Why does no router support ARP Spoofing Defense in Controller mode?

Why does no router support ARP Spoofing Defense in Controller mode?

Why does no router support ARP Spoofing Defense in Controller mode?
Why does no router support ARP Spoofing Defense in Controller mode?
2024-10-19 22:38:50 - last edited 3 weeks ago
Tags: #ARP
Model: ER605 (TL-R605)  
Hardware Version: V2
Firmware Version: 2.2.6 Build 20240718 Rel.82712

Hi!

 

Recently, I started delving into ARP Spoofing and ARP Poisoning attacks. Then, I looked into how I could (better) protect my Omada network against this. I saw an option for "ARP Spoofing Defense" in my Omada controller.

 

I enabled it, did an ARP Spoof, but the router didn't do anything.

 

Now I see in the specifications of my ER605 that ARP protection only works in Standalone Mode. That makes some sense since it's a budget device. But even the ER7206 (€142), ER707-M2 (€160), and the brand new ER7412-M2 (€200) from August 2024 (!) can only do this in Standalone mode.

 

For the ER704W-4G (€309) and ER706W (€132) variants, I don’t see an icon for "Sending GARP Packets" and "IP-MAC Binding." Only ARP Scanning has an icon, which means it is only available in Standalone mode.

 

 

Is it true that ARP Spoofing Defense works fully in Controller mode for the ER704W-4G and ER706W variants? Is ARP Scanning necessary for this functionality? Why was this choice made? It seems completely illogical to me based on hardware specifications and price.

 

 

In addition, I noticed that the specifications of the ER8411 have a *5 next to ARP Inspection, but at the bottom, it doesn't say what *5 means. Did you forget to add that, or does the ER8411 actually support ARP Inspection in Controller mode?

 

 

  0      
  0      
#1
Options
3 Reply
Re:Why does no router support ARP Spoofing Defense in Controller mode?
2024-10-20 11:16:13 - last edited 3 weeks ago

  @ikheetjeff 

 

?

 

  1  
  1  
#2
Options
Re:Why does no router support ARP Spoofing Defense in Controller mode?
3 weeks ago

  @GRL Yeah, i see that also. But when you turn it on, it doesn't work. I did an ARP Spoof on my network and it doesn't nothing.

 

Anyone has more information about this? Is this a bug?

  0  
  0  
#3
Options
Re:Why does no router support ARP Spoofing Defense in Controller mode?
3 weeks ago

Hi @ikheetjeff 

Thanks for posting in our business forum.

ikheetjeff wrote

  @GRL Yeah, i see that also. But when you turn it on, it doesn't work. I did an ARP Spoof on my network and it doesn't nothing.

 

Anyone has more information about this? Is this a bug?

As you have verified it, then Wireshark and paste your results here which shows the router fails to perform its job.

Best Regards! If you are new to the forum, please read: Howto - A Guide to Use Forum Effectively. Read Before You Post. Look for a model? Search your model NOW Official and Beta firmware. NEW features! Subscribe for the latest update!Download Beta Here☚ ☛ ★ Configuration Guide ★ ☚ ☛ ★ Knowledge Base ★ ☚ ☛ ★ Troubleshooting ★ ☚ ● Be kind and nice. ● Stay on the topic. ● Post details. ● Search first. ● Please don't take it for granted. ● No email confidentiality should be violated. ● S/N, MAC, and your true public IP should be mosaiced.
  1  
  1  
#4
Options