Prev: insomnia News and Reviews
Next: ASDM connects to the interface ethernet 0/1 ?
From: jnez367 on 8 Feb 2010 10:39
Have 5 static IP addresses assigned by Verizon. Appears that ONT is
ARPing for the MAC address of the computers that should be assigned
the static ip address. My PIX is rejecting these requests because it
does not recognize the ONT as a neighboring device. I think the ONT
is sending arp as follows:

0.0.0.0 xxxx.xxxx.xxxx <------- (MAC address)

Verizon recommends gratuitous arp, but I cannot find anyway to do this
in pix. Proxy-Arp is enabled on pix. (I think this is by default.)

Does anyone know of a way to get the PIX to send gratuitous arps on
behalf of the hosts that will have static IP addresses via static
translations? I have a version 6.3 PIX IOS. I also cannot find a way
to get the PIX to answer the arp requests. This is probably by
design. (Security risk)

Would it be possible to put a router configured as a bridge in front
of the PIX and use proxy-arp to provide the ONT with the MAC address
of the PIX firewall for all the static IP addresses? Is there a
better device for this?

Any suggestions would be appreciated.

 | 
Pages: 1
Prev: insomnia News and Reviews
Next: ASDM connects to the interface ethernet 0/1 ?