===== Address Resolution Protocol (ARP) Spoofing  ===== 
[[dido:public:ra:xapend:xapend.a_glossary:start| Return to Glossary ]]

**Address Resolution Protocol (ARP) Spoofing** is one way to initiate [[dido:public:ra:xapend:xapend.a_glossary:m:mitm|man-in-the-middle attacks]]. The attacker sends an [[dido:public:ra:xapend:xapend.a_glossary:a:arp]] packet that spoofs the MAC address of another device on the [[dido:public:ra:xapend:xapend.a_glossary:l:lan]]. Instead of the [[dido:public:ra:xapend:xapend.a_glossary:s:switch | switching]] device sending traffic to the proper [[dido:public:ra:xapend:xapend.a_glossary:n:netdev]], it sends the traffic to the device with the spoofed address that is impersonating the proper device. If the impersonating device is the attacker's machine, the attacker receives all the traffic from the switch that must have gone to another device. The result is that traffic from the switching device is misdirected and cannot reach its proper destination. 

Source: [[https://www.juniper.net/documentation/en_US/junos/topics/task/configuration/understanding-and-using-dai.html | Juniper ARP Spoofing]]

/**=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
/* To add a discussion page to this page, comment out the line that says 
  ~~DISCUSSION:off~~
*/
~~DISCUSSION:on|Outstanding Issues~~
~~DISCUSSION:off~~