Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
598
Views
0
Helpful
1
Replies

GARP on 6500 ASA blade

Marius Gunnerud
VIP
VIP

‎12-29-2011 05:36 AM - edited ‎03-11-2019 03:07 PM

We are planning to migrate a context from an ASA 5550 to Catalyst 6500 ASA blade.  The requirements are to use the same IPs, VLAN interfaces...etc.  This is all fine.  The issue comes with the ARP cache on devices between the firewall and the client.  There are quite a few switches between the firewall and client and not all are under our control.

So my question is, is it possible to issue or force a GARP so that all L2 devices update their ARP tables and we do not have to wait or request the 3rd party to clear the arp cache on all their switches when we cutover?  What would the command be if this is possible?

Thanks.

--
Please remember to select a correct answer and rate helpful posts
Labels:
0 Helpful
1 Reply 1

mirober2
Cisco Employee
Cisco Employee

‎12-29-2011 09:33 AM

Hi Marius,

ASAs (including the ASA-SM) will send a grat ARP on an interface-up event (i.e. boot up, failover, shut/no shut, etc.) for the IP address assigned to the interface. However, the ASA will not send grat ARPs for any global/translated IP addresses used by NAT statements. Given this, it's usually better to clear the APR caches on the connected devices if you see any issues.

-Mike

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card