Firewall Wizards mailing list archives

Re: Windows dynamic ARP

From: "Darden, Patrick S." <darden () armc org>
Date: Wed, 26 Nov 2008 10:21:23 -0500


I think I understand.

Some possibilities you might have already thought of for doing this in a roundabout fashion:

1.  If you are using advanced switches, you can implement this on them.  Allow only certain MACs to connect to your 
network.
2.  If your switches don't have the ability to do #1, perhaps your switches, core switches, or core router can filter 
out ARP requests/replies.
3.  You can turn off ARP response in windows (not quite what you wanted, I think)
http://www.windowsreference.com/networking/enabledisable-response-to-arp-request-without-unicase-source-ethernet-address/

I'll keep thinking about it.
--p


-----Original Message-----
From: firewall-wizards-bounces () listserv icsalabs com
[mailto:firewall-wizards-bounces () listserv icsalabs com]On Behalf Of Paul
D. Robertson
Sent: Wednesday, November 26, 2008 10:00 AM
To: Firewall Wizards Security Mailing List
Subject: Re: [fw-wiz] Windows dynamic ARP


On Wed, 26 Nov 2008, Darden, Patrick S. wrote:

Hey Paul,

Happy Holidays.


To you too...

I think you can the DOS arp command to statically populate your local cache with permanent entries.  I would set up 
your login scripts on all workstations to do something like this:

arp -d * //delete all entries in the cache
arp -s ip mac
arp -s ip2 mac2

Note that I think these are permanent entries in the sense they are static, but not persistent across reboots.


I know how to add static entries, what I'd like to do is turn OFF the 
ability to gather dynamic entries.  So that if a new system is introduced 
to the network, it must be added to each node it will intercommunicate 
with.  That is, I want ONLY static entries in my ARP table- it's 
relatively easy to do with *nix systems, but I can't seem to find a 
switch, registry key or driver for Win*.

Paul
-----------------------------------------------------------------------------
Paul D. Robertson      "My statements in this message are personal opinions
paul () compuwar net       which may have no basis whatsoever in fact."
           Art: http://PaulDRobertson.imagekind.com/

_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () listserv icsalabs com
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Windows dynamic ARP Paul D. Robertson (Nov 26)
- Re: Windows dynamic ARP Darden, Patrick S. (Nov 26)
  - Re: Windows dynamic ARP Paul D. Robertson (Nov 26)
    - Re: Windows dynamic ARP Darden, Patrick S. (Nov 26)
    - Re: Windows dynamic ARP Paul D. Robertson (Nov 26)
    - Re: Windows dynamic ARP John Mason Jr (Nov 26)
    - Re: Windows dynamic ARP Darden, Patrick S. (Nov 26)
- Re: Windows dynamic ARP Dave Love (Nov 26)
  - Re: Windows dynamic ARP Paul D. Robertson (Nov 26)
  - Re: Windows dynamic ARP robbie . jacka (Nov 26)
    - Re: Windows dynamic ARP Mike O'Connor (Nov 26)