ARP poisening (also known as ARP spoofing) is a technique used to provide a wrong response to ARP requests. This is often used to perform man-in-the-middle attacks.
ARP – Address Resolution Protocol
ARP is used to determine the MAC address for an IP address. This protocol is a fundamental part of all network communication, without the assignment IP <-> MAC the packet cannot be addressed. Unfortunately, the protocol was developed without any security functions.
How it works
If a computer wants to send a packet to a new destination, it makes a so-called ARP request. This request is sent to the network via broadcast. The computer receives the MAC address of the destination as the ARP response.
ARP poisening infiltrates exactly this process. Directly after the original answer a wrong answer is sent. This wrong answer can then redirect the requesting PC to a new destination. So packets can be redirected and intercepted via ARP poisening. However, we can also use this procedure to provide more security in your network.
Soliton’s LAP is one of the smallest network access control devices in the world. With Plug&Play technology, setup is child’s play and can be done in minutes. No complicated network configuration is necessary!
The LAP detects new devices in the network by monitoring DHCP and ARP broadcasts and sends false ARP responses to all unknown devices. So here we use the ARP poisening technique described above.
This disrupts the communication of the unknown devices. Only after the administrator has released the devices, the ARP traffic disturbances are stopped. The LAP must only be integrated into the network if VLANs are used, or to a trunk port.
With NetAttest LAP, you can implement simple network access control without costly switches or complicated RADIUS Setups.
Are you interested in a LAP test? Currently we offer a free Try&Buy, so that you can get an idea of the technology for yourself!
This is how it works
- Sign up for the test on the campaign website or contact us.
- Once you have received the device, register it within five days.
- Test the NetAttest LAP One for two weeks free of charge.
- If you are convinced, the LAP One can take over, if not send the device back to us.
[table id=4 /]