Does anyone know a script to detect ARP spoofing.
That by which a client is connected to the router board.
Just a suggestion: is management-frame protection deployable on your scenario?
Hello Pukkita, What exactly do you want to say?
My English is very poor
Thanks for your quick reply
I mean, how does the client connect to your network? By using a mikrotik CPE device connected to a mikrotik AP device?
No, with computer or laptop.
I would love to know the answer for the mikrotik ap/cpe scenario.
Sent from my SM-G920I using Tapatalk
Regarding a Mikrotik AP/CPE scenario, management frame protection adds an additional layer of security preventing MAC spoofing see http://wiki.mikrotik.com/wiki/Manual:Interface/Wireless#Management_frame_protection
plisken, is this a hotspot scenario? a (W)ISP?
No, its not a hotspot but public ap.
So to control access you just use MAC ↔ IP binding?
Maybe this post can give you some ideas: http://forum.mikrotik.com/t/32-subnet-mask-to-prevent-arp-spoofing/26921/1