| 摘要: |
| 分析ARP原理以及欺骗网关攻击、仿冒网关攻击、"中间人"攻击和泛洪攻击4种常见的ARP欺骗攻击类型,结合电子政务网ARP防御的应用实例,提出一种采用DHCP服务器和交换机的DHCP Relay Agent、DHCP Snooping功能进行防御ARP欺骗攻击的方案。该方案能够防止接入终端任何ARP欺骗攻击,可以有效解决ARP欺骗攻击问题。 |
| 关键词: ARP 攻击 防御 网络安全 |
| DOI: |
| 投稿时间:2009-07-03 |
| 基金项目: |
|
| Type and Defense Solution of ARP Spoofing Attack |
|
SU Hong-qing, LIANG Zheng-an
|
| (Computing Center of Guangxi, Nanning, Guangxi, 530022, China) |
| Abstract: |
| The principle of ARP and four kinds of common types of ARP attack including deceiving gateway attack, phishing gateway attack, "middleman" attack and flooding attack were introduced and analyzed. By combining with an application of defensing ARP attack in E-government network, a solution for ARP spoofing attack by using DHCP server, DHCP Relay Agent and DHCP Snooping function of switch was proposed. This solution can prevent all ARP spoofing attack of access terminal, which effectively resolve the problem of ARP spoofing attack. |
| Key words: ARP attack defense network security |
