Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1771
Views
7
Helpful
6
Replies

Interesting behavior regarding ip unnumbered interface

Go to solution
from88
Level 4
Level 4

‎03-11-2012 02:51 PM - edited ‎03-07-2019 05:29 AM

hello,

im having question according ip unnumbered interface, we have a network with ~50 customers

We using multiple subintefaces on the router, every ip address uses its own subinterface.

every subinterface have one /32 static route towards them, and they are unnumbered with loopback interface.

something like this:

interface Fastethernet1/0.154

!

vlan id 154

ip unnumbered loopback 0

ip route 54.254.15.13/32 interface Fastethernet1/0.154

so every client has an IP which is configured like this and everything is working pretty fine.

The interesting thing is that the PC, which uses 54.254.15.13 (ip address) can set any subnet mask and any gateway IP address (for example 8.8.8.8 or anything obsolete) and it still works. Can someone help me try to understand this behavior ? Is everything is working with bad gateway or (and) subnet mask because of unnumbered interface ?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee
In response to amigomnemonik

‎03-11-2012 03:14 PM

Kamil,

It is because of the /32 mask. As this contains only one host on this  segment, no default gateway and only single IP address exist.

Regarding the netmask, you're right. But it does not explain why using just about any IP address as the gateway work - how does the PC determine which MAC address should be used as the destination MAC when sending packets through the router?

I suspect this is caused by the router running ProxyARP. If the PC asks about a IP-to-MAC mapping, even if the router does not own the IP address on the interface where the ARP request arrives, it will respond with its own MAC address. This will allow the station to send IP packets via the router.

This assumption is easily verified: on the subinterface, enter the no ip proxy-arp command and on the PC, flush the ARP cache (for example, arp -d * or deactivate and reactivate the interface). If the network access becomes unavailable after setting an inappropriate IP gateway, this "curiosity" was indeed caused by ProxyARP.

Best regards,

Peter

View solution in original post

0 Helpful
6 Replies 6

Go to solution
amigomnemonik
Level 1
Level 1

‎03-11-2012 03:03 PM

It is because of the /32 mask. As this contains only one host on this segment, no default gateway and only single IP address exist.

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee
In response to amigomnemonik

‎03-11-2012 03:14 PM

Kamil,

It is because of the /32 mask. As this contains only one host on this  segment, no default gateway and only single IP address exist.

Regarding the netmask, you're right. But it does not explain why using just about any IP address as the gateway work - how does the PC determine which MAC address should be used as the destination MAC when sending packets through the router?

I suspect this is caused by the router running ProxyARP. If the PC asks about a IP-to-MAC mapping, even if the router does not own the IP address on the interface where the ARP request arrives, it will respond with its own MAC address. This will allow the station to send IP packets via the router.

This assumption is easily verified: on the subinterface, enter the no ip proxy-arp command and on the PC, flush the ARP cache (for example, arp -d * or deactivate and reactivate the interface). If the network access becomes unavailable after setting an inappropriate IP gateway, this "curiosity" was indeed caused by ProxyARP.

Best regards,

Peter

0 Helpful

Go to solution
amigomnemonik
Level 1
Level 1
In response to Peter Paluch

‎03-11-2012 03:35 PM

Hi Peter,

I like your explanation.

This is what Cisco says:

"The main advantage of proxy ARP is that it can be added to a single       router on a network and does not disturb the routing tables of the other       routers on the network.

Proxy ARP must be used on the network where IP hosts are not configured       with a default gateway or do not have any routing intelligence."

Thanks.

Regards,

Go to solution
from88
Level 4
Level 4
In response to Peter Paluch

‎03-11-2012 03:36 PM

thanks for input, yes router by default is running proxy arp on subinterface, tommorow i will try to disable it and tell you the reesults, but for clarity, if the proxy arp is disabled, which gateway i should be using in these conditions ?

0 Helpful

Go to solution
amigomnemonik
Level 1
Level 1
In response to from88

‎03-11-2012 03:50 PM

Then I would think of the minimum subnet mask of /30 for two IPs: one for host, another one for default gateway.

Go to solution
from88
Level 4
Level 4
In response to Peter Paluch

‎03-12-2012 12:30 AM

Yeah, u are right. I set the default gateway for example 8.8.8.8, with wireshark on. Then Proxy arp (by default) is on,my PC sends arp request to 8.8.8.8 and he gets reply.

When i disablethe proxy arp, the PC requests the ARP for 8.8.8.8 and the router is not replying. Thanks. Still a little bit confused with Proxy arp, for example 8.8.8.8 is not local subnet to my router, why he is sending arp replies...

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card