By intercepting false ARP packets at the system kernel layer and proactively notifying the correct MAC address of the gateway, the ARP firewall can ensure that the data flows in the correct direction without passing through a third party, thus ensuring the security of communication data, ensuring smooth network flow, and ensuring that communication data is not protected from unauthorized access. Third-party control, thus perfectly solving all the above problems.
Nine functions of ARP firewall
1. Block ARP attacks.
(A) Intercept external false ARP packets at the system kernel layer to ensure that the system is not affected by ARP spoofing and ARP attacks, maintaining smooth network flow and communication security;
(B) Intercept external ARP attack packets from the machine at the system kernel layer to reduce the trouble caused to users by external attacks after being infected with malicious programs;
2. Block IP conflicts. Intercept IP conflict data packets at the system kernel layer to protect the system from IP conflict attacks;
3. Dos attack suppression. Intercept the local TCP SYN/UDP/ICMP/ARP DoS attack packets at the system kernel layer and locate the program that maliciously launches DoS attacks to ensure the smooth flow of the network;
4. Safe mode. Except for the gateway, it does not respond to ARP Requests sent by other machines to achieve a stealth effect and reduce the chance of being attacked by ARP;
5. ARP data analysis. Analyze all ARP packets received by the machine, grasp network dynamics, and find potential attackers or poisoned machines;
6. Monitor ARP cache. Automatically monitor the local ARP cache table. If it is found that the gateway MAC address has been tampered with by a malicious program, it will alarm and automatically repair it to keep the network smooth and communication secure;
7. Active defense. Actively maintain communication with the gateway and notify the gateway of the correct MAC address to keep the network open and communication secure;
8. Track the attacker. After discovering the attack behavior, automatically and quickly lock the attacker’s IP address;
9. Check and kill ARP virus. When it is discovered that the machine has external attacks, it will automatically locate the malicious programs and virus programs infected by the machine;
Expand
