cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
6096
Views
0
Helpful
3
Replies

Does firewall block arp requests by default?

grapevine
Level 1
Level 1

Does firewall block arp requests by default? If 2 hosts need to communicate via arp that are firewalled, should we create a ACL to allow arp traffic

1 Accepted Solution

Accepted Solutions

Hi,


when they are on different subnets , then you should have an ACL for allowing the traffic 

between two interfaces and if you have logical units for vlans on one interface only then make 

security zone permit intra-interface command is also present.

let me know in case of any query.

rate if it helps.

Thanks,

Ankita

View solution in original post

3 Replies 3

ankojha
Level 3
Level 3

Hi,

If two PC's are in same broadcast domain and firewall is not deployed in transparent mode then they should directly communicate without explicitly putting any ACL as there will be a direct route for the subnet.

rate if it helps.

Thanks,

Ankita

What if they are on different subnets (vlans)

Hi,


when they are on different subnets , then you should have an ACL for allowing the traffic 

between two interfaces and if you have logical units for vlans on one interface only then make 

security zone permit intra-interface command is also present.

let me know in case of any query.

rate if it helps.

Thanks,

Ankita

Review Cisco Networking for a $25 gift card