From owner-freebsd-questions Fri Jan 5 11:52: 5 2001 From owner-freebsd-questions@FreeBSD.ORG Fri Jan 5 11:52:00 2001 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from osiris.ipform.ru (osiris.ipform.ru [212.158.165.98]) by hub.freebsd.org (Postfix) with ESMTP id 896CC37B400; Fri, 5 Jan 2001 11:51:42 -0800 (PST) Received: from wp2 (wp2.office.ipform.ru [192.168.0.12] (may be forged)) by osiris.ipform.ru (8.11.1/8.11.1) with SMTP id f05Jpb834270; Fri, 5 Jan 2001 22:51:39 +0300 (MSK) (envelope-from matrix@ipform.ru) Message-ID: <000701c07750$eb585e60$0c00a8c0@ipform.ru> From: "Artem Koutchine" To: Cc: Subject: Antisniffer measures (digest of posts) Date: Fri, 5 Jan 2001 22:51:36 +0300 Organization: IP Form MIME-Version: 1.0 Content-Type: text/plain; charset="koi8-r" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.00.2919.6600 X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2919.6600 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Hello! I have reread all the followups on the questions i posted in the mid december. first: 50% of the people said "SWITCH TO SWITCHES", 50% of the people said: "EVEN SWITCHES CANNOT HELP" Then mostly everytone started talking about SNMP controllable switches with hardcorded MAC addreses for each port. Then people started to talk about static ARP entries on the host. ONE (ONLY ONE) person mentioned encryption, but did not elaborate on that. Well, let me remind the situtation. I have a very heterogenic network: FreeBSD, Linux, Win9x, WinME, WInNT, WIn2000. Now they are all connected with hubs, which allows sniffer to run and obtain all the mail and web password easily. I need to stop it. Buying 500$ SNMP controllable switch is CRAZY. I will not do it. It is way too expensive. It will cost us about 4000$. So, as I see we two possible solutions and one probable soultion: POSSIBLE N1: Switches (NON SNMP contrlllable, which do not turn into hub when flooded with MAC addresses), hardcorder ARP entries on hosts for router, DNS, MAIL, POP, corporate web (thanks hot it is the same host). QUESTIONS: Is it possible to do to hard code ARP entries in WINxxxxx? Is there such switch which does not fall back into hub mode when flooded with MACs? POSSIBLE N2: Install a little FBSD/LINUX based router indetad of each hub. Put a bunch of NIC in each. Put each host on a reparate NIC. Price: 100$ for the Pentium166 based host+ 8nics x 20$=100+160=260$ (twice as cheap as SNMP switch and twice as expensive and a simple switch) QUESTIONS: I wonder where do i get 8 IRQs for the NICs int the routing box. Will the box with 4PCIs and 4ISA NICs be able to hold on electricwise? PROBABLE: Some kind of tranparent IP encryprtion. QUESTIONS: What kind of IP encryption? Is it availbale for FBSD, Linux, WINxxxxx? I hope someone would help. Best regards, Artem Koutchine To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message