Re: [vpp-dev] ARP resolution from non-connected IP

Thu, 20 Aug 2020 01:51:11 -0700 

That would probably cause the check to pass, but that route will cause VPP to 
ARP for the loopback address out of <iface> so the peer would also need to 
enable proxy ARP.
However, If a-priori knowledge of what is connecting to what is allowed in the 
workaround, then add a static ARP entry on the peer.

/neale

On 20/08/2020 09:01, "Benoit Ganne (bganne)" <bga...@cisco.com> wrote:

    Maybe a workaround would be to add the host prefix of the router loopback 
in the fib?
    Eg. 'ip route add <loopback>/32 <iface>'?

    Best
    ben

    > -----Original Message-----
    > From: vpp-dev@lists.fd.io <vpp-dev@lists.fd.io> On Behalf Of Neale Ranns
    > via lists.fd.io
    > Sent: jeudi 20 août 2020 08:07
    > To: vpp-dev@lists.fd.io; Satya Murthy <satyamurthy1...@gmail.com>
    > Subject: Re: [vpp-dev] ARP resolution from non-connected IP
    > 
    > 
    > There's no way to disable the check. VPP expects the ARP request to have
    > only address that belong to the link on which the ARP packet is sent. IMHO
    > the sender's behaviour is wrong.
    > 
    > 
    > /neale
    > 
    > 
    > tpyed by my fat tumhbs
    > 
    > ________________________________
    > 
    > From: vpp-dev@lists.fd.io <vpp-dev@lists.fd.io> on behalf of Satya Murthy
    > <satyamurthy1...@gmail.com>
    > Sent: Wednesday, August 19, 2020 3:03:49 PM
    > To: vpp-dev@lists.fd.io <vpp-dev@lists.fd.io>
    > Subject: [vpp-dev] ARP resolution from non-connected IP
    > 
    > 
    > Hi,
    > 
    > 
    > 
    > Have a query on the ARP resolution.
    > 
    > 
    > 
    > We have a Router and VPP-box connected.
    > 
    > 
    > 
    > We are trying to do some peering from router’s loopback IP. This loopback
    > IP is not in the connected subnet-range.
    > 
    > Due to this, router is initiating an ARP request with src as non-
    > connected-IP in the payload.
    > 
    > 
    > 
    > VPP is dropping this ARP request saying “IP4 source address not local to
    > subnet”.
    > 
    > 
    > 
    > In linux and in cisco routers, we have options to allow ARP requests from
    > non-connected subnets.
    > 
    > Is there any workaround in VPP to allow this ARP request.
    > 
    > 
    > 
    > Please let us know.
    > 
    > --
    > Thanks & Regards,
    > Murthy


-=-=-=-=-=-=-=-=-=-=-=-
Links: You receive all messages sent to this group.

View/Reply Online (#17271): https://lists.fd.io/g/vpp-dev/message/17271
Mute This Topic: https://lists.fd.io/mt/76285682/21656
Group Owner: vpp-dev+ow...@lists.fd.io
Unsubscribe: https://lists.fd.io/g/vpp-dev/unsub  [arch...@mail-archive.com]
-=-=-=-=-=-=-=-=-=-=-=-

Reply via email to