Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1710
Views
0
Helpful
2
Replies

Proxy arp to a Loopback address within the same subnet?

francvan
Level 1
Level 1

‎12-14-2007 06:30 AM - edited ‎03-05-2019 08:00 PM

Hello,

I have a problem that might require some special form of proxy arp:

We have a big subnet (/20) with a lot of servers that are configured to use 2 DNS servers in the same subnet.

We have a new DNS appliance in that same subnet (through its LAN1 interface), and we want to migrate the addresses of the existing DNS servers on this appliance. But unfortunately this appliance does not support secondary addresses on its interfaces, but only Loopback addresses.

So we migrate the existing DNS servers' IP addresses to Loopback addresses on the new appliance and then update the subnets gateway with static host routes to the Loopback addresses via the appliance LAN1 interface.

All servers outside the subnet can now reach the DNS service on the Loopbacks.

But all servers within the subnet cannot!

So we configure proxy-arp for those Loopback addresses on the router.

But this does not work either because the router does not answer the ARP request when the destination (appliance LAN1) is on the same subnet as the answer came from!

Is there a way to force the router to answer the arp request?

Thanks

Francis

Labels:
0 Helpful
2 Replies 2

Edison Ortiz
Hall of Fame
Hall of Fame

‎12-14-2007 07:56 AM

> Is there a way to force the router to answer the arp request?

I'm afraid not. The only solution I may suggest and I'm afraid it may cause other side-effects, it's changing the subnet mask on the servers trying to read the DNS w/ loopbacks.

Changing the subnet masks will force the server(s) to reach the router if the DNS IP isn't on the same subnet range.

0 Helpful

Francois Tallet
Level 7
Level 7

‎12-14-2007 09:47 AM

If your IOS supports the "ip local-proxy-arp", that should do it. This command was introduced for private vlan, so I'm not sure it's going to be available on your platform.

Regards,

Francois

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card