[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Proxy ARP detection

Subject: Proxy ARP detection
From: patrick at ianai.net (Patrick W. Gilmore)
Date: Wed, 15 Jan 2014 23:21:00 -0500
In-reply-to: <[email protected]>
References: <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]> <[email protected]>

Excellent. So all everyone has to do is not buy cisco _or_ juniper.

Wait a minute....

-- 
TTFN,
patrick


On Jan 15, 2014, at 19:54 , Eric Rosen <erosen at redhat.com> wrote:

> Cisco PIX's used to do this if the firewall had a route and saw a ARP request in that IP range it would proxy arp.
> 
> ----- Original Message -----
>> 
>> On Jan 15, 2014, at 4:03 PM, Niels Bakker <niels=nanog at bakker.net> wrote:
>> 
>>> * clay at bloomcounty.org (Clay Fiske) [Thu 16 Jan 2014, 00:59 CET]:
>>>> This is where theory diverges nicely from practice. In some cases the
>>>> offender broadcast his reply, and guess what else? A lot of routers
>>>> listen to unsolicited ARP replies.
>>> 
>>> I've never seen this.  Please name vendor and product, if only so other
>>> subscribers to this list can avoid doing business with them.
>> 
>> This was some time ago, but the two I was able to dig up from that case were
>> both Junipers. Perhaps it?s something that only happens when proxy ARP is
>> enabled?
>> 
>> 
>> -c
>> 
>> 
>> 
> 
> -- 
> Eric Rosen
> CCIE Security #17821
> Information Security Analyst
> Red Hat, Inc
> erosen at redhat.com
> 919.890.8555 x48555
> IRC erosen
> 
> 
>

Follow-Ups:
- Proxy ARP detection
  - From: mysidia at gmail.com (Jimmy Hess)

References:
- best practice for advertising peering fabric routes
  - From: bicknell at ufp.org (Leo Bicknell)
- best practice for advertising peering fabric routes
  - From: clay at bloomcounty.org (Clay Fiske)
- best practice for advertising peering fabric routes
  - From: niels=nanog at bakker.net (Niels Bakker)
- Proxy ARP detection (was re: best practice for advertising peering fabric routes)
  - From: clay at bloomcounty.org (Clay Fiske)
- Proxy ARP detection
  - From: niels=nanog at bakker.net (Niels Bakker)
- Proxy ARP detection
  - From: clay at bloomcounty.org (Clay Fiske)
- Proxy ARP detection
  - From: niels=nanog at bakker.net (Niels Bakker)
- Proxy ARP detection
  - From: clay at bloomcounty.org (Clay Fiske)
- Proxy ARP detection
  - From: erosen at redhat.com (Eric Rosen)

Prev by Date: Question re: WordPress
Next by Date: Internet Routing Registries - RADb, etc
Previous by thread: Proxy ARP detection
Next by thread: Proxy ARP detection
Index(es):
- Date
- Thread