Hi, I've the following setup: 10.200.118.0/24 (internal) | | | eth0:10.200.118.1 +--------+ | marvin | +--------+ | eth1: 10.2.2.20 | | 10.0.0.0/8 (external) Now if a host on the external network sends an 'arp who-has 10.200.118.1' request marvin answers on eth1. Is there any way to _stop_ that behaviour? I.e. I want arp queries only answered on their very own interface (and not for addresses assigned to other interfaces): - if someone asks for 10.2.2.20 on eth1, answer it - if someone asks for 10.200.118.1 on eth1, ignore it Perhaps netfilter's arp table can help but I found zero information on how to use it. Only a statement from September that there are no user space tools to configure it. yours, peter No, arp_filter doesn't seem to solve the issue (nor does the documentation suggest that) as with arp_filter the source of the request is important. -- PGP signed and encrypted | .''`. ** Debian GNU/Linux ** messages preferred. | : :' : The universal | `. `' Operating System http://www.palfrader.org/ | `- http://www.debian.org/
Attachment:
pgpxey7rjyH56.pgp
Description: PGP signature