Re: Arp problem

Ben Greear (greearb@candelatech.com)
Mon, 23 Jul 2001 18:03:03 -0700

Chris Friesen wrote:
>
> Sourav Sen wrote:
> >
> > Hi,
> > I have a machine with multiple network cards with different IP
> > addresses assigned. All are in the same network (I need this for
> > whatever reason). But when a arp request
> > appears on the wire for any of these IP addresses, all the interfaces go
> > ahead and give their respective ethernet addresses against that IP
> > address (I have seen this with tcpdump). This causes the other machines to
> > pick up wrong ethernet address against the IP address.
>
> Yep, this is the default behaviour since multiple links on one subnet is
> an unusual situation (I ran into the same problem). The solution is to apply
> the arpfilter patch to the kernel, recompile, and then write a 1 to
> /proc/sys/net/ipv4/conf/all/arp_filter to enable it for all interfaces.
> This patch enforces that NICs will only respond to arps for IP addresses
> that they own.

The arp-filter patch is in the kernel since about 2.4.4, so you just need
to turn it on...

Ben

>
> --
> Chris Friesen | MailStop: 043/33/F10
> Nortel Networks | work: (613) 765-0557
> 3500 Carling Avenue | fax: (613) 765-2986
> Nepean, ON K2H 8E9 Canada | email: cfriesen@nortelnetworks.com
> -
> To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
> the body of a message to majordomo@vger.kernel.org
> More majordomo info at http://vger.kernel.org/majordomo-info.html
> Please read the FAQ at http://www.tux.org/lkml/

-- 
Ben Greear <greearb@candelatech.com>          <Ben_Greear@excite.com>
President of Candela Technologies Inc      http://www.candelatech.com
ScryMUD:  http://scry.wanfear.com     http://scry.wanfear.com/~greear
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.kernel.org
More majordomo info at  http://vger.kernel.org/majordomo-info.html
Please read the FAQ at  http://www.tux.org/lkml/