| In a switched Ethernet network, a switch cross connects all devices and everypacket entering switch is sent to destination ports based on its MAC address look-uptable. Before ARP spoofing is introduced, it’s impossible to use traditional packetsniffer in such an environment.TCP/IP based internet protocols are totally open and implicit serious security riskdue to security ignorance at the very beginning of design. A number of securityprotocols have come out to provide different protections to users, but they also havesecurity holes, more or less. Today, security problem has become a big factor, holdingup Internet progress.In this paper, I will study ARP protocol, way of ARP spoofing attack and packetsniffer using ARP spoofing in an Ethernet LAN, discuss strengths&weakness ofcurrently available prevention methods, and give my own solution.Anti Spoofing, a network security system against ARP spoofing, developed withVisual Studio6.0on Windows platform is included in this paper, aiming at invasionslike sniffing with ARP spoofing performed by illegal staff in LAN of public or privatesectors. This system works well in mining area operation LAN owned by Ru Ji GouCoal Mine, Shenhua Ningxia Coal Industry Group. |
PDF Full Text Request