Solved: Does firewall block arp requests by default?

grapevine · ‎06-08-2016

Does firewall block arp requests by default? If 2 hosts need to communicate via arp that are firewalled, should we create a ACL to allow arp traffic

ankojha · ‎06-09-2016

Hi,

when they are on different subnets , then you should have an ACL for allowing the traffic

between two interfaces and if you have logical units for vlans on one interface only then make

security zone permit intra-interface command is also present.

let me know in case of any query.

rate if it helps.

Thanks,

Ankita

View solution in original post

ankojha · ‎06-08-2016

Hi,

If two PC's are in same broadcast domain and firewall is not deployed in transparent mode then they should directly communicate without explicitly putting any ACL as there will be a direct route for the subnet.

rate if it helps.

Thanks,

Ankita

grapevine · ‎06-08-2016

What if they are on different subnets (vlans)

ankojha · ‎06-09-2016

Hi,

when they are on different subnets , then you should have an ACL for allowing the traffic

between two interfaces and if you have logical units for vlans on one interface only then make

security zone permit intra-interface command is also present.

let me know in case of any query.

rate if it helps.

Thanks,

Ankita