对于玩系统的老手都知道,防止arp攻击实际上不需要这个防火墙那个防火墙,一句命令将ip与mac地址绑定即可。
例如:
arp -s 157.55.85.212 00-aa-00-62-c6-09
不过这句话在Windows7显得这么无助,会提示:ARP 项添加失败: 请求的操作需要提升。
(英文版提示:The ARP entry addition failed: Access is denied. )
询问了下Windows Client TechCenter,其中一个Moderator回答了我:
"Maybe you were trying to add a new IP-to-MAC record for an existed IP address or MAC address. We are not able to realize it with arp commands in Windows 7. "
原来windows7不支持用arp添加已经绑定了的地址,看来arp不行,只能拿起“万能而且万恶”的netsh了,
netsh interface ipv4 set neighbors 12 "57.55.85.212" "00-aa-00-62-c6-09" store=active
注意:12是网卡序号,需要运行前先查下。
微博帐号登录