pf operates at layer 3 and 4. arp is a layer 2 protocol. --Bill
On Sat, Apr 5, 2008 at 7:51 PM, Tortise <[EMAIL PROTECTED]> wrote: > Hi > > Re the WAN option "Block private networks", When set, this option blocks > traffic from IP addresses that are reserved for private > networks as per RFC 1918 (10/8, 172.16/12, 192.168/16) as well as loopback > addresses (127/8). You should generally leave this option > turned on, unless your WAN network lies in such a private address space, too. > > If this was working (it has not been changed from default of on) surely I > should not have logged entries such as: > > kernel: arp: 192.168.0.6 is on em1 but got reply from 00:13:ce:4f:b1:aa on > em0 > > (em1 = LAN, em0 = WAN) > > Kind regards > David Hingston > >
