Guest_imported
New member
- Jan 1, 1970
- 0
Hi,
I am having a problem with ARP table (i believe) on owr Cisco PIX fw.
The story is that we are doing IPAT (Ip Address Takeover) in order to implement a linux fail-over cluster.
For example:
nodeA has eth0 -> 10.0.0.3
nodeB has eth0 -> 10.0.0.4
The active node will have an IP alias such as 10.0.0.5
This IP alias will be doing translation (NAT)thought the PIX in order to get internet Access. (the only IP allowed to go outside)
So we have both linux IP addresses, plus the eth0:0 that will be configured on the active node.
The thing is that when we shut down the eth0 and eth0:0 configured in the active node, and we raise up the nodeB eht0:0, the requirements still arrive to the nodeA.
I thought about sending a gratuitous ARP, but that still doesnt work.
Does anyone knows how to configure the PIX in order to accept gratuitous ARP from a specifyed network segment ?
Or has anyone experienced this issue ?
Thanks a lot for the help !
FG
I am having a problem with ARP table (i believe) on owr Cisco PIX fw.
The story is that we are doing IPAT (Ip Address Takeover) in order to implement a linux fail-over cluster.
For example:
nodeA has eth0 -> 10.0.0.3
nodeB has eth0 -> 10.0.0.4
The active node will have an IP alias such as 10.0.0.5
This IP alias will be doing translation (NAT)thought the PIX in order to get internet Access. (the only IP allowed to go outside)
So we have both linux IP addresses, plus the eth0:0 that will be configured on the active node.
The thing is that when we shut down the eth0 and eth0:0 configured in the active node, and we raise up the nodeB eht0:0, the requirements still arrive to the nodeA.
I thought about sending a gratuitous ARP, but that still doesnt work.
Does anyone knows how to configure the PIX in order to accept gratuitous ARP from a specifyed network segment ?
Or has anyone experienced this issue ?
Thanks a lot for the help !
FG
