10-21-2010 04:30 AM - edited 03-11-2019 11:58 AM
hi folks,
I want to deny or block, an ARP packet received in cisco firewall. I have cisco IPS enabled in front of firewall.
can any one guide me.
regards,
basha.
10-21-2010 06:33 AM
Hi,
I noticed you have a similar question posted on the Firewall community as well. On the IPS unfortunately, there is no such way of doing such a thing if we are indeed referring to the same syslog message.
Thanks and Regards,
Prapanch
10-21-2010 10:54 AM
You can use arp access-list on the switch, or you can use dhcp snooping.
For the ASA you can use arp inspection in transparent firewall (it will not block an arp though).
I hope it helps a little.
PK
10-22-2010 07:57 AM
hi team,
I am little bit confused about the solution.
My firewall is used in route mode.
if we clear little bit, much appriacted.
10-22-2010 08:01 AM
In routed mode unfortunately there is no way to do that. Please post the exact syslog message you are getting.
Thanks and regards,
10-22-2010 07:54 AM
HI team,
sorry for that, reason, little bit confusing where to post. later i decided and noticed and moved this threat to firewall community.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
