When you use ARP spoofing, you are really spoofing the ARP cache in a host. Multiple hosts claiming the same MAC address will cause the switch MAC address table to constantly change some frames will go to one host, and some frames to another host. ![]() MAC address spoofing is really about network disruption, rather than information theft. When you spoof a MAC address, it messes with the switch MAC address table, causing the interface for the MAC address entry in the table to keep changing. The switch MAC address table contains a single entry for each MAC address. A switch will have a MAC address table that has a MAC address and the switch interface where the MAC address came in as the source MAC address. ![]() Switches don't have ARP tables, nor do they care about IP addresses.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |