- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-08-2016 01:59 AM - edited 03-12-2019 12:51 AM
Does firewall block arp requests by default? If 2 hosts need to communicate via arp that are firewalled, should we create a ACL to allow arp traffic
Solved! Go to Solution.
- Labels:
-
NGFW Firewalls
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-09-2016 06:43 AM
Hi,
when they are on different subnets , then you should have an ACL for allowing the traffic
between two interfaces and if you have logical units for vlans on one interface only then make
security zone permit intra-interface command is also present.
let me know in case of any query.
rate if it helps.
Thanks,
Ankita
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-08-2016 04:17 AM
Hi,
If two PC's are in same broadcast domain and firewall is not deployed in transparent mode then they should directly communicate without explicitly putting any ACL as there will be a direct route for the subnet.
rate if it helps.
Thanks,
Ankita
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-08-2016 06:44 AM
What if they are on different subnets (vlans)
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
06-09-2016 06:43 AM
Hi,
when they are on different subnets , then you should have an ACL for allowing the traffic
between two interfaces and if you have logical units for vlans on one interface only then make
security zone permit intra-interface command is also present.
let me know in case of any query.
rate if it helps.
Thanks,
Ankita
