Menu
▾
▴
Re: [IPCop-user] ARP spoofing/poisoning
|
From: Robert K. <Lit...@xs...> - 2008-03-31 19:17:10
|
On Fri, 2008-03-28 at 21:11 +0200, Stefanos E. Tsorakis wrote: > Does anybody know of a solution for ARP spoofing/poisoning.... > nowadays it seems that is harder to secure from the attacks from > within the GREEN than the RED... Ultimately given that ARP poisoning is a layer 2 attack the best place to protect against it is usually on layer 2 devices - that means your switches. If you have relatively modern managed switches it's worth checking the manuals for ARP protection/inspection. Not every vendor has it and those that do don't always include that feature in their cheaper models, but if it's there (and properly configured) it will stop these attacks dead. -- Robert Kerr |