Activity for ArpON
-
TechTune posted a comment on ticket #7
Hi Andrea, I’ve encountered a situation where multiple devices on our network are being spoofed and I’ve successfully been able to build ArpON for OpenWRT to protect against ARP spoofing for all devices on the network. However, during ARP spoofing, the CPU usage becomes pretty high. I’m curious if the solution mentioned above will be included in the upcoming 3.1-ng release. If so, do you have an estimated release date? If there’s a development version available with this patch I’d greatly appreciate...
-
Andrea Di Pasquale modified ticket #10
Error in building arpca.c
-
Error in building arpca.c
-
ARP query flood from ArpON
-
Trainy McTrainface posted a comment on ticket #6
I'm using daemontools to invoke arpon so I can't use -d. Daemontools has their own logging, with log rotation and such which it picks up from stdout. But when I do that I still get a log in /usr/local/etc. I'm running v2.6 but I've seen rumors of a version with a -f command-line arg, I think in Debian webpages. Can someone incorporate those changes back to SourceForge?
-
The file CMakeCache.txt in the build directory has a place to add CFLAGS, change it to include: CMAKE_C_FLAGS:STRING=-Wno-error=stringop-truncation -Wno-error=implicit-fallthrough -Wno-error=pointer-compare
-
The file CMakeCache.txt in the build directory has a place to add CFLAGS, change it to: CMAKE_C_FLAGS:STRING=-Wno-error=stringop-truncation -Wno-error=implicit-fallthrough -Wno-error=pointer-compare
-
The file CMakeCache.txt has a place to add CFLAGS, change it to: CMAKE_C_FLAGS:STRING=-Wno-error=stringop-truncation -Wno-error=implicit-fallthrough -Wno-error=pointer-compare
-
Ilario Gelmetti created ticket #10
Error in building arpca.c
-
Paul Wright created ticket #9
ARP query flood from ArpON
-
Limit ARP-requests
-
Hi Tobias, The DARPI implementation is a deterministic finite-state machine (FSM), which means for each state, there is a deterministic number of next finite states. Your ARP-storm is related to a misconfiguration of GARP settings on your Citrix LoadBalancer. Please, configure an appropriate configuration of GARP settings in order to send Gratuitous ARP with an acceptable time interval. Thanks
-
Tobias Karnat created ticket #8
Limit ARP-requests
-
Reduce CPU usage with epoll_wait()
-
Hi, I am going to accept and plan your patch for 3.1-ng, related to switch from old select() syscall implementation to new epoll() syscall implementation. In reference to SARPI, DARPI, and HARPI parameters, like those ones that you suggested, I am going to make them changeable by using parameters or configuration file. Thanks
-
duplicate logs
-
Hi, exactly! Please use the daemon mode. Thanks
-
we are seeing continues spike in CPU usage using ArpON
-
Hi, the timeout related to our Poll Mode Capture is absolutely one of the most important parameters in order to avoid ARP spoofing attack. For that reason, we designed and implemented a small timeout in ArpON. In Poll Mode Capture is absolutely normal to have more CPU consumption. It's constant but low. It's part of our design. Therefore, as your CPU consumption (around 2-3% on 1 CPU core) is absolutely acceptable and low on both UP and SMP CPU Architecture, we will not accept this patch. Thanks
-
Reduce CPU usage with epoll_wait()
-
mstudio posted a comment on ticket #6
I solved it by directly starting the binary with the parameters like a daemon: /usr/sbin/arpon -d -i eth1 --darpi Thanks for your help and congratulations. Excellent project
-
prakash ks modified a comment on ticket #6
I think u need to run it as daemon. This is how i applied patch --- a/src/config.h.in +++ b/src/config.h.in @@ -49,12 +49,12 @@ / * Log file. / -#define LOG_FILE "@ARPON_LOG@" +#define LOG_FILE "/opt/logs/arpon.log" / * Pid file. / -#define PID_FILE "@ARPON_PID@" +#define PID_FILE "/tmp/arpon.pid" to avoid default logging
-
This is how i applied patch --- a/src/config.h.in +++ b/src/config.h.in @@ -49,12 +49,12 @@ / * Log file. / -#define LOG_FILE "@ARPON_LOG@" +#define LOG_FILE "/opt/logs/arpon.log" / * Pid file. / -#define PID_FILE "@ARPON_PID@" +#define PID_FILE "/tmp/arpon.pid" to avoid default logging
-
Hi Andrea, further I digged the code and done profiling to figure out functions which is causing cpu performace. Check the attached diagram. Intf_capture and select() function is mainly contributing to the performance hit. Description automatically generated But I am able to reduce the constant CPU performance from 3-4 to 0.3-0.7 with the below findings: As I mentioned in earlier, these 2 Intf_capture and select() functions were contributing to higher CPU usage, Intf_capture is implemented to do...
-
duplicate logs
-
we are seeing continues spike in CPU usage using ArpON
-
Andrea Di Pasquale modified ticket #4
src/opt.c: In function ‘opt_setinterface’
-
This is a duplicate ticket of #1 fix gcc-7 compile errors: https://sourceforge.net/p/arpon/bugs/1/ So please look that ticket where you can find the patch (by Lukas Schwaighofer) that fix your errors. Thanks
-
Allow for capabilities enabled users to run arpon
-
fix minor man page spelling mistakes
-
fix gcc-7 compile errors
-
Strykar created ticket #4
src/opt.c: In function ‘opt_setinterface’
-
Victor "Nate" Graf created ticket #3
Allow for capabilities enabled users to run arpon
-
Lukas Schwaighofer created ticket #2
fix minor man page spelling mistakes
-
fix gcc-7 compile errors
-
3.0-ng release
-
ArpON released /arpon/ArpON-3.0-ng.tar.gz
-
-
-
-
-
-
-
-
-
-
1
