Rodolfo Siviero Stein wrote: > > Anyone had a problem like this ? Any comments ? Is this hardware > related or software ? > Do you have multiple NICs cabled to the same HUB/switch? In my experience, when people see packets arriving on unexpected interfaces, that is the cause. The manner in which the Linux kernel handles ARP "who-has" requests makes this type of configuration unsuitable for firewalling since any interface connected to the HUB/switch can respond to "who-has" requests for any of the addresses assigned to one of those NICs. -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: tmeastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net
