How ARPA mines
Publish: 2021-05-21 20:42:26
1.
ARPANET: short for advanced research project agency
one of its core organizations is ipto information processing technologies office, which has been focusing on computer graphics, network communication, supercomputer and other research topics
the predecessor of Internet is ARPANET, also known as ARPANET. It is the world's first long-distance computer packet switching network developed by the advanced research projects agency and information processing office of the U.S. Department of defense. It is considered to be the predecessor of the Internet
extended data:
"ARPANET & quot; In 1967, Lawrence g. Roberts, then director of ipto, began to build "distributed network". In 1968, Roberts submitted his research report "computer network for resource sharing" and put forward the idea of ARPANET
The first phase of ARPANET was put into operation in 1969, which is composed of four nodes on the west coast. The first node is located at UCLA In 1970, ARPANET began to open to non military departments, and many universities and business departments began to access. At the same time, ARPANET established the first network node in the east coast In the spring of 1973, Winton Cerf and Bob Conrad began to study how to connect ARPANET with other two existing networks, especially the satellite network (and Aloha network based on packet service in Hawaii). Cerf designed a new computer communication protocol, which was finally called TCP / IP In 1982, ARPANET stopped the original communication protocol, NCP was disabled, and only websites using CERN's TCP / IP language were allowed to communicate2. Hello,
MAC is 123d.dedg.25df& quot; g" What is it? It seems that the highest is & quot; f" Well, I'm sorry to be ignorant:)
your question, I've done similar experiments before
the configuration is very simple, but be careful, because the switch may be paralyzed if it is not set properly:)
your requirement is to bind app (IP-MAC mapping), but not on the port
the method is as follows:
borrowing the Dai (dynamic ARP inspection) mechanism provided by Cisco switch, it used to detect the validity of ARP packets based on DHCP snooping binding table
if the switch does not use DHCP service, ARP access list can be added statically as the basis for its judgment< The experiment is as follows:
1. Network Description: the core switch (4503) is connected to multiple access layer switches (3560). The core switch is configured with multiple VLANs. VTP protocol is enabled with the access layer switches to transfer VLAN information
there are two differences with your network, please note:
1) in the experiment, the access layer switch is 3560, and yours is 2950
2) the core switch and the access layer switch have enabled VTP protocol to exchange VLAN information. It seems that you don't have it. You can see that "the ports of the core switch connected to 2960 are all in one VLAN"
the configuration is as follows: (the configuration here is based on the background that DHCP service is not enabled)
the configuration of access layer switches and core switches is as follows: (the configuration is the same except for specific ports)
3B? Config terminal
enter configuration commands, One per line. End with cntl / Z.
3B (config) # ARP access list vlan3 static ARP / * defines the name of ARP access list
3B (config ARP NaCl) # permit IP host 172.16.8.1 MAC host 123d.ded9.25df / * defines the legal ARP corresponding relationship (define multiple ARPS according to the requirements, Only one is listed here)
3B (config ARP NaCl) # exit
3B (config) # int Gigabit Ethernet 0 / 51 (port connected with other switches)
3B (config if) # IP ARP inspection trust / * it is very important to define the connection port (trunk) between access layer switch and core layer switch as a trusted port
3B (config if) # exit
3B (config) # IP ARP inspection filter vlan3 static ARP VLAN 3 / * defines which ARP access list to apply to which VLAN
3B (config) # IP ARP inspection VLAN 3 / * defines which VLANs to detect ARP messages
finally, when the port receives illegal ARP messages, the switch discards them and alarms, The alarm information is as follows:
1w4d% SW_ DAI-4-DHCP_ SNOOPING_ Deny: 1 invalid ARPS (req) on gi0 / 5, VLAN 3. ([098a.8989.6d77/172.16.8.54/0000.0000/172.16.8.20/02:58:47 UTC Sat May 22 2010]) / * switch Dai mechanism reject: an invalid ARP request information comes from port gi0 / 5 and belongs to VLAN 3. In ARP message, source host MAC: 098a.8989.6d77, IP: 172.16.8.54, MAC address of request 172.16.8.20
above, For reference, I will discuss with you if you have any questions.
MAC is 123d.dedg.25df& quot; g" What is it? It seems that the highest is & quot; f" Well, I'm sorry to be ignorant:)
your question, I've done similar experiments before
the configuration is very simple, but be careful, because the switch may be paralyzed if it is not set properly:)
your requirement is to bind app (IP-MAC mapping), but not on the port
the method is as follows:
borrowing the Dai (dynamic ARP inspection) mechanism provided by Cisco switch, it used to detect the validity of ARP packets based on DHCP snooping binding table
if the switch does not use DHCP service, ARP access list can be added statically as the basis for its judgment< The experiment is as follows:
1. Network Description: the core switch (4503) is connected to multiple access layer switches (3560). The core switch is configured with multiple VLANs. VTP protocol is enabled with the access layer switches to transfer VLAN information
there are two differences with your network, please note:
1) in the experiment, the access layer switch is 3560, and yours is 2950
2) the core switch and the access layer switch have enabled VTP protocol to exchange VLAN information. It seems that you don't have it. You can see that "the ports of the core switch connected to 2960 are all in one VLAN"
the configuration is as follows: (the configuration here is based on the background that DHCP service is not enabled)
the configuration of access layer switches and core switches is as follows: (the configuration is the same except for specific ports)
3B? Config terminal
enter configuration commands, One per line. End with cntl / Z.
3B (config) # ARP access list vlan3 static ARP / * defines the name of ARP access list
3B (config ARP NaCl) # permit IP host 172.16.8.1 MAC host 123d.ded9.25df / * defines the legal ARP corresponding relationship (define multiple ARPS according to the requirements, Only one is listed here)
3B (config ARP NaCl) # exit
3B (config) # int Gigabit Ethernet 0 / 51 (port connected with other switches)
3B (config if) # IP ARP inspection trust / * it is very important to define the connection port (trunk) between access layer switch and core layer switch as a trusted port
3B (config if) # exit
3B (config) # IP ARP inspection filter vlan3 static ARP VLAN 3 / * defines which ARP access list to apply to which VLAN
3B (config) # IP ARP inspection VLAN 3 / * defines which VLANs to detect ARP messages
finally, when the port receives illegal ARP messages, the switch discards them and alarms, The alarm information is as follows:
1w4d% SW_ DAI-4-DHCP_ SNOOPING_ Deny: 1 invalid ARPS (req) on gi0 / 5, VLAN 3. ([098a.8989.6d77/172.16.8.54/0000.0000/172.16.8.20/02:58:47 UTC Sat May 22 2010]) / * switch Dai mechanism reject: an invalid ARP request information comes from port gi0 / 5 and belongs to VLAN 3. In ARP message, source host MAC: 098a.8989.6d77, IP: 172.16.8.54, MAC address of request 172.16.8.20
above, For reference, I will discuss with you if you have any questions.
3.
The binding command of Cisco router's IP address and MAC address is: ARP IP address MAC address ARPA
if the IP address of a user in the LAN is 202.196.191.190 and the MAC address is 0010.40bc.b54e, use the command on the routing mole of Cisco router or switch:
how to view the MAC address corresponding to the IP address, and enter "ipconfig / all" at the CMD command prompt
4. It'll work when that machine goes online. But what address does he want to set up or he has the final say? You can't help it. You have to do something that he can't use this address.
to make this method effective, you have to bind all IP addresses. Even if no one uses the IP, you have to bind a Mac that doesn't exist, otherwise it won't be very useful.
to make this method effective, you have to bind all IP addresses. Even if no one uses the IP, you have to bind a Mac that doesn't exist, otherwise it won't be very useful.
5. windows24635;, 24211;, 21547;, 36848;, br />,35; includes < windows.h> br />&35;pragma comment(lib, " wsock32.lib")< br />23601;"
6. This cancels
in global configuration mode
no ARP 10.16.252.210 3c07.7178.6bd0 ARPA
in global configuration mode
no ARP 10.16.252.210 3c07.7178.6bd0 ARPA
7. What is g? It seems that the highest is f, I'm sorry I'm ignorant:) your question, I've done similar experiments before. The configuration is very simple, but be careful, because the switch may be paralyzed if it is not set properly:) your requirement is to bind app (IP-MAC mapping), but not on the port. The method is as follows: by borrowing the Dai (dynamic ARP inspection) mechanism provided by Cisco switch, it used to detect the effectiveness of ARP packets based on dhcpsnoping binding table. If the switch does not use DHCP service, arpaccess list can be added statically as the basis for its judgment. The experiments are as follows: 1. Network Description: the core switch (4503) connects multiple access layer switches (3560). The core switch is configured with multiple VLANs. VTP protocol is enabled with the access layer switch to transfer VLAN information. There are two differences with your network, please note: 1) in the experiment, the access layer switch is 3560, and yours is 2950; 2) The core switch and access layer switch have enabled VTP protocol to exchange VLAN information. It seems that you don't have it. The ports of 2960 connected to the core switch described by you are all in the same VLAN; The configuration is as follows: (the configuration here is based on the background that DHCP service is not enabled) the configuration of access layer switches and core switches are as follows: (the configuration is the same except for specific ports) 3b #, Oneperline. Endwithcntl / z.3b (config) # arpacess listvlan3 static ARP / * define arpaccess list name 3B (config ARP NaCl) # permiiphost172.16.8.1machost123d. Ded9.25df / * define legal ARP correspondence (define multiple ARPS according to the requirements, Only one 3B (config ARP NaCl) # exit3b (config) # intgigabitethernet 0 / 51 (port connected with other switches) 3B (config if) # iparpingspectiontrust / * defines the connection port (trunk) between access layer switch and core layer switch as trusted port, which is very important!! 3b (config if) # exit3b (config) # iparpinspectionfiltervlan3-static-arpvlan3 / * defines which VLAN to apply which ARP access list to. 3B (config) # iparpinspectionvlan3 / * defines which VLANs to detect ARP packets. Finally, when the port receives illegal ARP packets, the switch discards them and alarms. The alarm information is as follows: 1w4d: SW_ DAI-4-DHCP_ SNOOPING_ Deny: 1invalidarps (req) ongi0 / 5, vlan3. ([098a.8989.6d77/172.16.8.54/0000.0000/172.16.8.20/02:58:47utcsatmay222010]) / * switch Dai mechanism reject: an invalid ARP request information comes from port gi0 / 5 and belongs to vlan3. In ARP message, the source host MAC: 098a.8989.6d77, IP: 172.16.8.54, requests MAC address above 172.16.8.20, for reference, If there is a problem, I will discuss it with you.
8. The order is right. This command can prevent IP from being stolen
for example, after ARP 192.168.1.100 0860.6eda.87e7 ARPA, 192.168.1.100 is only allowed to be used by the host with this MAC address! But this host can use other IP addresses, such as 192.168.1.120, to access the network, which leads to the waste of this IP
in addition, it seems that the NetBIOS protocol can ignore this command.
for example, after ARP 192.168.1.100 0860.6eda.87e7 ARPA, 192.168.1.100 is only allowed to be used by the host with this MAC address! But this host can use other IP addresses, such as 192.168.1.120, to access the network, which leads to the waste of this IP
in addition, it seems that the NetBIOS protocol can ignore this command.
9. A. ARPANET in the United States. ARPANET network is used for military experiments. It was founded by ARPA in the 1970s. It demonstrates the application of TCP / IP protocol. Now it has been replaced by the Internet and no longer exists<
withdraw from the stage of history:
ARPA network can't communicate with indivial computer networks, which arouses researchers' thinking. According to Norton, his design requires too much control and too much standardization of machines in the network. Therefore, in the spring of 1973, Winton Cerf and Bob Kahn began to think about how to connect ARPA network with the other two existing networks, especially the satellite network (SAT net) and Aloha network (Aloha net) based on packet radio service in Hawaii. Cerf conceived a new computer communication protocol, which was finally called transmission control protocol / Internet Protocol (TCP / IP)
in 1975, ARPA network was transferred to defense department communication agency. Since then, ARPA network is no longer experimental and unique. A large number of new networks began to appear in the 1970s, including computer science research network (CSNET), Canadian Network (cdnet), and bitnet, because it & #; And NSFNET (National Science Foundation Network). The last network will eventually replace ARPA network as the high-speed link of Internet before it is replaced by commercial network
in the middle of 1982, ARPA network was stopped, the original communication protocol NCP was disabled, and only websites using CERN's TCP / IP language were allowed to communicate. On January 1, 1983, NCP became history, and TCP / IP began to become a general protocol
in 1983, ARPA network was divided into two parts: military network for military and defense departments (milnet) and ARPA network version for civilian use
in 1985, it became a breakthrough year of TCP / IP protocol. At that time, it became a part of UNIX operating system. Finally, it was put into sun microsystem workstation
with the rise of free online services and commercial online services, such as prodigy, fidonet, Usenet and gopher, the importance of ARPA network has been greatly weakened when NSFNET has become the internet hub. The system was shut down in 1989 and officially retired in 1990.
withdraw from the stage of history:
ARPA network can't communicate with indivial computer networks, which arouses researchers' thinking. According to Norton, his design requires too much control and too much standardization of machines in the network. Therefore, in the spring of 1973, Winton Cerf and Bob Kahn began to think about how to connect ARPA network with the other two existing networks, especially the satellite network (SAT net) and Aloha network (Aloha net) based on packet radio service in Hawaii. Cerf conceived a new computer communication protocol, which was finally called transmission control protocol / Internet Protocol (TCP / IP)
in 1975, ARPA network was transferred to defense department communication agency. Since then, ARPA network is no longer experimental and unique. A large number of new networks began to appear in the 1970s, including computer science research network (CSNET), Canadian Network (cdnet), and bitnet, because it & #; And NSFNET (National Science Foundation Network). The last network will eventually replace ARPA network as the high-speed link of Internet before it is replaced by commercial network
in the middle of 1982, ARPA network was stopped, the original communication protocol NCP was disabled, and only websites using CERN's TCP / IP language were allowed to communicate. On January 1, 1983, NCP became history, and TCP / IP began to become a general protocol
in 1983, ARPA network was divided into two parts: military network for military and defense departments (milnet) and ARPA network version for civilian use
in 1985, it became a breakthrough year of TCP / IP protocol. At that time, it became a part of UNIX operating system. Finally, it was put into sun microsystem workstation
with the rise of free online services and commercial online services, such as prodigy, fidonet, Usenet and gopher, the importance of ARPA network has been greatly weakened when NSFNET has become the internet hub. The system was shut down in 1989 and officially retired in 1990.
Hot content