Copyright (c) 2026 MindMesh Academy. All rights reserved. This content is proprietary and may not be reproduced or distributed without permission.
5.2.1. DoS and Layer 2 Attacks
Denial of Service (DoS):
- DoS: Single source overwhelms target
- DDoS: Distributed sources (botnet) overwhelm target
- Amplification: Small request triggers large response (DNS, NTP)
Layer 2 Attacks:
| Attack | Method | Defense |
|---|---|---|
| MAC flooding | Overflow switch CAM table → switch floods all traffic | Port security (limit MACs per port) |
| ARP spoofing/poisoning | False ARP replies redirect traffic | Dynamic ARP Inspection (DAI) |
| VLAN hopping | Exploit trunk or double-tagging to access other VLANs | Don't use VLAN 1, change native VLAN |
Written byAlvin Varughese
Founder•15 professional certifications