Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
1361
Views
15
Helpful
10
Replies

ARP Spoofing

ahmed ferhan
Level 1
Level 1

ā€Ž09-30-2022 08:19 AM

Hi everyoneUntitled.png, have a nice day

I have a big network with multiple cisco routers, switches(IOSXE, IOSXR), and NX, I found in the ARP table multiple IP addresses with the same mac address, I try to track the mac address but the port for this mac return me the previous router 

please any help or explain this issue

10 Replies 10

MHM Cisco World
VIP
VIP

ā€Ž09-30-2022 09:14 AM - edited ā€Ž09-30-2022 09:14 AM

are there any static route toward this router 

0 Helpful

ahmed ferhan
Level 1
Level 1
In response to MHM Cisco World

ā€Ž09-30-2022 12:57 PM

of course, there is ..

0 Helpful

MHM Cisco World
VIP
VIP
In response to ahmed ferhan

ā€Ž09-30-2022 12:59 PM - edited ā€Ž09-30-2022 01:01 PM

so config the static route as following 
ip route x.x.x.x y.y.y.y <egress interface> <next-hop>
this will stop ARP issue. 
for more info. check link below
https://www.cisco.com/c/en/us/support/docs/dial-access/floating-static-route/118263-technote-nexthop-00.html

0 Helpful

ahmed ferhan
Level 1
Level 1
In response to MHM Cisco World

ā€Ž09-30-2022 01:14 PM

i config this route as ( ip route 0.0.0.0 0.0.0.0 + (ip which is the gateway))

MHM Cisco World
VIP
VIP
In response to ahmed ferhan

ā€Ž10-01-2022 06:45 AM

that great you already specify the the next-hop so no issue at all but for many arp let me make deep dive, 
I will update you soon 

ahmed ferhan
Level 1
Level 1
In response to MHM Cisco World

ā€Ž10-02-2022 07:43 AM

I'll be appreciated you

0 Helpful

Aref Alsouqi
VIP
VIP

ā€Ž09-30-2022 09:59 AM

That could be due to a static route that is pointing to the exit interface rather than to the next hop which is not really recommended at all.

0 Helpful

ahmed ferhan
Level 1
Level 1
In response to Aref Alsouqi

ā€Ž09-30-2022 12:59 PM

the default route already exist into the switch because i need the end user to reach the internet

0 Helpful

MHM Cisco World
VIP
VIP

ā€Ž10-14-2022 12:16 PM

hi friend 
I dont forget you but I was looking for case that ARP is use for each IP in subnet 
1- static route toward interface (this we discus before you confirm that you use next-hop not interface)
2- PBR with set interface 

so for second case can you confirm that you use PBR?

0 Helpful

ahmed ferhan
Level 1
Level 1
In response to MHM Cisco World

ā€Ž10-15-2022 12:17 AM

Hi MHM, thank you for your support, I am so appreciated your followed
into( Router and SW)  I am setting two access list controls only without route-map 
the first access list is used for management access and this set on ssh protocol  and the second access list is used for port security ( traffic or services )that allowed to pass through the router and this set to the management interface 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card