Re: Poll - Dynamic Arp Inspection

From: Sadiq Yakasai (sadiqtanko@gmail.com)
Date: Thu Apr 03 2008 - 10:14:17 ART

• Next message: Ram Shummoogum: "OT:FWSM 3.2.2"
• Previous message: Tanvir Afsar: "Re: CCIE #20425"
• Maybe in reply to: Geert Nijs: "Poll - Dynamic Arp Inspection"
• Next in thread: Murphy, William : "RE: Poll - Dynamic Arp Inspection"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Geert,

Apologies for the delayed response - work!

Yes, putting ARP ACLs, ofcourse thats a pain, but this being a
security feature, goes with the basic assumption that everyone is not
trusted until proven otherwise I guess.

As for turning is off by just trusting the interface, this is ofcourse
the easiest thing to do at this point in time. I have used this
sometimes when I become paranoid about who is on the port and I dont
trust my DHCP binding information or when I clear the binding table
entries!

Sadiq

• Next message: Ram Shummoogum: "OT:FWSM 3.2.2"
• Previous message: Tanvir Afsar: "Re: CCIE #20425"
• Maybe in reply to: Geert Nijs: "Poll - Dynamic Arp Inspection"
• Next in thread: Murphy, William : "RE: Poll - Dynamic Arp Inspection"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu May 01 2008 - 08:25:49 ART