> > Are you suggesting that, all I need to do is send an ARP request to the > other host for it to update its arp cache. Thanks for the input. I will > look up the Linux ARP implementation, if I can get away with just > sending a gratuitous ARP packet to the other host too. > This may or may not work some ARP implementations may not updates its ARP cache from and arp relay unless it sent an arp query. The reson for this is to stop people on a non-trusted network from say that machine x is really nasty machine y who wants to do nasty things with your data. This allows many things from sniffing data on a switched network to sniffing data on a hub based network without the card in promisc mode (selective sniffing) also with this technic if your sniffer drops a packet the source machine will very nicly resend it for you since your little program still has to forward the packet to the correct host. James -- Kernelnewbies: Help each other learn about the Linux kernel. Archive: http://mail.nl.linux.org/kernelnewbies/ FAQ: http://kernelnewbies.org/faq/