Thanks, lsmith
You seem like a really are really knowledgeable.
Just so I understand correctly, you have your external interface addressing mode set to DHCP?
As I understand it, this traffic hits my external interface to tell my unit, here is your IP. The only thing is when I sniffed this traffic I could see other peoples PC' s responding with there name and IP' s. This is why I want to block it if possible.
What do you mean you never allowed these thru? So you see this broadcast traffic on your current sessions, but you don' t have a FW policy allowing this traffic to continue to your internal side?
Also, what do you use to filter through logs, for easier reviewing of logs. I currently use concatenate in Excel and then use a pivot table to better see what has happend. Any helpful scripts or apps?
Thanks,
Davey
Forti OS 4.0:
FLG_100B-v400-build0705 (4.3.7)
FWF_80CM-v400-build0665 (4.3.15)
Forti OS 5.0:
FWF_90D-v500-build0228 (5.0.3)