× NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Announcements

Polls
What is your Experience with NETGEAR Insight cloud management?
Top Contributors

Repair security flaw

When there was given point that these series of switches (vlan capable) has serious security flaw, because switch management  interface is listening across all untaged ports, no matter of its vlan ID, your reply was : "This is by design and not a limitation of the GS108Ev3 switch since its category is a ProSAFE Plus Gigabit switch which adds a configuration layer to the standard unmanaged switch."

 

So please enlight us, what kind of designers designed this and how can you named it "Prosafe Plus" , because it's excatly the opposite.

 

Puprose of vlans in switch like this is to make separate L2 segments and prevents parties on different segments to communicate between each other and i guess we can agree on that.  Unfortunatelly thanks to your design, switch manageent is accessible to each party, just set up the right IP range and bingo, you can access the web and whole security is downgraded just to the security of switch web page and it's password. I still think that you can't be serious about this. This is serious security design flaw. You can't leave security of the l2 network segments relay just on "unbreakable" switch web management.

1 Comment
schumaku
Guru

This was essentially answered by @bradleyv over there https://community.netgear.com/t5/Idea-Exchange-For-Business/configure-the-VLAN-management-interface/... a few days before the request was posted.