Login or Register to Ask a Question and Join Our Community


Cybersecurity

arpwatch!

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity arpwatch!
# 1  
Old 02-24-2006
arpwatch!
I want to configure arpwatch for ip-level security for some of the machine on the network.

network is
10.129.112.0/25

but i want to look at those arp request which has ip from
10.129.112.160-179

and only(these machines)

arpwatch -n 10.129.112.160/27 -d

will give lot of entries other than my network devices.
how do i do it?
Login or Register to Ask a Question

Previous Thread | Next Thread

1 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

parse an arpwatch file and retain most recent mac

Hi, I'm working on a little script, for first I transformed epoch (unix date in seconds) in a human readable date in this way cat arp.dat | sort -k 3 | gawk '{ print strftime("%d:%m:%Y:%H:%M", $3),$1,$2}' the result is 06:03:2006:10:01 0:a:e4:c0:b5:6d 192.168.1.3 06:03:2006:12:15... (8 Replies)
Discussion started by: CM64
8 Replies
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

bihourly

BIHOURLY(8)						      System Manager's Manual						       BIHOURLY(8)

NAME

       bihourly - track ethernet/ip address pairs

SYNOPSIS

       bihourly

DESCRIPTION

       bihourly is a script that automates the operation of arpsnmp(8) by executing arpfetch(8) on a series of hostnames and then sending the
       results to arpsnmp(8) for analysis.

       The result is a report of the current pairings between ip addresses and the corresponding ethernet address of the network hardware as
       reported by snmpwalk(8).  Activity is logged and noted changes are reported by email.

       In its working directory bihourly expects a file named list which contains a space separated list of hostnames to be queried and a file
       named cname which holds the SNMP community name by which to query these hosts.

       Contrary to the name, bihourly does not run twice every hour. It runs once each time it is invoked. For repeated operation bihourly must be
       invoked on a periodic basis by a program like cron(1).

FILES

       /var/lib/arpwatch - default working directory
       list - file containing names of hosts to query
       cname - file containing the SNMP community name by which to query

SEE ALSO

       arpsnmp(8), arpfetch(8), snmpwalk(8), cron(8)

BUGS

       Please send bug reports to arpwatch@ee.lbl.gov.

AUTHORS

       Craig Leres of the Lawrence Berkeley National Laboratory Network Research Group, University of California, Berkeley, CA.

       The current version is available via anonymous ftp:

	      ftp://ftp.ee.lbl.gov/arpwatch.tar.gz

       This manual page was contributed by Hugo Graumann.

																       BIHOURLY(8)