Provide option to harden response to ARP requests

This commit is contained in:
raja-grewal 2024-11-13 05:41:25 +00:00 committed by GitHub
parent a25d4f8df8
commit 18aec201bf
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
2 changed files with 10 additions and 0 deletions

View file

@ -105,6 +105,9 @@ Networking:
- Optional - Enable ARP filtering to mitigate some ARP spoofing and ARP
cache poisoning attacks.
- Optional - Respond to ARP requests only if the target IP address is
on-link, preventing some IP spoofing attacks.
- Optional - Drop gratuitous ARP packets to prevent ARP cache poisoning
via man-in-the-middle and denial-of-service attacks.