On 10/22/07 15:50, Vaidas M wrote:
Thanks for your answer, this would help.

You are welcome.

I think I know how to block arp: -p ARP -j DROP something like that, ant the broadcasts: --pkttype-type ...

Be careful blocking all ARP / broadcasts. Remember that equipment will need to ARP to find the router, at least from the two LANs that are not common with the router.

You will probably want to allow ARPs to the router's IP address (and any other common equipment) and block all others.

Grant. . . .
