|
||||||||
You miss the point they do it on regular Switched Ethernet Just the cheapest switches, and clients are not seeing each other. I really cannot change from m0n0wall, I am already using it for more than 2 years, and my clients are satisfied with fascinating easy web interface, I might migrate to pfsense, but nothing really much there, I look to m0n0wall as the slandered for me all what I need is in one small image, In other way, I believe there will be a solution or semi-solution on m0n0wall. It will come in time. Thanks for being patient with me. Best regards Mohammed Ismail -----Original Message----- From: Lee Sharp [mailto:leesharp at hal dash pc dot org] Sent: Friday, May 01, 2009 6:42 AM To: m0n0wall at lists dot m0n0 dot ch Subject: Re: [m0n0wall] Anti netcut (was Re: [m0n0wall] m0n0wall 1.3b17) Mohammed Ismail wrote: > I am talking about wired clients. > Thanks for your state full answers and for the tips. > After all convenient answers that I cannot really tell that they are wrong, > because of my little knowledge. But there will be a question > How do they do it in other systems? > How about miktrotik? > And there is another system an Egyptian Guy developed it that prevents > NetCut-Switchsniffer-Winarp Spoofer > And I actually saw some servers working on those systems here in Alexandria. > It even detects what I am doing. By using vlan capable switches and access points and keeping each user in a separate vlan. (Not cheap) As each is it's own entire network, there is no one to spoof. And as the router is essentially spoofing whatever IP you spit at it, it sees traffic outside the subnet. While this works for hotels, it is useless for an office network where you need to communicate with other systems, servers, and printers. Lee --------------------------------------------------------------------- To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch |