[cisco-voip] VoIP Security

[Ronald Heitmann]

Hi,

what happens, if the PC behind the IP-phone sends 802.1Q-tagged 
ethernet-frames?

//Szenario: [PC]--[IP.Phone]--[Catalyst-Switch]

- will the phone discard these frames?
or will they get switched into the network?

In the second case, the hole trust-boundary-model will get compromised, 
even if I allow only the voice-vlan as tagged on the switchport, the pc 
can send frames directly into the voice-vlan.

just as discussion...

Regards,
//Ronald