04-04-2006 10:35 AM - edited 03-03-2019 02:38 AM
I've run into something interesting that I've not seen happen before. When I ping one of my network addresses 172.29.0.0, I get a reply. The source is an IP on another network, say 172.28.0.1.
I expected to see something odd going on with arp, but then got onto the router for the 172.29.0.0 network, and tried to ping the network address from there. The odd thing was that I got responses from many of the hosts on the network.
Something like this:
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 172.29.0.0, timeout is 2 seconds:
Reply to request 0 from 172.29.50.102, 4 ms
Reply to request 0 from 172.29.4.1, 4 ms
Reply to request 1 from 172.29.50.102, 1 ms
Reply to request 1 from 172.29.4.1, 1 ms
Reply to request 2 from 172.29.50.102, 1 ms
Reply to request 2 from 172.29.4.1, 1 ms
Why is this working the way that it is?
Solved! Go to Solution.
04-04-2006 11:45 AM
The subnets are configured with 16-bit mask. So, when you ping 172.29.0.0 or 172.29.255.255, hosts on the 172.29.0.0/16 only should respond. The fact, you are seeing a host with an address of 172.28.0.1 respond to the echo request indicates the host is probably configured with a primary address of 172.28.0.1 and a secondary address of 172.29.x.x something. When that host sends and echo-reply it sources the primary IP of 172.28.0.1 and it's kind of misleading.
HTH,
Sundar
04-04-2006 11:14 AM
Do you have a router interface configured with 172.28.0.1 as the primary IP and the 172.29.0.x as the secondary IP address?
--Sundar
04-04-2006 11:22 AM
all zeroes in the host portion of the ip address used to indicate broadcast just the same all ones is considered a broadcast.
A lot of TCP/IP stacks including Cisco IOS still consider this a broadcast and will therefore respond to an ICMP request with such a destination address.
Hope this helps,
04-04-2006 11:33 AM
Sundar,
No, I do not have a secondary address of 172.29.x.x/16 configured on the router with the interface of 172.28.x.x/16.
hritter,
Does any documentation exist on this subject? It's confusing. I guess I can understand how a broadcast address could respond, but not the network address.
04-04-2006 11:45 AM
The subnets are configured with 16-bit mask. So, when you ping 172.29.0.0 or 172.29.255.255, hosts on the 172.29.0.0/16 only should respond. The fact, you are seeing a host with an address of 172.28.0.1 respond to the echo request indicates the host is probably configured with a primary address of 172.28.0.1 and a secondary address of 172.29.x.x something. When that host sends and echo-reply it sources the primary IP of 172.28.0.1 and it's kind of misleading.
HTH,
Sundar
04-04-2006 01:04 PM
This is documented in section 4.2.3.1 of RFC1812:
(2) SHOULD silently discard on receipt (i.e., do not even deliver to applications in the router) any packet addressed to 0.0.0.0 or {
http://www.ietf.org/rfc/rfc1812.txt?number=1812
Hope this helps,
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: