From owner-freebsd-questions Tue May 19 01:42:08 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id BAA21487 for freebsd-questions-outgoing; Tue, 19 May 1998 01:42:08 -0700 (PDT) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from caladan.tdx.co.uk (caladan.tdx.co.uk [195.188.177.4]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id BAA21299 for ; Tue, 19 May 1998 01:40:56 -0700 (PDT) (envelope-from kpielorz@tdx.co.uk) Received: from tdx.co.uk (lorca-tx.tdx.co.uk [195.188.177.242]) by caladan.tdx.co.uk (8.8.8/8.8.8) with ESMTP id JAA06670; Tue, 19 May 1998 09:40:08 +0100 (BST) (envelope-from kpielorz@tdx.co.uk) Message-ID: <35614547.1B4DCAC7@tdx.co.uk> Date: Tue, 19 May 1998 09:39:35 +0100 From: Karl Pielorz Organization: TDX X-Mailer: Mozilla 4.05 [en] (WinNT; I) MIME-Version: 1.0 To: Doug White CC: questions@FreeBSD.ORG Subject: Re: ARP's - Overriden even if marked 'permanent'? References: Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Doug White wrote: > I don't think so. ARP is sort of arbitrary anyway, if it gets new > information it'll overwrite it. It's `permanent' in the sense that it > won't expire it from the ARP cache and do ARP queries. Hmmm, so it's doing my security no good whatsoever - as even if I do mark the stuff permanent it will get overwritten... This kinda looks as if it's true - as if I set the arp's manually on my Cisco router - it _doesn't_ overwrite them (i.e. if I change a network card in a machine it can't talk to the Cisco)... Is there anyway of using IPFW to block incoming ARP's for addresses I've marked permanent (assuming I know the IP addresses in advance)? Regards, Karl To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message