arpwatch questions appropriate here?
Kurt Buff
kurt.buff at gmail.com
Thu Jan 3 20:00:33 UTC 2013
All,
It's been a while since I tried arpwatch on FreeBSD, and it looks as
if it still has some important limitations.
Most important to me, it doesn't seem to like to run on an unnumbered
interface - I'd like to use it to listen on a mirror port on my
switch(es), and can't see how to do that.
Also, I don't see a facility for something like an arpwatch.conf file
(in particular, I'd like to specify known networks, so I can watch for
bogons), though I am able to specify arpwatch_enable and
arpwatch_interfaces in rc.conf, which is nice.
Has anyone here been able to work through these problems?
If there's a better place I should be asking, please let me know.
Thanks,
Kurt
More information about the freebsd-net
mailing list