Configuring Gratuitous Arp; Overview; Gratuitous Arp Packet Learning; Periodic Sending Of Gratuitous Arp Packets - HP FlexNetwork MSR2003 Configuration Manual
Flexnetwork msr router series
Hide thumbs
Also See for FlexNetwork MSR2003:
- Configuration manual (350 pages) ,
- Command reference manual (471 pages) ,
- Manual (73 pages)
Table of Contents
Configuring gratuitous ARP
Overview
In a gratuitous ARP packet, the sender IP address and the target IP address are the IP address of
the sending device.
A device sends a gratuitous ARP packet for either of the following purposes:
•
Determine whether its IP address is already used by another device. If the IP address is already
used, the device is informed of the conflict by an ARP reply.
•
Inform other devices of a MAC address change.
Gratuitous ARP packet learning
This function enables a device to create or update ARP entries by using the sender IP and MAC
addresses in received gratuitous ARP packets.
When this function is disabled, the device uses received gratuitous ARP packets to update existing
ARP entries only. ARP entries are not created based on the received gratuitous ARP packets, which
saves ARP table space.
Periodic sending of gratuitous ARP packets
Enabling periodic sending of gratuitous ARP packets helps downstream devices update ARP entries
or MAC entries in a timely manner.
This feature can implement the following functions:
•
Prevent gateway spoofing.
Gateway spoofing occurs when an attacker uses the gateway address to send gratuitous ARP
packets to the hosts on a network. The traffic destined for the gateway from the hosts is sent to
the attacker instead. As a result, the hosts cannot access the external network.
To prevent such gateway spoofing attacks, you can enable the gateway to send gratuitous ARP
packets at intervals. Gratuitous ARP packets contain the primary IP address and manually
configured secondary IP addresses of the gateway, so hosts can learn correct gateway
information.
•
Prevent ARP entries from aging out.
If network traffic is heavy or if the host CPU usage is high, received ARP packets can be
discarded or are not promptly processed. Eventually, the dynamic ARP entries on the receiving
host age out. The traffic between the host and the corresponding devices is interrupted until the
host re-creates the ARP entries.
To prevent this problem, you can enable the gateway to send gratuitous ARP packets
periodically. Gratuitous ARP packets contain the primary IP address and manually configured
secondary IP addresses of the gateway, so the receiving hosts can update ARP entries in a
timely manner.
•
Prevent the virtual IP address of a VRRP group from being used by a host.
The master router of a VRRP group can periodically send gratuitous ARP packets to the hosts
on the local network. The hosts can then update local ARP entries and avoid using the virtual IP
address of the VRRP group. The sender MAC address in the gratuitous ARP packet is the
virtual MAC address of the virtual router. For more information about VRRP, see High
Availability Configuration Guide.
9
- Quick Links:
- Configuring Ip Addressing
Hide quick links:
Chapters
Table of Contents
Troubleshooting
