Cisco and ARP troubles
Jimen Ching
jching at flex.com
Thu Apr 12 01:54:55 PDT 2001
On Wed, 11 Apr 2001, Warren Togami wrote:
>Today I tried to replace my workplace's Cisco PIX firewall with a Linux
>iptables box, but the network seemed to refuse to let go of the old MAC
>attached to the IP address. The campus network is entirely Cisco. I
>thought it was the MAC address, so I tried to manually set the MAC on the
>Linux ethernet card to match the PIX interface. It didn't work.
What do you mean the network refuses to let go of the old MAC? Do you
mean the hosts behind the firewall is still trying to send traffic to the
firewall using the MAC address of the Cisco PIX?
>I'm perplexed. I know very little about the Cisco specific stuff. Anyone
>have any clue what I'm doing wrong?
If you are trying to get rid of the Cisco, why do you need to learn about
Cisco specific stuff?
Concerning ARP, the ARP table entries expire in either 10 or 30 minutes,
depending on the system. If the ARP software works correctly, if the
firewall pings the hosts inside, the ARP table will be updated with the
new MAC address. But I am still a little confused about the exact problem
you are having.
--jc
--
Jimen Ching (WH6BRR) jching at flex.com wh6brr at uhm.ampr.org
More information about the LUAU
mailing list