Sophos Ideas / XG Firewall

XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

Suggest an Idea...

← XG Firewall

Implement proper ARP handling in multi-interfaces setup ( ARP FLUX problem )

Dear Sophos!

Implement proper ARP-FLUX problem handling in multi-interfaces setup.

ARP-FLUX:
The ARP Flux problem occurs when a host replies to ARP requests for interfaces on the same subnet, from any interface on that same subnet. ... However, in specific cases, ARP Flux generates unexpected behavior of applications due to incorrect mapping between IPv4 addresses and MAC addresses.

FIX:
echo 1 > /proc/sys/net/ipv4/conf/all/arp _ filter
echo 1 > /proc/sys/net/ipv4/conf/all/arp _ ignore
echo 2 > /proc/sys/net/ipv4/conf/all/arp _ announce

echo 1 > /proc/sys/net/ipv4/conf/default/arp _ filter
echo 1 > /proc/sys/net/ipv4/conf/default/arp _ ignore
echo 2 > /proc/sys/net/ipv4/conf/default/arp _ announce

Request:
Make this settings default, or add options to the GUI for turn on/off.

Thx.

1 vote

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close

We’ll send you updates on this idea

Tamas shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

0 comments

We're glad you're here

Please sign in to leave feedback
Signed in as (Sign out)
Close
Close
Submitting...
An error occurred while saving the comment

XG Firewall: Base System + General UI

Categories

Feedback and Knowledge Base

(thinking…)
icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.