Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
6121
Views
0
Helpful
3
Replies

Does firewall block arp requests by default?

Go to solution
grapevine
Level 1
Level 1

‎06-08-2016 01:59 AM - edited ‎03-12-2019 12:51 AM

Does firewall block arp requests by default? If 2 hosts need to communicate via arp that are firewalled, should we create a ACL to allow arp traffic

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ankojha
Level 3
Level 3
In response to grapevine

‎06-09-2016 06:43 AM

Hi,


when they are on different subnets , then you should have an ACL for allowing the traffic 

between two interfaces and if you have logical units for vlans on one interface only then make 

security zone permit intra-interface command is also present.

let me know in case of any query.

rate if it helps.

Thanks,

Ankita

View solution in original post

0 Helpful
3 Replies 3

Go to solution
ankojha
Level 3
Level 3

‎06-08-2016 04:17 AM

Hi,

If two PC's are in same broadcast domain and firewall is not deployed in transparent mode then they should directly communicate without explicitly putting any ACL as there will be a direct route for the subnet.

rate if it helps.

Thanks,

Ankita

0 Helpful

Go to solution
grapevine
Level 1
Level 1
In response to ankojha

‎06-08-2016 06:44 AM

What if they are on different subnets (vlans)

0 Helpful

Go to solution
ankojha
Level 3
Level 3
In response to grapevine

‎06-09-2016 06:43 AM

Hi,


when they are on different subnets , then you should have an ACL for allowing the traffic 

between two interfaces and if you have logical units for vlans on one interface only then make 

security zone permit intra-interface command is also present.

let me know in case of any query.

rate if it helps.

Thanks,

Ankita

0 Helpful
Review Cisco Networking for a $25 gift card
Top