I'd like to limit my network's exposure to ARP cache poisoning (by tools such as Cain & Abel).
So far, the only solution I have is to add static ARP cache entries for my servers, routers, firewall, etc. to each system, which is a nuisance for a few reasons:
1. I have to maintain a table of each IP/MAC address
2. Modifying the cache requires admin privileges
If that's my only solution, I'll likely write a script and have the systems run it on startup as a local admin user.
Are there any other solutions to prevent ARP cache poisoning?