Re: arpwatch and more
On Fri, Mar 16, 2001 at 12:28:54PM -0500, Allen Ahoffman wrote:
> can someone tell me how to secure a network so that:
> the router won't route traffic if the specific mac address isn't
> registered before hand?
> it would keep people in line.
> better, a table with mac addresses and ip(s) (its already there), but have
> it authenticated so you can't just bring up an ip without pre-assignment.
> And, do many of you do something like this on multiple colocated servers
I haven't looked at arpwatch's config, but you may be able to poison the arp
table from the sniffing server by sending arps for that IP as coming from