[c-nsp] ARP on ASR9k 4.3.2
Andrew Koch
andrew.koch at gawul.net
Thu Jan 16 13:03:25 EST 2014
Hi,
On Thu, Jan 16, 2014 at 06:32:04PM +0100, Florian Lohoff wrote:
> > We did the same while waiting for the SMU. The SMU should not be needed
> > for 4.3.2 - the "arp learning local" interface command should be
built-in,
> > so hopefully you are good to go.
>
> RP/0/RSP0/CPU0:cr2(config-
> subif)#arp learning ?
> disable Disable dynamic learning of ARP entries
> RP/0/RSP0/CPU0:cr2(config-subif)#arp learning local
> ^
> % Invalid input detected at '^' marker.
>
> Not in 4.3.2
Bah - 4.3.4 has the fix incorporated.
On Thu, Jan 16, 2014 at 11:50 AM, Gert Doering <gert at greenie.muc.de> wrote:
>
> > *ROFL* - Sending out gratious arp on a peering exchange lan can
> > blackhole traffic for others - IMHO thats an easy DoS vector - how could
> > that be "fairly"?
>
> "fairly effective"... "fairly nasty"... dunno.
>
"fairly minor" - I dropped a word on my initial response. However, I
would agree with your second choice.
Andrew
More information about the cisco-nsp
mailing list