[f-nsp] ARP/IP-CAM strangeness with FWS4802-PREM
Gerald Krause
gk at ax.tc
Sun Feb 4 11:59:30 EST 2007
On Friday 02 February 2007 19:13, Gerald Krause wrote:
> this isn't ok because the virtual MAC and the bounded IPs
> should be reachable via the active FW on port 5 only but as
> you can see the IP's are scattered among ports 4 and 5.
hm, maybe this is a result of the layer 2 multicast address
0000.5e00.0101 that is used by the nokia HAV setup (probably due
to a running VRRP between the boxes - i don't manage the
firewalls).
i can not find any information what foundry switches are doing in
general with such layer 2 multicast destinations especially if
they are part of ARP and IP cache entries.
should the switch flood those packets over all ports belonging to
that VLAN or forward the packtes only over that certain port the
multicast MAC is learned from?
--
Gerald (ax/tc)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 191 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/foundry-nsp/attachments/20070204/41ee7b09/attachment.sig>
More information about the foundry-nsp
mailing list