LinuxÒÁµéÔ°ÂÛ̳'s Archiver

blackspace ·¢±íÓÚ 2004-2-20 14:33

ÈçºÎÒþ²ØarpµØÖ·£¿

ÈçºÎµ±±ðÈËARPÎҵĵØַʱºò£¬²»ÀíËü£¿²»¸æËßËüÎҵĵØÖ·ÐÅÏ¢£¿

blackspace ·¢±íÓÚ 2004-2-20 14:47

ÏëͨÁË£¬²»ÐУ¬:D £¬¾ÍÉϲ»ÁËÍøÂçÁË

lost33 ·¢±íÓÚ 2004-2-23 09:34

ÎÒ¾õµÃ¿ÉÒÔÓÐÑ¡ÔñµÄ»Ø¸´£¬±ÈÈçÊÇÎÒµÄDHCP£¬ÎҾͻشð£¬ÊÇÒ»¸öÍø¶ÎµÄÆäËû¶«Î÷¾Í²»´îÀíËü£¬ÕâÑùÊDz»ÊǾͿÉÒÔ±ÜÃâarpÐá̽ÁË£¿

blackspace£¬ÓÐÐËȤ¼ÌÐøô£¿

blackspace ·¢±íÓÚ 2004-2-23 10:13

2¸ö½á¹ûÏ×ÉÏ£º
ÓÐʱºî¸ü¸ÄMACÊǸüºÃµÄÑ¡Ôñ£¬
¿ÉÒÔ½ûÖ¹arp£¬(Õâ¸ö²»Èç¼ô¶ÏÒ»¸ùÍøÏß)
ÕâÁ½¸ö¶¼¿ÉÒÔÓÃifconfigÀ´¸ã¡£


ÓÐÑ¡ÔñµÄ»Ø¸´£¬¼ÌÐøÑо¿£¡

blackspace ·¢±íÓÚ 2004-2-23 10:21

¹Ø¼üiptablesºÃÏó²»¹ÜarpµÄÊÂÇé¡£

-p, --protocol [!] protocol
              The  protocol of the rule or of the packet to check.  The speci-
              fied protocol can be one of tcp, udp, icmp, or all, or it can be
              a  numeric  value, representing one of these protocols or a dif-
              ferent  one.   A  protocol  name  from  /etc/protocols  is  also
              allowed.   A  "!" argument before the protocol inverts the test.
              The number zero is equivalent to all.  Protocol all  will  match
              with  all  protocols and is taken as default when this option is
              omitted.

blackspace ·¢±íÓÚ 2004-2-23 10:23

apple linux # iptables -A INPUT -p arp -j LOG
iptables v1.2.9: unknown protocol `arp' specified
Try `iptables -h' or 'iptables --help' for more information.

lost33 ·¢±íÓÚ 2004-2-24 10:03

¿´À´ÄãÐèÒª¶ÔÍøÂçЭÒéÉîÈëÁ˽âÒ»ÏÂϹþ£¬
arpºÍ tcp/ip ²»ÊÇÒ»¸ö²ãµÄ£¬arp±Ètcp¸üµ×²ã¡£
ËùÒÔ£¬iptables²»¹Ü£¬
Èç¹ûÊÇudp £¬Ëû¾Í¹Ü£¬ÒòΪÊÇÒ»¸ö²ãµÄ¡£

ÎÒ˵µÄÊÇ£¬×Ô¼º±àÒ»¸ö³ÌÐò£¬²»ÖªµÀ flag ´ó´óÄܲ»ÄܸãÒ»¸ö£¿£¿

blackspace ·¢±íÓÚ 2004-2-24 10:51

<img src=http://imagine.51.net/down/files/2004224_arp>

blackspace ·¢±íÓÚ 2004-2-24 11:00

[COLOR=darkblue]
Why does arptables have 2 chains on a 2.4 kernel and 3 chains on a 2.6 kernel?
[/COLOR]
    The 2.4 kernel doesn't have the arptables FORWARD chain as 2.4 kernels can't filter bridged ARP traffic.

[COLOR=darkblue]
When is the bridged ARP traffic seen by arptables?
[/COLOR]
    The artables FORWARD chain sees all ARP packets that are being bridged, it sees no other traffic.

[COLOR=darkblue]
What about ARP packets that arrive through a bridge port and are delivered to the bridge's local ARP stack?
[/COLOR]
    They are seen in the arptables INPUT chain and have as input device the logical bridge device, unless you broute them using ebtables. Brouted packets will have the physical bridge port as input device.

[COLOR=darkblue]
What about locally generated ARP packets that leave the bridge through a logical bridge device?
[/COLOR]
    They are seen in the arptables OUTPUT chain and have as output device the logical bridge device.

blackspace ·¢±íÓÚ 2004-2-24 11:14

apple net # cat /proc/net/arp_tables_names
filter


¾ÍÊÇÕÒ²»µ½arptables¹¤¾ß¡£

blackspace ·¢±íÓÚ 2004-2-24 11:38

lost33ÀÏ´ó:
¿´Ñù×Ó£¬ÈÎÎñÍê³ÉÁË¡£

apple sbin # ./arptables -L
Chain INPUT (policy ACCEPT)

Chain OUTPUT (policy ACCEPT)

Chain FORWARD (policy ACCEPT)

cnlgw ·¢±íÓÚ 2004-3-24 14:43

³ý·Çͬ¹ý½»»»»ú£¬ÔÚÉϳɸôÀ룬·ñÔòÄÑ×÷

´ºÅ¯»¨¿ª ·¢±íÓÚ 2004-5-22 20:20

[color=blue]

¡¡¡¡arptablesÕâ¸ö¹¤¾ßÄÄÀïÓУ¿
[/color]

blackspace ·¢±íÓÚ 2004-5-24 20:12

google

yocaee ·¢±íÓÚ 2004-6-8 08:18

Çó¾È!!

¸÷·´óÏÀ,ÎÒÏëÇó¾È!!
ÔÚÎÒÆô¶¯LINUXʱ,³öÏÖÁËÒ»¶Ô»°¿ò:I could not start the X server(your graphical environment)due to some internal error.

irror ·¢±íÓÚ 2005-7-19 14:44

ÔÚswitch ÉÏ»® vlan Ò²¿ÉÒÔ°É!

Roc.Ken ·¢±íÓÚ 2005-8-20 12:03

arp µÄÒþ²Ø»òÕßÊÇÆÛÆ­ÔÚ linux cluster ÖÐÊÇÒ»¸ö¹Ø¼üµÄ¼¼Êõ£¬ÔÚlinux µÄ¸÷¸ö°æ±¾µÄÄںˣ¨2.0.*-2.6.*£©Öж¼Óд˹¦ÄܵÄʵÏÖ,

[url]http://www.linuxvirtualserver.org/docs/arp.html[/url]

Ò³: [1]

Powered by Discuz! Archiver 6.1.0  © 2001-2007 Comsenz Inc.