GroupStudy.com GroupStudy.com - A virtual community of network engineers
 Home  BookStore  StudyNotes  Links  Archives  StudyRooms  HelpWanted  Discounts  Login
RE: It works well, but why? [7:84373] posted 02/13/2004
[Chronological Index] [Thread Index] [Top] [Date Prev][Date Next] [Thread Prev][Thread Next]


You're doing Proxy ARP with that command. When Router A tries to find Router
B, the PIX replies on behalf of Router B with its own address. Router A can
send to that address and it works.

But why do it this way?

The PIX can run RIP normally, can't it?

Priscilla

avran wrote:
> 
> routera-------(in)pix(out)---------routerb
> 
> PIX cannot collect and send out routing updates
> 
> Using RIP, however you can unicast the updates
> 
> the needed commands are as follows
> 
> router rip
>    no validate-update-source
>    neighbor x.x.x.x (routerb's network/interface)
> 
> arp x.x.x.x  y.y.y arpa (y.y.y is the mac address of the inside
> interface of
> the pix)
> 
> on the PIX
> allow the rip to go through (520)
> 
> Question?
> 
> What is the purpose of the arp command in this case (please
> note that the ip
> address of the routerb interface is arped to the mac address of
> the pix
> inside interface)?
> 
> 




Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=84381&t=84373
--------------------------------------------------
**Please support GroupStudy by purchasing from the GroupStudy Store:
http://shop.groupstudy.com
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html