The Sysadmin’s Daily Grind: Arpalert

ARP WATCH

Article from Issue 73/2006

Author(s): CHARLY KÜHNAST

Corporate policies prohibit the unauthorized connection of hardware to the company network, threatening dire consequences in the case of non-compliance. Fair enough, but how do you actually go about catching somebody trying to plug an illegal laptop into your Ethernet?

My choice for a faithful watchdog is Arpalert [1]. Arpalert creator Thierry Fournier recommends the following incantation to send the beast off into the wild: ./configure --prefix=/usr/local make make install This series of commands puts the C program in /usr/local/sbin and the arpalert.conf configuration file in /usr/local/etc/arpalert. No Place Like Home For my initial experiments, I decided to use a network that gives me excellent visibility, such as the network in my home office. It’s the weekend, and my wife has gone down to the local library, so I shouldn’t have more than four of five computers on the network. I did the following to launch Arpalert: /usr/local/sbin/arpalert

Buy this article as PDF

Express-Checkout as PDF

Price $2.95
(incl. VAT)

Buy Linux Magazine

SINGLE ISSUES

SUBSCRIPTIONS

Print Subs

Digisubs

TABLET & SMARTPHONE APPS

US / Canada

UK / Australia

Related content

Perl: Monitoring MAC Addresses

They say darkness is the friend of thieves, but the Perl daemon in this month’s column illuminates dastardly deeds, exposing hidden activities and alerting the admin when things seem to be going awry.

more »
Charly's Column

If protocols were human beings, NNTP would be a kind and slightly confused person that always believes the best of other people – even if they drop trash in the mailbox. Postfilter gives NNTP a watchdog.

more »
Charly's Column

Leafnode is a Usenet server for small sites where just a few users need access to a large number of groups. The Leafnode server is designed to recover from errors autonomously and needs very little attention.

more »
Charly's Column

Some people don’t mind leaving traces of their IP address wherever they go, others prefer to use a tool like The Onion Router.

more »
Charly's Column

Many tools keep growing with each new version, but Nmap 4.00 has lost weight thanks to the Diet-Nmap project. The latest incarnation of Nmap is not only quicker, it is also more frugal with memory.

more »

comments powered by Disqus

Visit Our Shop

Trial Subscription

Digital Subscription

Subscribe

Direct Download

Read full article as PDF:

Charly_Column.pdf (87.03 kB)

News

Nextcloud Announces Raspberry Pi-Powered Home Cloud Box

Innovative system adds a hard drive and Ubuntu Core to the RPi for an IoT hub.
Linus Torvalds Confirms the Date of the First Linux Release

Linux is two weeks younger than we thought!
End of OpenOffice?

OpenOffice

The Apache Software Foundation considers retiring OpenOffice
Adobe Gives New Life to NPAPI Plugin for Linux

Adobe Flash , Flash Player

Adobe won’t kill the plugin in 2017
LinuxCon North America Convenes in Toronto, Canada

Linux Foundation's big event celebrates the 25th anniversary of Linux
Linux Turns 25

Linux has evolved from “won’t be a professional” project to one of the most professional software projects in the history of computers.
Mirantis Joins Hands with SUSE To Offer RHEL Support; Red Hat Not Happy

Competitors get in the game with RHEL without Red Hat
Linux on Windows 10 Poses a Security Risk

Security researchers have already notified Microsoft; some fixes are available
Mirantis to Refactor OpenStack Fuel for Kubernetes

The company is collaborating with Google and Intel to use Kubernetes as an engine for Fuel
Canonical Joins Document Foundation Advisory Board

The upcoming release of LibreOffice will be available as a snap package