Table of Contents
Advertisement
4 Web-based Switch Configuration
Storm Control Type: User can select the different Storm type from Broadcast Only, Multicast & Broadcast,
and Multicast & Broadcast & Unknown Unicast.
Threshold (16Kbps * N): If storm control is enabled (default is disabled), the threshold is from of 16 ~
1,024,000 Kbit per second, with steps (N) of 16Kbps. N can be from 1 to 64000.
Click the Apply button to implement changes made.
Security > ARP Spoofing Prevention
ARP spoofing, also known as ARP poisoning, is a method to attack an Ethernet network by allowing an
attacker to sniff data frames on a LAN, modifying the traffic, or stopping the traffic (known as a Denial of
Service – DoS attack). The main idea of ARP spoofing is to send fake or spoofed ARP messages to an
Ethernet network. It associates the attacker's or random MAC address with the IP address of another node
such as the default gateway. Any traffic meant for that IP address would be mistakenly re-directed to the
node specified by the attacker.
A common DoS attack today can be done by associating a nonexistent or specified MAC address to the IP
address of the network's default gateway. The malicious attacker only needs to broadcast one gratuitous
ARP to the network claiming to be the gateway, so that the whole network operation is turned down as all
packets to the Internet will be directed to the wrong node.
The ARP Spoofing Prevention function can discard the ARP Spoofing Attack in the network by checking the
gratuitous ARP packets and filtering those with illegal IP or MAC addresses.
Figure 4.103 – Security > Storm Control
Figure 4.104 – Security > ARP Spoofing Prevention
8
3
8
3
D-Link Smart Managed Switch User Manual
- Quick Links:
- Using Web-Based Management
- Management Options
Hide quick links:
Advertisement
Table of Contents
