All of lore.kernel.org
 help / color / mirror / Atom feed
* [LARTC] large ARP cache
@ 2002-02-04  3:07 David Koski
  2002-02-04  3:52 ` David Koski
                   ` (3 more replies)
  0 siblings, 4 replies; 5+ messages in thread
From: David Koski @ 2002-02-04  3:07 UTC (permalink / raw)
  To: lartc

Hello,

When executing arp (on host A below), it lists 36 address pairs for an interface
(eth1).  This doesn't make sense to me.  The interface is NAT'ed though.  There
are only two NICs on my computer and only two computers in my domain:

 to
 isp
 |
 | eth1
+------------+
|host A      |
|(does NAT   |
|for host B) |
+------------+
 | eth0
 |
+-------+
|host B |
+-------+


The list in arp includes google.com!

Regards,
David Koski
david@KosmosIsland.com
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/lartc/

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: [LARTC] large ARP cache
  2002-02-04  3:07 [LARTC] large ARP cache David Koski
@ 2002-02-04  3:52 ` David Koski
  2002-02-04 10:02 ` bert hubert
                   ` (2 subsequent siblings)
  3 siblings, 0 replies; 5+ messages in thread
From: David Koski @ 2002-02-04  3:52 UTC (permalink / raw)
  To: lartc

(Duhh!) The question is, is it normal to have an arp cache with entries that
don't even belong in the network?  If not, what needs to be done to keep them
out?

David

On Sun, 3 Feb 2002 19:07:17 -0800
David Koski <david@kosmosisland.com> wrote:

> Hello,
> 
> When executing arp (on host A below), it lists 36 address pairs for an
interface
> (eth1).  This doesn't make sense to me.  The interface is NAT'ed though. 
There
> are only two NICs on my computer and only two computers in my domain:
> 
>  to
>  isp
>  |
>  | eth1
> +------------+
> |host A      |
> |(does NAT   |
> |for host B) |
> +------------+
>  | eth0
>  |
> +-------+
> |host B |
> +-------+
> 
> 
> The list in arp includes google.com!
> 
> Regards,
> David Koski
> david@KosmosIsland.com
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/lartc/
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/lartc/

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: [LARTC] large ARP cache
  2002-02-04  3:07 [LARTC] large ARP cache David Koski
  2002-02-04  3:52 ` David Koski
@ 2002-02-04 10:02 ` bert hubert
  2002-02-04 15:12 ` Ard van Breemen
  2002-02-04 18:01 ` David Koski
  3 siblings, 0 replies; 5+ messages in thread
From: bert hubert @ 2002-02-04 10:02 UTC (permalink / raw)
  To: lartc

On Sun, Feb 03, 2002 at 07:52:12PM -0800, David Koski wrote:
> (Duhh!) The question is, is it normal to have an arp cache with entries that
> don't even belong in the network?  If not, what needs to be done to keep them
> out?

This happens if you don't have a default gateway and something in the
network is feeding you proxy arps, telling you 'yes, I can reach
google.com'.

Add a default route on A to B and the problem will disappear.

Regards,

bert

-- 
http://www.PowerDNS.com          Versatile DNS Software & Services
http://www.tk                              the dot in .tk
Netherlabs BV / Rent-a-Nerd.nl           - Nerd Available -
Linux Advanced Routing & Traffic Control: http://ds9a.nl/lartc
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/lartc/

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: [LARTC] large ARP cache
  2002-02-04  3:07 [LARTC] large ARP cache David Koski
  2002-02-04  3:52 ` David Koski
  2002-02-04 10:02 ` bert hubert
@ 2002-02-04 15:12 ` Ard van Breemen
  2002-02-04 18:01 ` David Koski
  3 siblings, 0 replies; 5+ messages in thread
From: Ard van Breemen @ 2002-02-04 15:12 UTC (permalink / raw)
  To: lartc

On Mon, Feb 04, 2002 at 11:02:32AM +0100, bert hubert wrote:
> On Sun, Feb 03, 2002 at 07:52:12PM -0800, David Koski wrote:
> > (Duhh!) The question is, is it normal to have an arp cache with entries that
> > don't even belong in the network?  If not, what needs to be done to keep them
> > out?
> 
> This happens if you don't have a default gateway and something in the
> network is feeding you proxy arps, telling you 'yes, I can reach
> google.com'.
> 
> Add a default route on A to B and the problem will disappear.
Eh, he means: add a default route from your router (A) to your internet
router (which I am missing in your picture).
-- 
<ard@telegraafnet.nl> Telegraaf Elektronische Media  http://wwwijzer.nl
http://leerquoten.monster.org/ http://www.faqs.org/rfcs/rfc1855.html 
Let your government know you value your freedom. Sign the petition:
http://petition.eurolinux.org/
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/lartc/

^ permalink raw reply	[flat|nested] 5+ messages in thread
* Re: [LARTC] large ARP cache
  2002-02-04  3:07 [LARTC] large ARP cache David Koski
                   ` (2 preceding siblings ...)
  2002-02-04 15:12 ` Ard van Breemen
@ 2002-02-04 18:01 ` David Koski
  3 siblings, 0 replies; 5+ messages in thread
From: David Koski @ 2002-02-04 18:01 UTC (permalink / raw)
  To: lartc

On Mon, 4 Feb 2002 11:02:32 +0100
bert hubert <ahu@ds9a.nl> wrote:

> On Sun, Feb 03, 2002 at 07:52:12PM -0800, David Koski wrote:
> > (Duhh!) The question is, is it normal to have an arp cache with entries that
> > don't even belong in the network?  If not, what needs to be done to keep
them
> > out?
> 
> This happens if you don't have a default gateway and something in the
> network is feeding you proxy arps, telling you 'yes, I can reach
> google.com'.
> 
> Add a default route on A to B and the problem will disappear.

I had a default route but no gateway as you said!  Once I did:

route add default gw 1.2.3.4 eth1

The problem went away.  And it makes sense.

Thanks!

David Koski
david@KosmosIsland.com
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/lartc/

^ permalink raw reply	[flat|nested] 5+ messages in thread
end of thread, other threads:[~2002-02-04 18:01 UTC | newest]

Thread overview: 5+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2002-02-04  3:07 [LARTC] large ARP cache David Koski
2002-02-04  3:52 ` David Koski
2002-02-04 10:02 ` bert hubert
2002-02-04 15:12 ` Ard van Breemen
2002-02-04 18:01 ` David Koski

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.