The One Network Vulnerability You Can’t Avoid With A Traditional LAN

by | Nov 14, 2017 | Blog

We talk often about the security issues of a traditional copper-based network, but one vulnerability stands out – and it places every LAN at risk: the console port. This interface exists on nearly every managed switch and router for the purpose of directly configuring the device.

 

Switches and routers were originally designed with little thought for security of the console port. Over time, efforts have been made to secure the port via different password mechanisms, but it is impossible to eliminate all of the vulnerabilities of a port designed for direct configuration of the device. The only way to eliminate the vulnerability is to eliminate the console port, but that is too difficult as the devices require them for basic turn-up functionality.

 

How big is the risk? What is the impact? It’s bigger than you think. It drives up design and installation costs because you have to physically secure each device – each and every one. You also should be tracking  physical access to each device for auditing purposes should a breach occur. Think you have all of that covered? Are you sure?

 

I was in Florida recently staying at a new, popular brand hotel. The buttons on the elevator were a little confusing, and an accidental press of the wrong button caused the wrong elevator doors to open, revealing a network room doubling as a storage closet.

 

Hotel Closet.jpg

 

I had inadvertent access to the room – big problem. The hotel staff also had access to the room for storage – another big problem! Both are bad situations because of the console port problem. How do you think this facility would fare in a cybersecurity audit? I would guess higher cybersecurity insurance rates are in their future.

 

The issue is that console ports can open up huge vulnerabilities and they are all over the place in your network – unless you have Optical LAN. Why? Because Optical LAN was designed from the start to be centrally managed – the distributed devices have no console port or local configuration capability. Physical access to the device is not a risk. Their configuration isn’t stored locally and only comes from our centralized Panarama PON Manager.  Check out our Security Overview for details.

I’ll cover next week how this same room could be safely and securely used as a network and storage closet with no network vulnerability risk at all.

 

If you are looking for more information about how Passive Optical LAN reduces your network vulnerability risks, you can follow us through your favorite social media platform such as FacebookLinkedIn, Twitter, Instagram and Google+.

John Hoover

John Hoover

Marketing Director

News Releases

Corporate news releases recognizing significant achievements of Tellabs operations, products, solutions and customers.

Case Studies

Hear directly from our customers about their successful installations, quantifiable benefits and sincere testimonials.

Events

Up-coming conferences, seminars and webinars where Tellabs products, solutions and people will be actively participating.

Blogs & Articles

Read these short, and regularly updated, opinion pieces covering contemporary industry and technology topics.

White Papers

Download our non-vendor specific overviews meant to help readers understand an issue, solve a problem, or make a decision.

Videos

Media to educate and advocate our products, technologies or services, and offer direct insight into our customer references and user case studies.

Enterprise

Tellabs Optical LAN is a true enterprise centric solution that offers a better means of designing and operating networks inside buildings and across extended campuses.

Broadband

Tellabs 1000 MSAP (aka T1000, DMAX, AFC, UMC) is the industry’s only Broadband Digital Loop Carrier platform that converges legacy copper and modern fiber connectivity.

Technical Assistance Center

Address your questions and challenges quickly with our award winning TAC. Flexible support options to meet your needs.

Professional Services

From small projects to migrations to full turn key services, Tellabs is here to help.

Training

Preparation is the key to success.  Get your team ready to plan, deploy and manage your Tellabs Network. Check our our Training Curriculum today!

Credentials

You worked hard in Training, now it's time to show your new credentials off to the World through our Digital Credentialing Program!

Become a Partner

The Tellabs Advantage Partner Program is designed to offer our partners exceptional opportunities to grow your business, increase revenue and gain unique solution differentiation.

Find a Partner

For our end-customers, our Tellabs Advantage Partner Program offer best-in-breed services that match specific vertical markets and geographical regions with the end-customers exact needs in mind.

Leadership

Meet the Tellabs leadership team that represents diverse areas of expertise, and who are committed to exceeding the expectations of our employees, partners and customers.

Careers

Visit Tellabs’ online careers pages to see if there is a job opportunity that matches your ambitions. We offer excellent pay, benefits and career advancement possibilities.

Contact

Tellabs offer several easy options for contacting us. You can connect with us today via phone, email, online forms, or through social media channels.