* [LARTC] Routing NDAS ?
@ 2007-06-22 21:31 Andrew Lyon
2007-06-22 21:44 ` Grant Taylor
` (2 more replies)
0 siblings, 3 replies; 4+ messages in thread
From: Andrew Lyon @ 2007-06-22 21:31 UTC (permalink / raw)
To: lartc
Hi,
I believe ndas devices (http://www.ximeta.com/web/technology/) use raw
Ethernet frames, as they require no tcp/ip configuration, the client
finds and authenticates with a code that is different for each device
sold, like a network mac address.
My pc is on a different segment to the ndas devices that we have, the
two segments are linked by a linux box that is doing routing and proxy
arp, can anybody suggest a way that I could access the ndas devices, I
can connect to a share on a server that is connected to one of the
devices, but that isn't very efficient :(
Andy
*/ Ignore: JOSEDV001TAG /*
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [LARTC] Routing NDAS ?
2007-06-22 21:31 [LARTC] Routing NDAS ? Andrew Lyon
@ 2007-06-22 21:44 ` Grant Taylor
2007-06-22 22:22 ` Andrew Lyon
2007-06-22 23:16 ` Grant Taylor
2 siblings, 0 replies; 4+ messages in thread
From: Grant Taylor @ 2007-06-22 21:44 UTC (permalink / raw)
To: lartc
On 06/22/07 16:31, Andrew Lyon wrote:
> the two segments are linked by a linux box that is doing routing and
> proxy arp,
Please bridge and do not use Proxy ARP. Or if you really want to use
Proxy ARP make sure that you are only Proxy ARPing for the MAC addresses
of the NDAS device(s) and the client(s) that need to connect to it.
> can anybody suggest a way that I could access the ndas devices,
Set up a bridging router (a.k.a. brouter) to bridge all layer 2 traffic
except for IP (and a few other select protocols) traffic. You may only
want to bridge traffic that is from the NDAS and or its client(s) and
route the rest (DROP in the BROUTING chain of the broute table).
Grant. . . .
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
^ permalink raw reply [flat|nested] 4+ messages in thread
* RE: [LARTC] Routing NDAS ?
2007-06-22 21:31 [LARTC] Routing NDAS ? Andrew Lyon
2007-06-22 21:44 ` Grant Taylor
@ 2007-06-22 22:22 ` Andrew Lyon
2007-06-22 23:16 ` Grant Taylor
2 siblings, 0 replies; 4+ messages in thread
From: Andrew Lyon @ 2007-06-22 22:22 UTC (permalink / raw)
To: lartc
>
>-----Original Message-----
>From: lartc-bounces@mailman.ds9a.nl
[mailto:lartc-bounces@mailman.ds9a.nl] >On Behalf Of Grant Taylor
>Sent: 22 June 2007 22:45
>To: Mail List - Linux Advanced Routing and Traffic Control
>Subject: Re: [LARTC] Routing NDAS ?
>
>On 06/22/07 16:31, Andrew Lyon wrote:
>> the two segments are linked by a linux box that is doing routing and
>> proxy arp,
>
>Please bridge and do not use Proxy ARP. Or if you really want to use
>Proxy ARP make sure that you are only Proxy ARPing for the MAC
addresses
>of the NDAS device(s) and the client(s) that need to connect to it.
Are you saying that there is something wrong with proxy arp? So far it
works fine for us, we have 5 segments and approx 150 nodes.
Ndas devices don't work with proxy arp, bridge would, but at the moment
we are a 24/7 operation and making the necessary config changes for
bridge would be disruptive.
I will probably end up doing it, but I would like to know if there is
any alternative..
Andy
>> can anybody suggest a way that I could access the ndas devices,
>Set up a bridging router (a.k.a. brouter) to bridge all layer 2 traffic
>except for IP (and a few other select protocols) traffic. You may only
>want to bridge traffic that is from the NDAS and or its client(s) and
>route the rest (DROP in the BROUTING chain of the broute table).
Grant. . . .
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
Registered Office: J.O. Sims Ltd, Pudding Lane, Pinchbeck, Spalding, Lincs. PE11 3TJ
Company reg No: 2084187 Vat reg No: GB 437 4621 47
Tel: +44 (0) 1775 842100 Fax: +44 (0) 1775 842101 Web: www.josims.com
Email:enquiries@josims.com
The information contained in this e-mail is confidential and is intended for the addressee only. The contents of this e-mail must not be disclosed or copied without the sender's consent. If you are not the intended recipient of the message, please notify the sender immediately, and delete the message. The statements and opinions expressed in this message are those of the author and do not necessarily reflect those of the company. No commitment may be inferred from the contents unless explicitly stated. The company does not take any responsibility for the personal views of the author. This message has been scanned for viruses before sending, but the company does not accept any responsibility for infection and recommends that you scan any attachments.JOSEDV001TAG
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
^ permalink raw reply [flat|nested] 4+ messages in thread
* Re: [LARTC] Routing NDAS ?
2007-06-22 21:31 [LARTC] Routing NDAS ? Andrew Lyon
2007-06-22 21:44 ` Grant Taylor
2007-06-22 22:22 ` Andrew Lyon
@ 2007-06-22 23:16 ` Grant Taylor
2 siblings, 0 replies; 4+ messages in thread
From: Grant Taylor @ 2007-06-22 23:16 UTC (permalink / raw)
To: lartc
On 6/22/2007 5:22 PM, Andrew Lyon wrote:
> Are you saying that there is something wrong with proxy arp? So far
> it works fine for us, we have 5 segments and approx 150 nodes.
Is there something wrong with driving a stake in to the ground with a
rock verses a sledge hammer, no.
I personally see no reason to ever use proxy arp when you can bridge. I
also see much finer grained control over bridging than I do of proxy
arp. Not to mention that with bridging, devices see the real MAC
address verses the MAC of the device doing the proxy arp.
That being said, proxy arp has been around for more decades than
bridging has. I'm sure that there are situations where proxy arp is the
better situation. However personally I would have to have a situation
where bridging would not work and proxy arp would for me to use proxy
arp over bridging. I guess some of this could be attributed to the fact
that I have come in to networking with in the last 10 years and to me
proxy arp is the old holdover about like NetBEUI is for some networks.
(That is not to say that proxy arp has as many problems as NetBEUI does
or vice versa.)
> Ndas devices don't work with proxy arp, bridge would, but at the
> moment we are a 24/7 operation and making the necessary config
> changes for bridge would be disruptive.
Do you have another system that you can put in to production that would
connect to both broadcast domains and have it bridge just NDAS traffic
and let your existing routers do what they are doing? I can understand
and appreciate the inability (technical / political / chronological) to
be able to replace work on production systems. That does not mean that
you can not accomplish what is needed another way.
> I will probably end up doing it, but I would like to know if there is
> any alternative..
Will adding a system just to bridge NDAS traffic work?
Grant. . . .
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
^ permalink raw reply [flat|nested] 4+ messages in thread
end of thread, other threads:[~2007-06-22 23:16 UTC | newest]
Thread overview: 4+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2007-06-22 21:31 [LARTC] Routing NDAS ? Andrew Lyon
2007-06-22 21:44 ` Grant Taylor
2007-06-22 22:22 ` Andrew Lyon
2007-06-22 23:16 ` Grant Taylor
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.