[c-nsp] Microsoft multicasted cluster vs. Cisco IOS
David J. Hughes
bambi at Hughes.com.au
Sat Nov 5 02:08:50 EST 2005
On 05/11/2005, at 10:42 AM, David Sinn wrote:
> RFC 1812 strictly precludes routers from accepting ARP's where the
> returned MAC address is a multicast one:
The clustering used by Checkpoint for HA Firewall 1 clusters used the
"multicast mac / unicast IP" mechanism. Always a pain in the rear-end
when there's a cisco in the middle. Looks like Checkpoint decided it
was safer just to play by the book as they now use a totally different
clustering mechanism that does not send back a dodgy arp response. As
amazing as it may seem, Microsoft is implementing problems that the
rest of the industry has already solved.
David
...
More information about the cisco-nsp
mailing list