In Comodo firewall I have “Protect the ARP Cache” and “Block Gratuitous ARP Frames” enabled. While this works against direct attacks to my address I have found that if I am running a virtual machine on the host, this protection no longer works.
In my test environment, I have a virtual machine that is configured to use a bridged connection which acts as if it was replicating a physical state. If I attempt to ARP cache poison that machine, the host machine gets poisoned as well. This also occurs when configuring the VM to use NAT.
I am not sure whether this is a problem with Comodo or VMware, but I was wondering if there was anyway that I could use Comodo to prevent this from happening.