Configuring Gratuitous Arp; Overview; Enabling Learning Of Gratuitous Arp Packets; Configuring Periodic Sending Of Gratuitous Arp Packets - HP 830 Series Configuration Manual

Poe+ unified wired-wlan switch switching engine

Hide thumbs Also See for 830 Series:

Configuration manual (530 pages)

Command reference manual (136 pages)

Installation manual (58 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

Table of Contents

Configuring gratuitous ARP

Overview

In a gratuitous ARP packet, the sender IP address and the target IP address are the IP address of the

sending device.

A device sends a gratuitous ARP packet for either of the following purposes:

•

Determine whether its IP address is already used by another device. If the IP address is already used,

the device is informed of the conflict by an ARP reply.

Inform other devices of a change of its MAC address.

•

Enabling learning of gratuitous ARP packets

This feature enables a device to create or update ARP entries by using the sender IP and MAC addresses

in received gratuitous ARP packets.

With this feature disabled, the device uses the received gratuitous ARP packets to update only existing

ARP entries.

Configuring periodic sending of gratuitous ARP packets

Enabling a device to periodically send gratuitous ARP packets helps downstream devices update their

corresponding ARP entries or MAC entries in time. You can use this feature to prevent gateway spoofing,

prevent ARP entries from aging out, and prevent the virtual IP address of a VRRP group from being used

by a host.

•

Prevent gateway spoofing.

An attacker can use the gateway address to send gratuitous ARP packets to the hosts on a network

so that the traffic destined for the gateway from the hosts is sent to the attacker instead. As a result,

the hosts cannot access the external network.

To prevent such gateway spoofing attacks, you can enable the gateway to send gratuitous ARP

packets containing its primary IP address and manually configured secondary IP addresses at a

specific interval, so hosts can learn correct gateway address information.

Prevent ARP entries from aging out.

•

If network traffic is heavy or if a host's CPU usage is high, received ARP packets might be

discarded or might not be processed in time. Eventually, the dynamic ARP entries on the receiving

host age out, and the traffic between the host and the corresponding devices is interrupted until the

host re-creates the ARP entries.

To prevent this problem, you can enable the gateway to send gratuitous ARP packets periodically.

The gratuitous ARP packets contain the gateway's primary IP address or one of its manually

configured secondary IP addresses, so the receiving hosts can update ARP entries in time.

Configuration guidelines

Follow these guidelines when you configure gratuitous ARP:

Table of Contents

Configuring Gratuitous Arp; Overview; Enabling Learning Of Gratuitous Arp Packets; Configuring Periodic Sending Of Gratuitous Arp Packets - HP 830 Series Configuration Manual

Configuring gratuitous ARP

Overview

Enabling learning of gratuitous ARP packets

Configuring periodic sending of gratuitous ARP packets

Configuration guidelines

Troubleshooting

Related Manuals for HP 830 Series

Related Content for HP 830 Series

Table of Contents