[c-nsp] Bridge devices - ARP takeover
Gert Doering
gert at greenie.muc.de
Fri Aug 14 05:26:53 EDT 2009
Hi,
On Thu, Aug 13, 2009 at 06:08:36PM -0500, Graham Wooden wrote:
> I know - the whole thing is bizarre. I was able to get access to that
> remote C2621, and noticed that ip proxy-arp was disabled. I enabled to to
> match my interface on the 6500. It's been up for close to an hour now with
> no issues (hopefully I just didn't jinx myself).
"ip proxy-arp" should be always disabled, unless you specifically know that
you need it.
For a normal point-to-point link between routers, you'll never need it.
(Having proxy-arp on-by-default is one of the major design errors that
Cisco did - it's seen as a "convenience", because it "makes things works"
that would break otherwise. In reality, all it does is "it hides problems",
because mis-configured systems still work - until the point where they no
longer work, and then it's much harder to find where the brokenness is)
To me, this sounds a bit as if the *Radio* is answering the ARP requests
on its own, for some sort of "management interface" or so.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert at net.informatik.tu-muenchen.de
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 303 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20090814/db4acbea/attachment-0001.bin>
More information about the cisco-nsp
mailing list