局域网络环境下ARP欺骗攻击及安全防范策略 |
| |
作者单位: | 湛江师范学院技术教育部 |
| |
摘 要: | 该文介绍了ARP地址解析协议的含义和工作原理,并根据ARP协议所存在的安全漏洞,给出了网段内和跨网段ARP欺骗的实现过程。最后,结合网络管理的实际工作,重点介绍了IP地址和MAC地址绑定、交换机端口和MAC地址绑定、VLAN隔离技术等几种能够有效防御ARP欺骗攻击的安全防范策略,并通过实验验证了该安全策略的有效性。
|
关 键 词: | ARP协议 ARP欺骗 MAC地址 IP地址 网络安全 |
The Safety Methods to Avoid the ARP-Cheating in Network |
| |
Authors: | LIU Yi ZHU Yan-jin CHEN Zhen |
| |
Abstract: | In this article,the meaning and the principle of address resolution protocol (ARP) is introduced. The process of ARP-cheatingin LANs and out LANs based on the bug of ARP is given. Some effective methods to avoid the attack from ARP-cheating according tothe actual work are submitted. The binding between IP Address and MAC Address,the binding between switch ports and MAC Address,and the technique of VLAN isolation are explained strictly.The effectiveness of above-mentioned have been demonstrated in our work. |
| |
Keywords: | address resolution protocol (ARP) ARP-Cheating MAC address IP address network security |
本文献已被 CNKI 等数据库收录! |