I want to filter arp requests which can lead to arp spoofing in my network,
Unfortunately I have no access to router so I can use static arp table, instead I've found the arptables command which is like iptables but for arp requests
http://linux.die.net/man/8/arptables
I need to know is these 3 simple rules enough to block invalid arp requests? ( asuming my VM's IP is 1.2.3.4 and it's mac is 11:11:11:11:11:11 )
arptables -I FORWARD -s 1.2.3.4 --src-mac 11:11:11:11:11:11 -j ACCEPT
arptables -I FORWARD -d 1.2.3.4 --dst-mac 11:11:11:11:11:11 -j ACCEPT
arptables -A FORWARD -j DROP
Any help would be highly appreciated.
Unfortunately I have no access to router so I can use static arp table, instead I've found the arptables command which is like iptables but for arp requests
http://linux.die.net/man/8/arptables
I need to know is these 3 simple rules enough to block invalid arp requests? ( asuming my VM's IP is 1.2.3.4 and it's mac is 11:11:11:11:11:11 )
arptables -I FORWARD -s 1.2.3.4 --src-mac 11:11:11:11:11:11 -j ACCEPT
arptables -I FORWARD -d 1.2.3.4 --dst-mac 11:11:11:11:11:11 -j ACCEPT
arptables -A FORWARD -j DROP
Any help would be highly appreciated.