[ovs-discuss] Q. about IP-, MAC-, arp-spoofing
Luiz Ozaki
luiz.ozaki at locaweb.com.br
Thu Jul 26 17:24:20 UTC 2012
On 7/26/12 6:38 AM, Oliver Francke wrote:
> ovs-ofctl add-flow vmbr0 "in_port="${PORT}" ip idle_timeout=0
> dl_src=${MAC} nw_src=${IP} priority=39000 action=resubmit("${PORT}",1)"
If you're using the dl_type=0x0800, it should match the ARP protocol as
well. So, you already preventing ARP spoofing as well.
Are you able to do this arp poisoning using these openflow setup or just
theorycrafting ?
--
Luiz Henrique Ozaki
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://openvswitch.org/pipermail/ovs-discuss/attachments/20120726/a1a4c5cb/attachment.html>
More information about the discuss
mailing list