当恶意客户机使用虚假的源地址来伪造一个 IP 报文时,TCP 就会出现问题了,这会大量 TCP SYN 报文攻击服务器。
The problem that can occur with TCP is when a rogue client forges an IP packet with a bogus source address, then floods a server with TCP SYN packets.
当一个网络中的设备发出去一个广播ARP请求时,它只是简单的相信当收到一个ARP响应时,这个响应真的是来自正确的设备(因为按照协议只有IP地址对应的设备才会发出相应报文,译者注)。
When a networked device sends an ARP request, it simply trusts that when the ARP reply comes in, it really does come from the correct device.
通过对IP与MAC地址的绑定和对ICMP重定向报文的处理,有效地对ARP欺骗进行防范。
ARP spoofing is defended effectively by binding IP and MAC or processing the ICMP redirect messages.
应用推荐