New Video from @JonGoodCyber Explores Network Switches and Advanced Security

In this video, JonGoodCyber delves into the different types of switches and their functionalities, as well as advanced concepts in security and network management. He begins by distinguishing between unmanaged and managed switches. Unmanaged switches are simple to use and require no configuration, making them ideal for small businesses or home offices. On the other hand, managed switches offer advanced features through a specialized operating system, allowing complex configurations via serial, SSH, or web interfaces.

JonGoodCyber explains the importance of access security on managed switches, emphasizing the need to configure robust usernames and passwords. He also discusses inband and out-of-band management options, as well as the importance of using HTTPS to secure web interfaces. Common configuration commands, such as show config, show interface, and show route, are also mentioned, with a particular focus on Cisco switches.

Port security is another key topic covered in the video. JonGoodCyber explains how port security can detect unauthorized MAC addresses and limit the number of devices connected to a port, thereby preventing unauthorized network expansion. He also mentions the "sticky" feature of Cisco switches, which allows dynamic capture of MAC addresses.

VLANs (Virtual Local Area Networks) are introduced as a solution to logically segment a switch into multiple networks, reducing broadcast traffic and enhancing security. JonGoodCyber explains how to configure VLANs and the importance of changing the default VLAN to strengthen security. He also covers the concept of trunking, which allows VLANs to communicate between different switches using the IEEE 802.1Q standard for port tagging.

Cisco's VTP (VLAN Trunking Protocol) is presented as a method to automate VLAN updates across multiple switches. JonGoodCyber explains the three VTP modes: server, client, and transparent, and how they interact to maintain VLAN configuration consistency.

To enable communication between different VLANs, JonGoodCyber discusses inter-VLAN routing options, including the use of multi-port routers or the "router on a stick" method with sub-interfaces. He also introduces multi-layer or layer 3 switches, which can perform routing functions in addition to standard switching functions.

The video also covers advanced concepts such as DHCP relay, voice VLANs for prioritizing voice traffic, and private VLANs for isolating traffic. JonGoodCyber explains how to troubleshoot VLANs by checking port assignments and switch configurations.

Finally, JonGoodCyber discusses several advanced features of multi-layer switches, such as load balancing, content switches, quality of service (QoS) policies, traffic shaping, and port bonding to increase throughput. He also mentions additional protective measures like intrusion detection and prevention systems (IDS/IPS), port mirroring, proxy servers, and AAA protocols for authentication, authorization, and accounting.

In conclusion, this video provides a comprehensive overview of switches and their advanced features, as well as best practices for securing and effectively managing a network. For more details, watch the full video at the following address: https://www.youtube.com/watch?v=-fNGY9iWJLA