Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
393
Views
0
Helpful
1
Replies

Gratuituos arp issue on CSS

alexc2010
Level 1
Level 1

‎09-24-2010 09:21 AM

Hi CSS experts,

I am facing issue with the arp table on the css. The issue is:-

PIX 1 and PIX2 are 2 cluster firewalls in active-standby mode.

And when my PIX2 is active ARP Gratuitios is ent to CSS in order to update ARP table concerning new mac addresses of PIX2 and CSS really does it.

On CSS  I type command  "sh arp" its  ARP table updated.Problem is CSS continues to use ARP table from PIX1. Hence wanted to know the reason for the same.

Any suggestion on this would be appriciated.

Thanks in advance.

Regards

Alex.

Labels:
0 Helpful
1 Reply 1

Ivan Kovacevic
Cisco Employee
Cisco Employee

‎09-30-2010 11:21 AM

Hi Alex,

The way PIX firewall failover works is that at the time of switchover two PIXes swap IP addresses and MAC addresses on all interfaces, and the PIX that became active uses the very same addresses. Therefore the CSS (and any other device) is not aware that a switchover has even occurred. You can get more info on this topic at http://tools.cisco.com/squish/83558 .

I suggest you to take a better look at MAC addresses on PIXes before and after failover.

Ivan

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents