Manage ARP Table

Performs management operations on the user PC's ARP table. Malicious users may attempt to bypass internal network security systems or intercept internal user packets by spoofing the ARP table. NAC provides the following functions to prevent such attempts:

• Countermeasures against ARP Spoofing attacks where malicious users intercept packets.
• Network protection by enforcing that ARP entries cannot be manually set to Static.

1. Go to Policy in the top menu.
2. In the left Policy menu, go to Policy > Node Policy > Node Action.
3. In the Node Action management window, find and click Manage ARP Table.

Below are Basic Settings.

1. For CWP Message, add a message to display according to the policy.
2. For Label, adding a label allows you to categorize the plugin with a custom label displayed in the "Description" input field.

Below are Plugin Settings.

1. For Static ARP Blocking, set to On to enforce that statically configured ARPs cannot be used.
2. Set Anti ARP Spoofing to On to configure Static ARP for conflict-protected IPs to prevent ARP Spoofing (ARP information of verified nodes).
   • Applicable Node Group: Select to apply AAS (Anti ARP Spoofing) only if the IP belongs to a specific node group. (Applies to all nodes if not selected)
3. Click the Modify button.
4. In the left Policy menu, go to Node Policy.
5. In the Node Policy window, click Default Policy.
6. Find Node Action Settings and click Assign.
7. In the Available items, find Manage ARP Table and drag it to the Selected items.
8. Click the Add button.
9. Click the Modify button.

Note

Go to Management > Node > IP Management tab > IP Policy to configure conflict prevention settings.