Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3430
Views
5
Helpful
5
Replies

Incorrect Default Gateway on a PC but still able to route off net

Go to solution
uhl_frederick
Level 1
Level 1

‎03-10-2009 12:32 PM - edited ‎03-06-2019 04:30 AM

Hello,

I have a PC on 10.1.2.x /24 with a correct def gatewat of 10.2.1.254. If I change the def gateway on the PC to be, for instance, 10.1.5.254 but leave the IP address of the PC as 10.1.2.x, the PC is still able to ping off net and route out to the Internet. I know it may be basic for some of you experts, but I am curious on how this can happen. I flushed the PC arp tables too.

THanks

Gene

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
pvezina
Level 1
Level 1
In response to uhl_frederick

‎03-10-2009 12:47 PM

Hello Gene,

The routers have a function that is enabled by default that's called "proxy-arp". The PC with the wrong gateway will still ARP to get the MAC address of this IP address. This ARP will be a broadcast at layer-2, so the right default-gateway will see it.

When the router sees this ARP request it thinks: "Mmmm, I know a route to that IP address; even if it's not in the right subnet I'll answer the ARP request with my MAC address". This is called proxy-arp. So the PC will still get the MAC address of the router and everything will work.

This behaviour can be disabled with this command at the interface:

"no ip proxy-arp"

Then the PC with the wrong def gateway will stop working, if you flush the ARP table of course...

Hope this helps,

Patrick

View solution in original post

5 Replies 5

Go to solution
uhl_frederick
Level 1
Level 1

‎03-10-2009 12:36 PM

Sorry, typo...10.1.2.x with a correct def gateway of 10.1.2.254....

Gene

0 Helpful

Go to solution
adamclarkuk_2
Level 4
Level 4
In response to uhl_frederick

‎03-10-2009 12:45 PM

Take a look at netstat -rn to see if any routes are having around on the PC.

0 Helpful

Go to solution
pvezina
Level 1
Level 1
In response to uhl_frederick

‎03-10-2009 12:47 PM

Hello Gene,

The routers have a function that is enabled by default that's called "proxy-arp". The PC with the wrong gateway will still ARP to get the MAC address of this IP address. This ARP will be a broadcast at layer-2, so the right default-gateway will see it.

When the router sees this ARP request it thinks: "Mmmm, I know a route to that IP address; even if it's not in the right subnet I'll answer the ARP request with my MAC address". This is called proxy-arp. So the PC will still get the MAC address of the router and everything will work.

This behaviour can be disabled with this command at the interface:

"no ip proxy-arp"

Then the PC with the wrong def gateway will stop working, if you flush the ARP table of course...

Hope this helps,

Patrick

Go to solution
uhl_frederick
Level 1
Level 1
In response to pvezina

‎03-10-2009 01:07 PM

Familar with proxy-arp. Had issues with it on by default on a PIX. Was not sure if a 3550 or 3750 had the same feature turned on by default. Actually the PC is plugged into a 3560 which uplinks to a 3550 which uplinks to the 6509. I believe the routing is handled at the 3550, which is probably where the proxy arp is turned on. So, this is probably why and there is no other magic going on. I will check the arp tables as the mac address should be the same for both the wrong def GW and the right def GW.

Thanks

Gene

0 Helpful

Go to solution
glen.grant
VIP Alumni
VIP Alumni
In response to uhl_frederick

‎03-10-2009 04:17 PM

Generally it is recommended to have proxy arp turned off.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card