We're trying to complete some compliance testing at our local office and have run into a little problem:
In order to pass certain internal pen tests we need to have Dynamic ARP Inspection enabled on our internal switches to prevent man in the middle style attacks.
However, although I thought our switches could accommodate this feature it seems now they may not. Does anyone know how to enable DAI on a Cisco 2950 or how to enable a similar feature that will help accomplish the task of thwarting these styles of attacks?
Any and all help is greatly appreciated!!!