I have a PIX ?arp problem? that is somewhat strange. In a network used solely for Internet access there are three PIX firewalls, one 506e and two 515e failover pairs, total five boxes. All use PIX OS 6.3(5) and the only other unit in this network is the ISP router.
The network is connected using two C3750 stacks separated by a fiber (different locations). The 506e and one pair of 515e is located on one side/switch, and one 515e pair and the ISP router is located on the other side.
Sometimes the 515e on the same side/switch that 506e cannot reach the 506e. Ping doesn?t work and VPN is down etc. Connections from the other side/Internet to 506e still works indicating that the 506e is OK. Normally, the connection is working again after about four hours (arp timeout). If I clear the arp cache manually in the ?failing? 515e it works immediately.
I thought that a static arp entry would solve the problem but it didn?t. Any ideas?
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...