IP Reservation / IP-Mac Binding or Both ?
This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
This is my first TP link router and I'm noticing there's features in it I've never seen before such as IP-Mac Binding.. I know what IP Reservation is for as I use it, And I understand from what I've read how IP-Mac binding is suppose to help protect devices on a network. But what I'm not sure of, Are they supposed to be used independently using one or the other ? Or can they both be used at the same time ? This is my first TPLink router and I'm noticing features that I've never seen before....
Best Regards
Jim
- Copy Link
- Subscribe
- Bookmark
- Report Inappropriate Content
Hello,
"DHCP address reservation" or "IP Reservation" specifically means that the router will always offer the given address whenever the host asks for one using the DHCP auto-configuration protocol. However, only DHCP offers were made static, but the router's IP-MAC neighbor cache (aka the ARP cache) is still filled in dynamically using ARP. Meaning, if you bypass DHCP and manually configure another host to use the reserved address, it'll work. As soon as the "IP-old MAC" cache entry expires, the router sends a new ARP query, learns the new MAC address, adds "IP-new MAC" to the ARP cache, and packets go to the 'new' host.
"IP-MAC binding" or "ARP Binding" won't necessarily affect DHCP, but it does add a fixed IP-MAC entry to the router's neighbor cache. If another host tries to use the same IP address, the router won't know that. It will trust the fixed IP-MAC binding, and will always send packets to the "bound" MAC address, even if the host is actually offline.
So far, IP-MAC binding primarily sounds like a security feature, it partially avoids "ARP spoofing" attacks, and works even if DHCP is turned off entirely.
Hope this helps.
- Copy Link
- Report Inappropriate Content
Hello,
"DHCP address reservation" or "IP Reservation" specifically means that the router will always offer the given address whenever the host asks for one using the DHCP auto-configuration protocol. However, only DHCP offers were made static, but the router's IP-MAC neighbor cache (aka the ARP cache) is still filled in dynamically using ARP. Meaning, if you bypass DHCP and manually configure another host to use the reserved address, it'll work. As soon as the "IP-old MAC" cache entry expires, the router sends a new ARP query, learns the new MAC address, adds "IP-new MAC" to the ARP cache, and packets go to the 'new' host.
"IP-MAC binding" or "ARP Binding" won't necessarily affect DHCP, but it does add a fixed IP-MAC entry to the router's neighbor cache. If another host tries to use the same IP address, the router won't know that. It will trust the fixed IP-MAC binding, and will always send packets to the "bound" MAC address, even if the host is actually offline.
So far, IP-MAC binding primarily sounds like a security feature, it partially avoids "ARP spoofing" attacks, and works even if DHCP is turned off entirely.
Hope this helps.
- Copy Link
- Report Inappropriate Content
Information
Helpful: 0
Views: 1949
Replies: 1
Voters 0
No one has voted for it yet.