Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
272
Views
0
Helpful
5
Replies

Arp-cache and mac-address-table

jbanker
Level 1
Level 1

‎10-04-2006 10:14 PM - edited ‎03-03-2019 05:23 AM

I am running into an issue where some users cannot reach the default gateway. Approx once a week users who log in to their workstations in the afternoon(12pm) cannot get out the gateway to the outside. They have no problem internally but cannot leave externally. Other users on the same module, subnet etc. can still get out. Whats weird is later in the day (approx 4pm) they can get out. It seems as other users log out the can get out.

It seems to me that this is an arp issue or a cache is getting full but I cannot figure this problem out. Here is what I have done: cleared the arp-cache (arp timeout is the default 4 hours), mac-address tables, cleared ip route, changed NICS on some pc's, checked port channels for errors. None of this has worked.

I am currently using 6500's switches as my core routers and 6500 as well for my access layer switches. Does anyone have any ideas?

Labels:
0 Helpful
5 Replies 5

globalnettech
Level 5
Level 5

‎10-04-2006 11:23 PM

Hello,

in order to fix your problem, you might want to try and add a static ARP entry for your default gateway (in global configuration mode):

arp 192.168.1.1 0002.0700.eb5f arpa

What IOS version(s) are you running on your 6500s ? I am asking because this could also be an IOS bug...

Regards,

GNT

0 Helpful

royalblues
Level 10
Level 10
In response to globalnettech

‎10-05-2006 01:39 AM

Check for any IP conflicts on the network.

Narayan

0 Helpful

jbanker
Level 1
Level 1
In response to globalnettech

‎10-05-2006 08:51 AM

Here is my IOS version on my core: IOS (tm) s72033_rp Software (s72033_rp-PK9SV-M), Version 12.2(17d)SXB10

My access layer 6500: s3223_rp Software (s3223_rp-ADVENTERPRISEK9_WAN-M), Version 12.2(18)SXF4, RELEASE SOFTWARE

0 Helpful

Kevin Dorrell
Level 10
Level 10

‎10-05-2006 03:42 AM

Are you using NAT? I am guessing that you are using NAT, that it is not configured for overload, and you are running out of inside global addresses. But that is only a guess.

Kevin Dorrell

Luxembourg

0 Helpful

jbanker
Level 1
Level 1
In response to Kevin Dorrell

‎10-05-2006 08:41 AM

Thanks guys! We aren't using NAT for users, we all are using public IP's. I have not tried the static arp command for the gateway yet and I will update my IOS or atleast chek for bugs.

The same issue happened again this morning but I reset my edge interfaces and my VPN concentrator and got rid of the issue so I believe I have it down to one of the two. This issue started happening when we implemented a VPN concentrator and hardware client at a site. i didn't think it was an issue but it just might be.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents