You could write a plugin...
Plugins can see all of the traffic and process it however they want to. Configuration
data can be stored in a database (persistent from run to run).
You would have to define in rigid (programmable) terms, what a "poison arp" is, and
figure out how to detect it.
-----Burton
---------- Original Message ----------------------------------
From: "Md Shuzaimi Abdullah" <[EMAIL PROTECTED]>
Reply-To: [EMAIL PROTECTED]
Date: Wed, 3 Jul 2002 12:00:07 +0800
>Hi,
>
>I'm Shuzaimi from one of the ISP's in Malaysia. I've read thru and
>evaluated your piece of tool and it seems to come in handy.
>
>At the same time, I do have a question to post. Is there anyway that
>NTOP could alert or notify if there is any poison-arp activity. I'm
>planning to use this tool in the Server Co-Location Facility of our ISP.
>
>
>Please do advise.
>
>Best Regards.
>Muhammad Shuzaimi Abd.
>IP Network Services
>ISP Technology
>TIME dotCom Berhad
>Tel : +603-50326225 Fax: +603-50326204
>
>
>
__________________________________________________
D O T E A S Y - "Join the web hosting revolution!"
http://www.doteasy.com
_______________________________________________
Ntop-dev mailing list
[EMAIL PROTECTED]
http://lists.ntop.org/mailman/listinfo/ntop-dev
