[c-nsp] Problem disabling proxy-arp
Jared Gillis
jared.a.gillis at gmail.com
Wed Dec 2 15:12:13 EST 2009
Hello,
I'm running some 3750s that are providing IP aggregation for customers of mine. One of the customers reported that his gateway (the 3750) was responding to ARP for his local LAN addresses. Taking a look, I realized that I forgot to disable proxy-arp on that 3750. I disabled it via the global "ip proxy arp disable" command, but it doesn't seem to have worked; the customer still says he is seeing ARP responses from the gateway, but only on PCs that have just booted. Also, "show ip int xxx" reports that proxy-arp is still live on the interface:
#show ip int vlan101
Vlan101 is up, line protocol is up
Internet address is 70.36.146.1/24
Broadcast address is 255.255.255.255
Address determined by setup command
MTU is 1500 bytes
Helper address is not set
Directed broadcast forwarding is disabled
Outgoing access list is not set
Inbound access list is 100
Proxy ARP is enabled
Local Proxy ARP is disabled
I've confirmed that if I go into the interface and issue "no ip proxy-arp", then the "show ip int xxx" output also shows that it is disabled.
What am I missing here to make sure that proxy-arp is globally disabled for every L3 interface on my 3750s? Do I really have to put the "no ip proxy-arp" command on each and every interface?
-Jared
More information about the cisco-nsp
mailing list