Network security – how safe is your network? Looking at ARP



A while back I did a network security series and one of the points that I mentioned was that it’s important to know what is normal for your network. In other words, what machines are NORMALLY connected, what services are normally running, etc. Well, I’m about to start a serious look at something that makes this knowledge essential and that may have some rethinking whether or not it’s wise to run an open wireless access point on the same network as their traditional LAN.


Let’s start out by trying to clarify some terms and get a background on the info we need to understand the upcoming articles. I’ve mentioned ARP before… Arp is short for Address Resolution Protocol. It might best be thought of the “glue” that connects the hardware layer of a network interface, to the software layer of TCP/IP…. On most TCP IP networks, we have addresses such as this…. 192.168.0.1 192.168.0.2 etc…. these two addresses are considered to be within the same subnet. Typically, 192.168.1.1 and 192.168.1.2 would be in a different subnet than the addresses above.

These addresses are just that, an address or an abstraction of how to find a machine on a network. We need a way to find out what physical hardware address is connected to 192.168.0.1 or 192.168.0.2… that’s where ARP comes in… it maps the IP address to the MAC address which is a unique identifier given to each piece of network hardware. (Media Access Control is what MAC stands for.) So, you might find that 192.168.0.1 maps to 00:40:F4:14:07:20

ARP requests and lookups can only work within a subnet, they cannot route from one network to another.

Related Posts

Blog Traffic Exchange Related Posts
  • Network Security guide for the home or small business network - Part 6 - Secure your services This one is going to be tougher. Of what we've looked at so far this will probably take more work and learning than any of the others. The good news is, depending on your situation you may need to do less here. IF you have decided that your pc (or......
  • Another trackback spam storm overnight.... All of the the swarms of trackback spam seemed to last an hour give or take a few minutes, so it does look kind of like "rent-a-bot" activity, lots of different IP addresses, trackback spam sites seem to have a common theme - the last batch was insurance type sites..........
  • Network Security - Arp spoofing So.... what is arp spoofing (poisoning).... and what are it's implications? ARP spoofing involves tricking a machine into thinking that you're machine is, yet another. Let's put this in IP address terms. Let's say that 192.168.0.1 is the default gatway on the network and 192.168.0.150 is our target. We are......
Blog Traffic Exchange Related Websites
  • Orrin Woodward, Scams, MonaVie, Team, and Lies... Oh My! I apologize in advance for another post about the evils of some multi-level networking scams. A reader alerted me to this this crazy rant by Orrin Woodward saying, "Looks as if your blogs are getting to Mr. Woodward... I do assume he's talking about [Lazy Man and Money] and Juice......
  • D-Link Announced 2 new 2-Bay Network Storage Devices Two new Network Storage Devices from D-Link D-Link today announced that its ShareCenter® 2-Bay Network Storage devices, the DNS-320 and DNS-325, are now available. Building off of the successful DNS-321 and DNS-323, the new DNS-320 and DNS-325 provide centralized storage, enabling consumers to easily share documents, files and digital media......
  • GEVEY Supreme Pro Plus for iPhone 4 - Review Previously, GEVEY and GEVEY Pro were available for unlocking iPhone 4. They provide a tethered solution for unlocking iPhone 4. Later, GEVEY Supreme Pro Plus was released which was supposed to be an untethered solution for unlocking iPhone 4 on basebands 02.10.04, 03.10.01 & 04.10.01. My Twitter friend, @hiteshagnani got......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site