dslreports logo
 
    All Forums Hot Topics Gallery
spc
Search similar:


uniqs
1610

jeliasson
@176.10.140.x

jeliasson

Anon

ARP table

Hi all,

My client has a very wierd problem were their server hosting partner's ip-address is in the ARP-table causing all internal traffic to be routed to the gateway itself. How that got there from the beginning is unknown and very stange, but for now we want to have this deleted.

Router(config)# show arp-table
Address HWtype HWaddress Flags Mask Iface
81.XXX.215.11 * MP wan1

If I have understood correctly, flag MP means permanent pubished and it does not help to have the gateway rebooted because it's still there.
I've also tried to run 'arp-table flush', but that only removes the C-flags (completed).
I also tried removing the ARP-entry using 'no arp'.

Router(config)# no arp 81.XXX.215.11
% Manipulate ARP Cache has failed: err:65280.
No ARP entry for 81.XXX.215.11

Vendor: Zyxel
Model: USG 20W
Boot module: 1.17
Current Version: 3.30(BDR.2)
Released date: 2013-10-17 15:43:41

Thanks for helping!
JPedroT
Premium Member
join:2005-02-18

JPedroT

Premium Member

Have the USG been configured to use that IP as its WAN1 IP?

Brano
I hate Vogons
MVM
join:2002-06-25
Burlington, ON
(Software) OPNsense
Ubiquiti UniFi UAP-AC-PRO
Ubiquiti NanoBeam M5 16

Brano to jeliasson

MVM

to jeliasson
First update your firmware to current version 3.30(BDR.5)
Next check your startup-config.conf whether the MAC got somehow hard coded there.

Then post entire output from:
show arp-table
and
show ip route

jeliasson
@81.229.115.x

jeliasson

Anon

said by JPedroT:

Have the USG been configured to use that IP as its WAN1 IP?

No. We've not been using that IP address for the WAN-interface. It's a completely other, recieved from DHCP.
said by Brano:

First update your firmware to current version 3.30(BDR.5)
Next check your startup-config.conf whether the MAC got somehow hard coded there.

Then post entire output from:
show arp-table
and
show ip route

We did upgrade to BDR.5, and the same problem was there. We did a factory reset, and then restored the configuration file and the same problem. Once we removed the two lines containing the ip-address, one for address object and one for firewalling, it worked.

It seems that a bug has been found, but I cannot recreate it. I cannot see why it would create a Direct Route (kernel) from that address.

Brano
I hate Vogons
MVM
join:2002-06-25
Burlington, ON

Brano

MVM

I'd love to see the two line you've deleted.

jeliasson
@81.229.115.x

jeliasson

Anon

Sorry for the late reply, but here's the lines that was was removed from the config.

address-object MBJEXT-81-XXX-215-11 81.XXX.215.11
ip virtual-server LDAP interface wan1 original-ip 81.XXX.215.11 map-to MBJSRV-INDIE map-type original-service LDAP-TCP mapped-service LDAP-TCP