Re: arpwatch and more
Well, you could buy a managed switch from HP or Cisco. :-)
Personally, I have no idea how to do this sort of thing with Linux; but
it's probably better to do it at the backbone with a reliable switch than
to throw in extra servers with multiple network cards all over the place
(which would increase the point of failure several times...incoming cable,
NIC, server, NIC, outgoing cable, etc).
At 12:28 PM 3/16/2001, you wrote:
can someone tell me how to secure a network so that:
the router won't route traffic if the specific mac address isn't
registered before hand?
it would keep people in line.
better, a table with mac addresses and ip(s) (its already there), but have
it authenticated so you can't just bring up an ip without pre-assignment.
And, do many of you do something like this on multiple colocated servers
from independent clients with your switches?
limit the mac addresses on the port to the router and the colocated box,
e.g. the other people can't see that box.
To UNSUBSCRIBE, email to firstname.lastname@example.org
with a subject of "unsubscribe". Trouble? Contact email@example.com