Date: Fri, 6 Jun 2003 07:54:48 +0700 (ICT) From: Olivier Nicole <on@cs.ait.ac.th> To: mthomas@breakawayltd.com Cc: freebsd-questions@freebsd.org Subject: Re: Firewall/DMZ routing Message-ID: <200306060054.HAA25858@banyan.cs.ait.ac.th> In-Reply-To: <KOEILOHHAMNABNLJONMMIEGOCAAA.mthomas@breakawayltd.com> References: <KOEILOHHAMNABNLJONMMIEGOCAAA.mthomas@breakawayltd.com>
next in thread | previous in thread | raw e-mail | index | archive | help
> 08:33:08.160246 arp who-has A.B.C.154 tell A.B.C.145 It looks to me as if your ISP does not know you've subnetd your subnet. If it knew, it should never try to do an arp for the subnet A.B.C.152/29 but route the ICMP to A.B.C.146 and that's it. So the router of your ISP genuinely beleive that A.B.C.154 belongs to its Ethernet reachable network (which is not as you have the FW in between). Olivier
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200306060054.HAA25858>