On Sat, Feb 23, 2002 at 05:25:16PM -0600, Casey Carter wrote: > On Sat, 2002-02-23 at 12:49, Adrian Chung wrote: > > Hi, I have the following setup: > > > > Cable Modem (24.x.y.z) > > | > > x.y.z.225 -+ +----------------------- > > |--|x.y.z.224 -- x.y.z.224|-- x.y.z.0/25 > > x.y.z.226 -+ +----------------------+ > The magic secret of proxy ARP is that Linux will only proxy if there is > a route to the desired IP address that does not go out the same > interface. So, if you have netmasks set to /24 in your setup, it will > not work. You should probably set the right iface as x.y.z.<something > less than 127>/25 and the left as x.y.z.224/25. Proxy ARP should then > work correctly, and without you having to redo the hack every time a > host is added to the left network. If you really can't afford to burn > another address, set the right iface to x.y.z.224/32 and add a route to > x.y.z.0/25. The goal is to ensure that the scope of routes over the two > interfaces do not overlap. Right, but I still need to have proxy_arp set to 1 for the right hand iface? I believe the problem that I had was that there are a few different subnets on the same physical wire attached to x.y.z.224 on the right hand side... Since I've only got a route to one subnet on that interface, everything else it seemed to have replied to via proxy ARP... I'm not sure if arp_filter would help this situation or not. What I really want to do is have the right hand iface respond for static arp entries even when proxy_arp is 0. -- Adrian Chung (adrian at enfusion-group dot com) http://www.enfusion-group.com/~adrian GPG Fingerprint: C620 C8EA 86BA 79CC 384C E7BE A10C 353B 919D 1A17 [toad.enfusion-group.com] up 7:24, 12 users, load average: 0.20 - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org More majordomo info at http://vger.kernel.org/majordomo-info.html
