Hi,
I've the following setup:
10.200.118.0/24 (internal)
|
|
| eth0:10.200.118.1
+--------+
| marvin |
+--------+
| eth1: 10.2.2.20
|
|
10.0.0.0/8 (external)
Now if a host on the external network sends an 'arp who-has
10.200.118.1' request marvin answers on eth1.
Is there any way to _stop_ that behaviour?
I.e. I want arp queries only answered on their very own interface (and
not for addresses assigned to other interfaces):
- if someone asks for 10.2.2.20 on eth1, answer it
- if someone asks for 10.200.118.1 on eth1, ignore it
Perhaps netfilter's arp table can help but I found zero information on
how to use it. Only a statement from September that there are no user
space tools to configure it.
yours,
peter
No, arp_filter doesn't seem to solve the issue (nor does the
documentation suggest that) as with arp_filter the source of the request
is important.
--
PGP signed and encrypted | .''`. ** Debian GNU/Linux **
messages preferred. | : :' : The universal
| `. `' Operating System
http://www.palfrader.org/ | `- http://www.debian.org/
Attachment:
pgpxey7rjyH56.pgp
Description: PGP signature