Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: What arp -s is good for
The Lounge War Stories What arp -s is good for Post 302720761 by DGPickett on Wednesday 24th of October 2012 03:18:33 PM
Old 10-24-2012
Swapped, well received, right.

I believe ARP entries are good for about 5 minutes (which fouls up IP failover strategies on very high uptime systems), so the list does not usualy get very long. I suppose a NIC with a promiscuous arp algorythm could collect ARP from packets not for you, if you are not segregated by a switch from all such traffic. Network is a very competitive arena.
 

10 More Discussions You Might Find Interesting

1. Cybersecurity

ARP address resoluton

How does ARP take care of uniqueness of physical addresses? How does an ISP allocate a MAC address when I do not have an NIC( Network interface Card)? (1 Reply)
Discussion started by: ManishSaxena
1 Replies

2. Solaris

ARP Cache

Dear all, We are testing two of our servers for mq series connectivity. The scenario is, when one machine is shutting down it's services there are some scripts that do a dns update, which removes the ip address and relates it to the ip address of the other node on our dns server, and the update... (7 Replies)
Discussion started by: earlysame55
7 Replies

3. IP Networking

ARP Req Pkt

Does ARP Request packet Contains MAC Address of dest during broadcast? I found It So... When i captured ARP Req Pkts on ethereal... Rgds -Meti (1 Reply)
Discussion started by: ashokmeti
1 Replies

4. HP-UX

HW Address and arp

I was checking nettl output for a unstable telnet to my server. this is part of output: ### ***********************************STREAMS/UX*******************************@#% Timestamp : Sun Jun 22 EETDST 2008 22:14:47.492899 Process ID : Subsystem ... (4 Replies)
Discussion started by: xramm
4 Replies

5. IP Networking

arp output (flags)

I'm running an arp -an on a Solaris 10 box. We're using IPMP. One of the systems is not able to see a host on the same network. The only difference between the two systems (one is having a problem, the other isn't) at least so far is the output of arp: # arp -an | grep 224.55 e1000g5... (1 Reply)
Discussion started by: BOFH
1 Replies

6. Red Hat

Arp Problem

Dear All i have a linux proxy server which has RHEL-5 64 bit, it has two interfaces, it has the following details eth0=10.200.14.42 eth3=10.201.14.42 default gateway=10.201.14.254 one static route=192.168.0.0/24 gw 10.200.14.254 i am facing a problem when i ping 10.201.14.42 from... (2 Replies)
Discussion started by: surfer24
2 Replies

7. IP Networking

Stuck ARP entries

About a week ago a customer hooked up a wireless router backwards to our network, causing it to serve incorrect DHCP addresses to some of them. Our networks are mostly statically assigned so this didn't cause as much damage as it might have, but now, over a week later, I still have incomplete... (1 Reply)
Discussion started by: Corona688
1 Replies

8. UNIX for Advanced & Expert Users

arp questions

Can someone please explain this output to me. Why doesn't ifconfig show the same info? ~ $ arp -a ? (10.71.0.1) at 00:1b:21:2b:eb:0c on eth0 (4 Replies)
Discussion started by: cokedude
4 Replies

9. IP Networking

Protection against arp spoofing

Hi, I'm trying to find a way to protect my network against arp spoofing. What it is: An attacker sends fake arp packets in the network, identifying himself as the router. All network traffic is then redirected to this attacker. How to protect myself: In my opinion, the best possible... (2 Replies)
Discussion started by: chrisperry
2 Replies

10. IP Networking

necessary ARP request?

Hello, I have 2 clients with Unix installed. host1: eth0 (192.168.5.10) & eth1 (192.168.10.10) host2: eth0 (192.168.10.20) I've connected host1-eth1 to host2-eth0. host1-eth0 isn't connected. I started 'tcpdump' on wonder that host2 got ARP requests for 192.168.5.10. Any idea why host1... (2 Replies)
Discussion started by: daWonderer
2 Replies

LEARN ABOUT DEBIAN

arpspoof

ARPSPOOF(8)						      System Manager's Manual						       ARPSPOOF(8)

NAME

       arpspoof - intercept packets on a switched LAN

SYNOPSIS

       arpspoof [-i interface] [-c own|host|both] [-t target] [-r] host

DESCRIPTION

       arpspoof  redirects packets from a target host (or all hosts) on the LAN intended for another host on the LAN by forging ARP replies.  This
       is an extremely effective way of sniffing traffic on a switch.

       Kernel IP forwarding (or a userland program which accomplishes the same, e.g. fragrouter(8)) must be turned on ahead of time.

OPTIONS

       -i interface
	      Specify the interface to use.

       -c own|host|both
	      Specify which hardware address t use when restoring the arp configuration; while cleaning up, packets  can  be  send  with  the  own
	      address  as  well  as  with  the	address  of the host. Sending packets with a fake hw address can disrupt connectivity with certain
	      switch/ap/bridge configurations, however it works more reliably than using the own address, which is the default way arpspoof cleans
	      up afterwards.

       -t target
	      Specify a particular host to ARP poison (if not specified, all hosts on the LAN). Repeat to specify multiple hosts.

       -r     Poison both hosts (host and target) to capture traffic in both directions.  (only valid in conjuntion with -t)

       host   Specify the host you wish to intercept packets for (usually the local gateway).

SEE ALSO

       dsniff(8), fragrouter(8)

AUTHOR

       Dug Song <dugsong@monkey.org>

																       ARPSPOOF(8)
All times are GMT -4. The time now is 09:58 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy