From: Tarun Pahuja (pahujat@gmail.com)
Date: Mon Dec 31 2007 - 21:08:17 ARST
Anderson,
I would like to add a few words in addition to Farrukh's
explanation. The default behaviour is to "flood" when you turn on arp
inspection. You can also turn off "Flooding" by using the key work
"no-flood", if you do not the firewall to flood any requests out of it's
interface for unknown mac addresses when using static entries.
HTH,
Tarun
On 12/31/07, Anderson Mota Alves <mota.anderson@gmail.com> wrote:
>
> Hi guys,
>
> I have a doubt when I need to configure ARP Inspection in a PIX in
> transparent mode, I've seen from some workbooks that for the arp
> inspection
> section in a pix in transparent we also need to disable mac learning and
> configure static entries for the mac address from both interface (inside
> and
> outside). The only thing I don't get in here is the reason to disable mac
> learning (for me this practise is to avoid Mac spoofing) with it's
> different
> from arp spoofing.
>
>
> Any input would be really appreciated, and HAPPY NEW YEAR !!!! :-D
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Tue Jan 01 2008 - 12:04:32 ARST