Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1061
Views
5
Helpful
2
Replies

ARP Poisoning & Cisco IDS/IPS Solutions

erickweber
Level 1
Level 1

‎06-03-2008 12:50 PM - edited ‎03-10-2019 04:08 AM

I am trying to find out if someone familiar with Cisco's IDS/IPS (network and/or host-based) solutions can tell me if the product(s) can identify and/or prevent ARP poison routing attacks. If so, does it require customizing signatures or is there out of the box detection signatures?

Thanks for any information

Labels:
0 Helpful
2 Replies 2

mhellman
Level 7
Level 7

‎06-03-2008 01:21 PM

There are some. Go here and do a search for "arp":

http://tools.cisco.com/security/center/search.x?search=Signature

Perhaps it goes without saying, but remember that the sensor has to see the relevant layer 2 traffic for these to work.

erickweber
Level 1
Level 1
In response to mhellman

‎06-03-2008 02:11 PM

Thanks!

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card