06-08-2016 01:59 AM - edited 03-12-2019 12:51 AM
Does firewall block arp requests by default? If 2 hosts need to communicate via arp that are firewalled, should we create a ACL to allow arp traffic
Solved! Go to Solution.
06-09-2016 06:43 AM
Hi,
when they are on different subnets , then you should have an ACL for allowing the traffic
between two interfaces and if you have logical units for vlans on one interface only then make
security zone permit intra-interface command is also present.
let me know in case of any query.
rate if it helps.
Thanks,
Ankita
06-08-2016 04:17 AM
Hi,
If two PC's are in same broadcast domain and firewall is not deployed in transparent mode then they should directly communicate without explicitly putting any ACL as there will be a direct route for the subnet.
rate if it helps.
Thanks,
Ankita
06-08-2016 06:44 AM
What if they are on different subnets (vlans)
06-09-2016 06:43 AM
Hi,
when they are on different subnets , then you should have an ACL for allowing the traffic
between two interfaces and if you have logical units for vlans on one interface only then make
security zone permit intra-interface command is also present.
let me know in case of any query.
rate if it helps.
Thanks,
Ankita
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide