how to prevent network sniffing
Hi,
I need to setup a network which must have network sniffing prevention system so that when hacker try to sniff or capture traffic, it'll be failed.
Could you advise ?
Thanks
Rgds
I need to setup a network which must have network sniffing prevention system so that when hacker try to sniff or capture traffic, it'll be failed.
Could you advise ?
Thanks
Rgds
Aaron Tomosky
Sniffing on a switched network requires the use of arp poisoning. Any decent managed switches can stop that. No way to really stop sniffing wired traffic unless you go walled garden but even that may not work.
ASKER
I have tested capturing in a hotel wireless network before.
I can confirm that when i test capturing I get nothing except myself traffic. I'm not sure how they setup.
What kind of managed switch or device I can use to prevent from Sniffing ?
Thanks
I can confirm that when i test capturing I get nothing except myself traffic. I'm not sure how they setup.
What kind of managed switch or device I can use to prevent from Sniffing ?
Thanks
There is a program called "Cain" available here:
http://www.oxid.it/cain.html
There are walkthroughs for arp poisoning sniffing. They work at hotels ;)
It basically tells the switch that all the Mac addresses (that you select) are on your switch port, so all traffic (normally you choose all ips to the gateway ip but you can choose any set of sources and destinations) goes through your computer then continues on to it's destination.
Knowing its called arp poisoning is all you need to search for lots of information from Cisco and other sources
http://www.google.com/search?q=switches+block+arp+poisoning+attacks
http://www.oxid.it/cain.html
There are walkthroughs for arp poisoning sniffing. They work at hotels ;)
It basically tells the switch that all the Mac addresses (that you select) are on your switch port, so all traffic (normally you choose all ips to the gateway ip but you can choose any set of sources and destinations) goes through your computer then continues on to it's destination.
Knowing its called arp poisoning is all you need to search for lots of information from Cisco and other sources
http://www.google.com/search?q=switches+block+arp+poisoning+attacks
ASKER
Hi aarontomosky,
I used Cain & able in Hotel actually .It was not that I was trying to capture. It was just curious to know if in Public wifi which we have to log in using Cubic Portal authentication, I just wanted to know if other can capture http traffic or not.
When I capture using Cain & abel, i get nothing but when I test at home network , i can capture my friends traffic.
That is why I'm thinking which Cisco device or technology can prevent Network sniffing.
Appreciate if you can tell me which can really prevent network sniffing.
Thanks
I used Cain & able in Hotel actually .It was not that I was trying to capture. It was just curious to know if in Public wifi which we have to log in using Cubic Portal authentication, I just wanted to know if other can capture http traffic or not.
When I capture using Cain & abel, i get nothing but when I test at home network , i can capture my friends traffic.
That is why I'm thinking which Cisco device or technology can prevent Network sniffing.
Appreciate if you can tell me which can really prevent network sniffing.
Thanks
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I'd request request you to disable ICMP Echo reply into gateway.