[c-nsp] Nmap(way ot)
Andrew Fort
afort at choqolat.org
Mon May 9 21:16:59 EDT 2005
David J. Hughes wrote:
> Couldn't agree with you more. Having proxy arp enabled by default is
> clutching onto history with a little too much gusto. Allowing proxy
> arp to recognise a static default as a "local entry" is a very
> dangerous thing.
Amusingly enough, we turned this behaviour off when moving IP customers
onto different equipment awhile back (yes, on the previous vendor's
software, we.. err.. couldn't disable this. sigh).
Of the four (out of some hundreds) of customers that complained about
this, they were the very same four customers who on occasion generate
(worm related) traffic spikes, log the most random tickets and make the
most support calls.
I almost died of lack of shock. :)
-andrew
More information about the cisco-nsp
mailing list