LAN Switch Security: What Hackers Know About Your Switches

Chapter 6. Exploiting IPv4 ARP

Address Resolution Protocol (ARP) discovers the Layer 2 address of an IP neighbor. This protocol is not authenticated and can be fooled, especially with gratuitous ARP. In this chapter, you learn about ARP and the attack technique: ARP spoofing.

By adding to the DHCP snooping technique, it is shown that ARP spoofing can be prevented in a switched LAN.

Back to ARP Basics

When two IP hosts in the same IP subnet want to communicate over an Ethernet network, they must know each other’s MAC address to send Ethernet frames to the correct host. When one IP host wants to send datagrams to another IP host in a different IP subnet, the source needs to discover the MAC address of the IP gateway to the destination. In both ...

Get LAN Switch Security: What Hackers Know About Your Switches now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

LAN Switch Security: What Hackers Know About Your Switches by Eric Vyncke - CCIE No. 2659, Christopher Paggen - CCIE No. 2659

Chapter 6. Exploiting IPv4 ARP

Back to ARP Basics

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly