Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

recommended solution for ARP packet

hi folks,

I want to deny or block,   an ARP packet received in cisco firewall. I have cisco IPS enabled in front of firewall.

can any one guide me.

regards,

basha.

  • Firewalling
5 REPLIES
Cisco Employee

Re: recommended solution for ARP packet

Hi,

I noticed you have a similar question posted on the Firewall community as well. On the IPS unfortunately, there is no such way of doing such a thing if we are indeed referring to the same syslog message.

Thanks and Regards,

Prapanch

Cisco Employee

Re: recommended solution for ARP packet

You can use arp access-list on the switch, or you can use dhcp snooping.

For the ASA you can use arp inspection in transparent firewall (it will not block an arp though).

I hope it helps a little.

PK

New Member

Re: recommended solution for ARP packet

hi team,

I am little bit confused about the solution.

My firewall is used in route mode.

if we clear little bit, much appriacted.

regards,

Cisco Employee

Re: recommended solution for ARP packet

Hi,

In routed mode unfortunately there is no way to do that. Please post the exact syslog message you are getting.

Thanks and regards,

Prapanch

New Member

Re: recommended solution for ARP packet

HI team,

sorry for that, reason, little bit confusing where to post. later i decided and  noticed and moved this threat to firewall community.

regards,

239
Views
0
Helpful
5
Replies