515E 1:1NAT and ARP issues

Unanswered Question

So here's the issue....I have a 515E....I have a mail server.


I setup 1:1 NAT rule and security rule and it works and it's accessible from the outside world.....now the issue.


If I go to a desktop on the LAN they can Ping the mail server once and then it fails...I traced it to an ARP issue.


After figuring out that the desktops are essentially hitting the firewall for the MAC address and not the actual server itself.


It's doing this for both servers that are currently setup with 1:1 NAT.


Am I missing something really basic?


Victor

Attachment: 
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Nagaraja Thanthry Mon, 08/30/2010 - 11:01
User Badges:
  • Cisco Employee,

Hello,


On the inside interface of the firewall, turn off proxy arp.


sysopt noproxyarp inside


Hope this helps.


Regards,


NT

Nagaraja Thanthry Mon, 08/30/2010 - 11:21
User Badges:
  • Cisco Employee,

Hello,


Glad that it is fixed. Please mark the question as answered so somebody else

can make use of the information in the future.


Regards,


NT

Actions

This Discussion