[c-nsp] Static route withdrawal / tracking arp
Rodney Dunn
rodunn at cisco.com
Wed Apr 4 12:25:15 EDT 2007
On Wed, Apr 04, 2007 at 10:53:54AM -0400, fonesurj wrote:
> Can't ping the outside interface of the firewall.
Ping throught it or one of the other services through the
firewall. If it's no up they will not work either. Use
any one of those services available in IP SLA and hook a track
object to it.
>
> I'm not seeing where the functionality required is available.
There is no way to do it on arp.
>
>
> ----- Original Message -----
> From: "Rodney Dunn" <rodunn at cisco.com>
> To: "fonesurj" <dwinkworth at wi.rr.com>
> Cc: <cisco-nsp at puck.nether.net>
> Sent: Wednesday, April 04, 2007 11:16 AM
> Subject: Re: [c-nsp] Static route withdrawal / tracking arp
>
>
> >You can get the same type thing with Object tracking of static routes.
> >
> >Search for it on CCO.
> >
> >You can monitor the state of the FW and have the route adjusted
> >accordingly.
> >
> >Rodney
> >
> >On Wed, Apr 04, 2007 at 09:57:06AM -0400, fonesurj wrote:
> >>I have a router connected to a switch on Fa0/0. I have a static route
> >>pointing to another company's firewall that is out that interface.
> >>
> >>That static route won't go away if the firewall takes a poop and the
> >>switch does not.
> >>
> >>So wouldn't it be sweet if we could withdraw the static route if the
> >>firewall stopped responding to ARPs?
> >>
> >>_______________________________________________
> >>cisco-nsp mailing list cisco-nsp at puck.nether.net
> >>https://puck.nether.net/mailman/listinfo/cisco-nsp
> >>archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list