[ovs-discuss] OVS list MAC addresses on all ports?

Ben Pfaff blp at ovn.org
Wed Jun 5 18:16:26 UTC 2019


On Wed, Jun 05, 2019 at 05:08:13PM +0100, Tom Girdler via discuss wrote:
> Would it be possible to develop an IDS using POX and OVS that could detect
> ARP spoofing attacks?
> I'm guessing POX could get a list of the existing MAC addresses (attached to
> all ports) from OVS and see if the incoming packet has any of the same
> addresses (i.e. its spoofed)

Sure, this is something that one could do.  OVS doesn't expose a list of
MAC addresses "out of the box", but a controller could track MAC
addresses as part of its work.


More information about the discuss mailing list