From owner-freebsd-hackers@FreeBSD.ORG  Sun Sep  3 15:56:56 2006
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
X-Original-To: freebsd-hackers@freebsd.org
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9B24216A4DD
	for <freebsd-hackers@freebsd.org>; Sun,  3 Sep 2006 15:56:56 +0000 (UTC)
	(envelope-from pieter@thedarkside.nl)
Received: from mail.thelostparadise.com (aberdeen.thelostparadise.com
	[193.202.115.174])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 3EAC043D45
	for <freebsd-hackers@freebsd.org>; Sun,  3 Sep 2006 15:56:55 +0000 (GMT)
	(envelope-from pieter@thedarkside.nl)
Received: from [192.168.1.10] (s55915f73.adsl.wanadoo.nl [85.145.95.115])
	by mail.thelostparadise.com (Postfix) with ESMTP id E078861C22;
	Sun,  3 Sep 2006 17:57:22 +0200 (CEST)
Message-ID: <44FAFB43.8010009@thedarkside.nl>
Date: Sun, 03 Sep 2006 17:56:51 +0200
From: Pieter de Boer <pieter@thedarkside.nl>
User-Agent: Thunderbird 1.5.0.4 (X11/20060611)
MIME-Version: 1.0
To: Maslan <maslanbsd@gmail.com>
References: <319cceca0609030805p49b0e8b8s7df8b02e29da909c@mail.gmail.com>
In-Reply-To: <319cceca0609030805p49b0e8b8s7df8b02e29da909c@mail.gmail.com>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
X-Mailman-Approved-At: Sun, 03 Sep 2006 16:39:03 +0000
Cc: freebsd-hackers@freebsd.org
Subject: Re: ARP Spoofing
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>, 
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 03 Sep 2006 15:56:56 -0000

Maslan wrote:

> I was trying to find a solution to ARP Spoofing on my local network,
> i've tried to use IPSTEALTH option, but this didn't help.
> Is there is any solution for preventing the ARP Spoofing inside the
> kernel such as in the tcp/ip layer or in the ethernet driver itself.
> i'm sorry if its not the correct mailinglist.
You can use static arp entries on all the involved hosts/routers, to 
hardwire a MAC-address to an IP-address. This can be done with 'arp -s 
<ip address> <mac address>' on FreeBSD. Such static arp entries will not 
be overridden by incoming arp replies and will ensure that outgoing IP 
packets are sent to the right mac address.

-- 
Pieter