how to prvent mac spoof

Greetings...


I'm using an script to add arp entry at client end , I compile and bind it with setup installer so that I get a setup file for my client installation . All I want is to add such a entry that will prevent mac spoofing if any of my client tries to add other mac address using windows registry. Looking forward for your kind response,.

Regards
Tehseen

 

If it were me, I'd look to block spoofed MAC addresses at the switch. You used to be able to set up VLANs to work with only certain MAC addresses and only on certain ports. To be honest a lot of the managed switches I've used recently wouldn't let you do that level of MAC management. I'd suggest you talk to a Cisco agent as this may be one of the cases where paying the Cisco premium is worth it: Cisco's IOS could give you the level of control you are looking for.

 

Well I know about vlan or vlsm solution beside that I im running an script at client end for adding static entry for gateway , now it comes in my mind that if there is a way to to check registery update for any manual mac entry or spoof if it detects any it must uninstall the lan card . Looking forward for your kind response.

Regards
Tehseen