On Tuesday 16 April 2002 8:28 am, Craig Sanders wrote: > i've searched the FAQs, the documentation and the mailing list archives, > but can't find anything on this topic. > > is it possible to use netfilter to block either incoming "arp who-has" > requests or outgoing "arp reply" packets?
No. ARP is not IP. Netfilter only does IP. The Address Resolution Protocol is used between ethernet devices to find out the ethernet address which corresponds to a given IP address. As such, it cannot possibly be IP-based, because you need to know the ethernet address to send an IP packet to :-) Regard ARP as 'lower-level' than IP and you won't go far wrong. Antony.
