(ARP spoofing and attack problems are a serious problem for enterprise networks. The commentary on this issue is now very in-depth, the mechanism of ARP attack is well understood, and various defense methods are emerging one after another. But the question is, is the real disjointed ARP problem confused these days? It is understood from users that despite trying various approaches, there is no underlying management of this issue. The reason is that there are many ARP defense methods. First, the preventive ability of management methods is limited, and it is not the lowest-level method. Second, it imposes great restrictions on network management, which is inconvenient and practical, and does not have operability. Third, some methods lose the efficiency of network transmission, slow down the network speed, and waste the bandwidth, which is not desirable. This article analyzes the four commonly prevalent ARP prevention methods in detail to understand why the ARP problem has not been completely cured. And further analyze how ARP is completely eradicated in the mode of immune network, and why only immune network can do it.)
收藏
