Hi, On Wed, Feb 12, 2014 at 07:42:01AM -0800, Michael Loftis wrote: > Not surprising to me actually since this behavior is the default for > Linux. Linux will also respond to ARPs where it shouldn't (set an IP > on an lo interface or just another interface, and it will ARP reply > for that IP on other interfaces that it does not belong on).
*responding* to off-subnet ARPs is one thing (and can actually be turned
on and off on linux) - and if that is needed or triggered it usually
hints at design problems elsewhere. Cisco does that as well, having
proxy ARP on-by-default.
But that's very much different from accepting unsolicited off-subnet
ARP replies and using them to send traffic somewhere it should not go
to (bad), make that the default (worse) and claim "this is how it
should be" (madness).
I don't think Linux does the latter, actually.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany [email protected]
fax: +49-89-35655025 [email protected]
pgp6uxXGpnjH0.pgp
Description: PGP signature
_______________________________________________ cisco-nsp mailing list [email protected] https://puck.nether.net/mailman/listinfo/cisco-nsp archive at http://puck.nether.net/pipermail/cisco-nsp/
