[ previous ] [ next ] [ threads ]
 
 From:  "Wayne Fiori" <dev9null at gmail dot com>
 To:  apiasecki at midatlanticbb dot com, m0n0wall at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall] Blocking ARP Requests? Even Possible?
 Date:  Mon, 7 Apr 2008 14:17:15 -0700
Put the two networks on different VLANs if you need to keep both
interfaces connect to the same switch.
-
=Wayne




On 4/7/08, Adam Piasecki <apiasecki at midatlanticbb dot com> wrote:
> I have a m0n0wall setup like this
>                                    ______
> LAN[VR0](10.71.0.X) -----|Switch|
> MAN[VR1](10.15.0.X) ----|_____|
>
> I have a LAN interface and a Management Interface plugged into the same
> switch.
>
> It works fine, but I'm getting the following messages from m0n0wall.
>
> /"kernel: arp: 10.71.0.206 is on vr0 but got reply from
> 00:19:d2:49:09:8d on vr1"/
>
> Basically it's telling me that an IP that belongs to the LAN can be seen
> on the Management interface. How can i prevent this message from showing
> up? I don't really care if the traffic can see each other in the switch,
> but once it hits my firewall. I want only my MAN IPs to access it's
> port, and only the LAN IPs to access it's port.
>
>
> Adam
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>