I'm a student of network security, and joined the Unix Group on Linkedin in order to learn more about the world of Unix/Linux as it seems a lot of work is done on those...
I'm able to analize every field of the ARP frame that i capture, but not to avoid the malicious frame to take effect over the cache because i can't stop the kernel.