Date: Wed, 19 Jul 2000 17:35:47 -0700 From: "Dan O'Connor" <dan@mostgraveconcern.com> To: "freebsd-questions" <freebsd-questions@freebsd.org> Subject: ARP & RFC 1918 addresses on outside interface Message-ID: <003e01bff1e2$73f80440$0200000a@danco>
next in thread | raw e-mail | index | archive | help
Greetings all,
I have a DSL connection and am using the 10.x.x.x address space for my
internal LAN.
Lately I have been seeing a lot of:
/kernel: arp: 10.0.0.2 is on ep0 but got reply from
00:50:04:87:ab:1e
on dc0
in my logs.
I do *not* have two network cards connected to the same hub; this is
definitely a response from someone else's network leaking out to their DSL
connection.
I contacted my ISP and they told me there's nothing they can do since the
leak occurs at the ATM side of their DSL router and thus can't be filtered
out, although such packets don't go beyond the router.
I'm using ipfw and natd on my gateway. Are there any rules I can use to
block these ARP replies?
Any other ideas? Can I block ARP from querying on the DSL interface?
Thanks for any help,
--Dan
--
Dan O'Connor
On Matters of Most Grave Concern
http://www.mostgraveconcern.com
FreeBSD Cheat Sheets
http://www.mostgraveconcern.com/freebsd/
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?003e01bff1e2$73f80440$0200000a>