Question: Which can you put in a boot script to prevent MITM?
nmap -sS -sV -T5 192.168.27.72
arp -s 00:13:3b:12:6f:aa 192.168.12.72
tcpdump -i eth0 host 192.168.12.72 or ether host 00:13:3b:12:6f:aa
This is setting up static arp, which should cause the operating system to ignore the unsolicted ARP reply packets sent by the MitM.