How to prevent ARP attacks

First you need to find the IP and MAC address of the gateway.

There are many methods to see, the most straightforward to execute arp-a in CMD. However, this is an ARP attack before the successful attack, the 192.168.0.1 corresponding MAC address will become the MAC address of the attack computer.

There is another way to log in to the router to view. In the browser type "192.168.0.1" (here is the personal gateway), then enter the account password, log in. Usually here can find a LAN MAC address, this is.

Secondly, the MAC address of the 192.168.0.1 corresponding to the ARP in this machine is changed to static.

In the run, enter:

CMD--Arp-a

　　

You can see the physical address behind the 192.168.1.1 here, and the latter type "dynamic" represents the dynamic cache, which is modified when a related ARP packet is received. If it is an illegal ARP packet with an incorrect gateway, the table will change automatically. This way we cannot find the correct gateway Mac and cannot communicate properly with other hosts.

How to modify--xp

ARP-S Gateway IP Gateway MAC address

You can create a static cache data by directly executing the Arp-s gateway IP Gateway MAC address.

How to modify--win7

Win7 cannot run Arp-s for static Mac binding, it will prompt "ARP entry add failed: Access denied." (The English version hint: the ARP entry addition Failed:access is denied.).

This time can only be modified by another command. Steps:

1. CMD input:

Inch

Then find the "local connection" corresponding to the "IDX" (Here is "10", below neighbors the following numbers are consistent with this. )

2. Below the cmd input:

" I i " Ten " Gateway IP " " MAC address "

Here 10 is the IDX number above. Complete this step and the static MAC address is complete.

Finally, arp-a to see if it's already tied up?

Tips :

To delete a binding with arp-d on Win7, you must use the netsh-c "I i" delete neighbors idx (idx to the corresponding number) to remove the MAC address binding.

In addition, the modification of the cache is a one-time method, after the computer restarts, the static will revert to dynamic. You can write a dat file in the boot-up to execute.

How to prevent ARP attacks