TP-Link TL-ER6020 TL-ER6020 v1 User Guide - Page 147

Choose the menu Firewall→Anti ARP Spoofing→IP-MAC Binding to load the configuration page. To add the host with IP address of 192.168.1.20 and MAC address of 00-11-22-33-44-aa to the list, you can follow the settings below: Settings: IP Address: MAC Address: Status: 192.168.0.20 00-11-22-33-44-aa Activate Click the button to apply. The other entries can be added in the same way. 3) Set Attack Defense Choose the menu Firewall→Anti ARP Spoofing→IP-MAC Binding to load the configuration page. Select all the items for General and set the GARP packets sending interval to be 1ms as the following figure shows. Then click the button to apply. Figure 4-19 IP-MAC Binding 4.3.4.2 WAN ARP Defense To prevent the WAN ARP attack, you can bind the default gateway and IP address of WAN port. Obtain the MAC address of WAN port by ARP Scanning first. Choose the menu Firewall→Anti ARP Spoofing→ARP Scanning to load the configuration page. Enter the default gateway of the WAN port such as 58.51.128.254 in the Scanning Range field and click the button, the MAC address of the WAN port will display in the Scanning Result table. After obtaining the MAC address of WAN port from Scanning Result table, select this entry, then click the button to finish the binding operation. -142-