InformationDisables the Proxy-ARP function on untrusted interfaces
The Firepower replies to ARP requests performed to IP addresses belonging to its interfaces' subnets and also to global IP addresses in some NAT configurations. Where the appliance is not asked to be a proxy for ARP requests, the Proxy-ARP function should be disabled especially on untrusted interfaces since attackers can act as legitimate devices by spoofing their IP addresses, perform ARP requests thus receiving packets intended to them.
SolutionUse the Predefined FlexConfig object found in Firepower Management Center:
FlexConfig Object Name - Sysopt_noproxyarp
Configures noproxy-arp CLIs.