ARP Security Settings
ARP spoofing is a cyber attack that is carried out over a Local Area Network (LAN) that sends malicious ARP packets to a default gateway on a LAN. For defend ARP spoofing, enable ARP attack defense, gratuitous ARP sending, and ARP spoofing detection.
The rate limit of “ARP Attack Defense” is the rate limit of all ARP packets on the intranet.
If there are many computers or mobiles in the intranet network, the rate limit should be 10 packets/second for a single terminal to avoid killing the normal hosts by mistake. If there are up to 200 hosts in the intranet, the rate limit should be 2000 packs/second.
ARP Spoof List
Spoofing detection is only the possibility of prompting spoofing. The higher the level, the more likely it is to spoof. For security reasons, the router will not let the scammer’s package loss. ARP spoofing related information will not only be displayed here but also alarms in the system security log, please refer to [System Status] – [Security Log].