Gratuitous Address Resolution Protocol Protection; Extensible Authentication Protocol; Reinstalling An Ip Phone 2001 - Nortel 1110 Installation And Operation Manual

Nortel IP Phone 2001
Page 70 of 630

Gratuitous Address Resolution Protocol Protection

Extensible Authentication Protocol

Reinstalling an IP Phone 2001

553-3001-368 Standard 26.00
— Auto-Negotiate Capability: N
— Auto-Negotiate Completed: N
Gratuitous Address Resolution Protocol (GARP) Protection prevents the
IP Phone 2001 from GARP Spoof attacks on the network. In a GARP Spoof
attack, a malicious device on the network takes over an IP address (usually
the default gateway) by sending unsolicited (or Gratuitous) ARP messages,
thus manipulating the ARP table of the victim's machine. The malicious
device launches a variety of attacks on the network, resulting in undesired
traffic routing. For example, a GARP attack can convince the victim machine
that the malicious device is the default gateway. In this scenario, all traffic
from the victim's machine flows through the malicious device.
To enable GARP Protection during configuration, see Procedure 1,
"Configuring the IP Phone 2001" on page 52 or Procedure 1, "Installing an
IP Phone 2001 for the first time using DHCP" on page 62.
Extensible Authentication Protocol (EAP) is a general protocol that fulfills
the protocol requirements defined by 802.1x. For further information on
802.1x, see Appendix Appendix C:: "802.1x Port-based network access
control" on page 521.
You can reinstall an existing previously configured IP Phone 2001 on the
same system. For example, the IP Phone 2001 can be assigned to a new user
(new TN) or to an existing user who moved to a new subnet by changing the
TN of the IP Phone 2001.
August 2007
End of Procedure