Subject: Re: arping for
To: Paul Goyette <>
From: Ignatios Souvatzis <>
List: tech-net
Date: 06/15/1998 12:16:31
> Yeah - I see now how this could be some sort of DoS attack.
> And yes, you are correct - we certainly shouldn't be doing
> proxy arp unless told to do so.  For any given interface, 
> we should only respond to ARP requests for our IP address(es)
> on _that_ interface.

Yes. Thats what the code in sys/netinet/if_arp.c:in_arpinput() ensures (or
at least, tries to). Furthermore, I can't see how you could enter, at least
from the command line, an arp entry for ... normally.

Did the machine in question _ever_ (since reboot) have assigned
to the Ethernet interface?