegedly some of the most advanced and sophisticated gear on the planet), still have to connect to computers for configuration purposes, via an outdated serial port? :blink
     
    Certifications: C&G Electronics - MCSA (W2K) MCSE (W2K)
  6. BosonMichael
    Highly Decorated Member Award

    BosonMichael Yottabyte Poster

    19,136
    462
    374
    You don't HAVE to... there's always Telnet. :thumbleft

    To be honest, I'd rather have console access restricted to someone with a console cable and a serial port (or serial-to-usb adapter)... anything that makes it all the more difficult for someone to mess with your routers in the unlikely event they were to get physical access to them.
     
    Certifications: CISSP, MCSE+I, MCSE: Security, MCSE: Messaging, MCDST, MCDBA, MCTS, OCP, CCNP, CCDP, CCNA Security, CCNA Voice, CNE, SCSA, Security+, Linux+, Server+, Network+, A+
    WIP: Just about everything!
  7. zebulebu

    zebulebu Terabyte Poster

    3,748
    330
    187
    Amen

    Once someone is actually IN your data centre, with a console cable, and connected directly into one of your routers, security isn't that much of an issue any more... they've already got the keys to the kingdom. I remember once having an argument with someone who said that it was (quote) 'ridiculously easy' to bypass the password on a Cisco router by 'simply' booting into default via the config register. He thought that this was a 'massive security flaw'. I'm not sure about anyone else, but I'd rather restrict a password recovery procedure to someone with physical access to the device and anyway, once they've managed to bypass your physical security, I'd be far more worried about what other damage they were going to cause!
     
    Certifications: A few
    WIP: None - f*** 'em
  8. hbroomhall

    hbroomhall Petabyte Poster Gold Member

    6,623
    115
    224
    I'd always assumed the reason for this console system is the problem of how you otherwise connect to a router when that router has *no* config. And with no config TCP/IP isn't going to work!

    Harry.
     
    Certifications: ECDL A+ Network+ i-Net+
    WIP: Server+
  9. sunn

    sunn Gigabyte Poster

    1,562
    24
    79
    Agreed.
    It is 'ridiculously easy' to get into a Cisco device if you have physical access, but that's the point. Physical access to a data center / server room is needs to be very restricted. Once a malicious person is in the server room, you're not concerned about router configs; you should be worried about a lot more!
    Availability; Confidentiality; and Integrity are all comproised at this point.
     
  10. Bluerinse
    Honorary Member

    Bluerinse Exabyte Poster

    8,871
    167
    256
    That seems logical :biggrin
     
    Certifications: C&G Electronics - MCSA (W2K) MCSE (W2K)

Share This Page

Loading...