Re: [leaf-user] Weird Proxy Arp Setup

Mon, 12 Jul 2004 23:28:55 -0700 


On Jul 12, 2004, at 8:18 PM, Tom Eastep wrote:

Ryan Rich wrote:

Ryan Rich wrote:


So right now I am baffled. If I plug the machine in the dmz directly
into
the network with the 138.23.75.60 address it works fine. Am I going
mad,
or is there something that would cause this behavior? 

Look at the routing table in the system that you are pinging from and
the IP configuration. I'm betting that it has an address in
138.23.76.0/24.

And if the system you are pinging from doesn't have an address in that
network then I'm betting that the last hop router before the LEAF box
has an address in that network.
This is true as to how I tested today, but this machine has been plugged
into this same network with that address prior to my leaf experiments and
I have been able to access it from my home network without any problem as
well.

I don't understand your network topology well enough to comment. But I
have a very firm grasp of how ARP works. The whole purpose of Proxy ARP
is so that a router will respond to ARP "who-has" requests for IP
addresses owned by hosts on the opposite side of the router -- as far as
I can tell, you are beating your head against the wall trying to get
your router to respond to ARP requests that aren't being sent. If you
don't believe me, install tcpdump on the LEAF box and watch the ARP traffic:

tcpdump -ni eth0 arp

I guess I'll run this tomorrow to see what it comes up with then before I waste anyone else's time. I have been using LRP back since 2.9.4 and used to use seawall before shorewall came out and they have both been really great software. This is the first time I've run into such craziness, so I am holding this network at fault :)

I am curious what other methods will work for what I am trying to do if there are indeed no "who-has" requests being made on the network. Is the kernel in Bering uClibc compiled with the necessary patches to use the bridging features of shorewall?

Thanks,
Ryan



-------------------------------------------------------
This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 - digital self defense, top technical experts, no vendor pitches, unmatched networking opportunities. Visit www.blackhat.com
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Reply via email to