To ensure secure communication on the network, the principles of confidentiality, integrity and accessibility must be carried out in unity. To prevent external attacks on the network, many threats are eliminated by using firewalls between the external network and the internal network. However, different security scenarios need to be implemented against threats that may come from within the local area networks. For this reason, the factors that may cause security vulnerabilities in the internal network should be checked and the security should be considered. One of the most important problems encountered here is the unnecessary network traffic that occurs in internal networks, slowing the system and making it inoperable. In this article, using the GNS3 (Graphical Network Simulator) network simulation program, MAC (Media Access Control) flood, DHCP (Dynamic Host Configuration Protocol) starvation and spoofing and Arp (Address Resolution Protocol) poisoning attacks are detected and a working example has been carried out to prevent it.

GNS3, Network Security, MAC flood, DHCP attacks, ARP poisoning

[1] Singer, P. W., Friedman, A, Cybersecurity: What everyone needs to know. Oxford University Press. pp.102-104, 2014.
[2] Bella, G., Bistarelli, S. , “Soft constraints for security protocol analysis: Confidentiality. In International Symposium on Practical Aspects of Declarative Languages”. Springer, Berlin, Heidelberg,pp. 108-122, 2001.
[3] Heberlein, L. T., Dias, G. V., Levitt, K. N., Mukherjee, B., Wood, J., Wolber, D, “A network security monitor. In Research in Security and Privacy”, Proceedings., IEEE Computer Society Symposium on, pp. 296-304,1990.
[4] Wullems, C., Tham, K., Smith, J., Looi, M., “A trivial denial of service attack on IEEE 802.11 direct sequence spread spectrum wireless LANs”, In Wireless Telecommunications Symposium, pp. 129-136, 2004.
[5] Chordiya, A. R., Majumder, S., Javaid, A. Y., “Man-in-the-Middle (MITM) Attack Based Hijacking of HTTP Traffic Using Open Source Tools.”, In 2018 IEEE International Conference on Electro/Information Technology (EIT), pp. 438-443, 2018.
[6] Nayak, G. N., Samaddar, S. G., “Different flavours of man-in-the-middle attack, consequences and feasible solutions.”, In Computer Science and Information Technology (ICCSIT), 2010 3rd IEEE International Conference on, Vol. 5, pp. 491-495, 2010.
[7] Ansari, A., Waheed, M. A., “Flooding attack detection and prevention in MANET based on cross layer link quality assessment.”, In Intelligent Computing and Control Systems (ICICCS), International Conference on IEEE, pp. 612-617,2017.
[8] Tripathi, N., Hubballi, N. , “Exploiting DHCP server-side ip address conflict detection: A dhcp starvation attack.”, In Advanced Networks and Telecommuncations Systems (ANTS), International Conference on IEEE, pp. 1-3, 2015.
[9] Aggarwal, R. K., “A Security Approach and Prevention Technique against ARP Poisoning.”, In International Conference on Information and Communication Technology for Intelligent Systems, Springer, Cham, pp. 39-49, 2017.
[10] Kumar, S., & Tapaswi, S., “A centralized detection and prevention technique against ARP poisoning.”, In Cyber Security, Cyber Warfare and Digital Forensic (CyberSec), International Conference on IEEE, pp. 259-264, 2012.
[11] Khurana, S., Kaur, R.: A security approach to prevent ARP poisoning and defensive tools. Int. J. Comput. Commun. Syst. Eng. (IJCCSE), 2(3), 431–437, 2015.
[12] Guha, R. K., Furqan, Z., Muhammad, S., “Discovering man-in-the-middle attacks in authentication protocols.”, In Military Communications Conference, MILCOM, IEEE, pp. 1-7, 2007.
[13] Conti, M., Dragoni, N., Lesyk, V., “A Survey of Man In The Middle Attacks.”, IEEE Communications Surveys & Tutorials, pp. 2035, 2016.
[14] Yılmaz, T., Karaarslan, E., Akın, G., “GNS3 Tabanlı Ağ Emülasyonlarının Bilgisayar Ağları Eğitiminde Kullanımı: Senaryolar ve Öneriler”, Researchgate, 2013.