How can I set iptables to detect arp spoofing on linux?
Asked
Active
Viewed 844 times
0
-
1Have you done any research on this? Are you sure that iptables can do what you expect it to? Do you want to detect or stop ARP spoofing? – schroeder Oct 15 '15 at 17:01
-
I Just wana to detect – user3806649 Oct 15 '15 at 17:11
-
I have googled but couldn't find any thing usefull. I find only [this](https://kokikode.wordpress.com/2009/12/01/defense-against-arp-spoofing-in-linux/) – user3806649 Oct 15 '15 at 17:14
1 Answers
1
You can't. The iptables command is an interface for the netfilter module of linux. Its used to block, redirect,... traffic not to detect MITM attacks. You can detect arp spoofing using a Network Intrusion Detection System (NIDS) like snort for example.
davidb
- 4,285
- 3
- 19
- 31