I posted this once before in the security forum, because I couldn't find the routing and switching one, but didn't get an answer. The config is:
- Two cisco routers in a HSRP config, connected to a switch.
- Two Sun E220R servers running stonebeat in a HA load-sharing configuration, also connected to the switch. The virtual IP is a unicast IP address, linked to a multicast MAC address (0900.xxxx.xxxx).
- Have to create a static ARP entry on the routers for the unicast IP/multicast MAC combination. This works fine.
- When a packet comes through routerA destined for the stonebeat cluster, routerA correctly forwards it to the cluster multicast MAC.
- routerB receives the packet generated by routerA above, and forwards it to the cluster multicast MAC.
- routerA receives the packet generated by routerB above, and forwards it to the cluster multicast MAC.
etc, etc. So every packet sent from the routers to the
stonbeat cluster is retransmitted (TTL) times by the routers.
Why are the routers receiving and routing traffic addressed to a MAC address of 0900.xxxx.xxxx? They should ignore it as the routers have no reason to be listening on this MAC?
Workaround so far is with CAM filters but why does this happen?