Table of Contents
Advertisement
Complete Software Guide for Junos
Understanding Proxy ARP on EX Series Switches
What Is ARP?
Proxy ARP Overview
1522
®
OS for EX Series Ethernet Switches, Release 10.4
You can configure proxy Address Resolution Protocol (ARP) on your Juniper Networks
EX Series Ethernet Switch to enable the switch to respond to ARP queries for network
addresses by offering its own Ethernet media access control (MAC) address. With proxy
ARP enabled, the switch captures and routes traffic to the intended destination.
Proxy ARP is useful in situations where hosts are on different physical networks and you
do not want to use subnet masking. Because ARP broadcasts are not propagated between
hosts on different physical networks, hosts will not receive a response to their ARP request
if the destination is on a different subnet. Enabling the switch to act as an ARP proxy
allows the hosts to transparently communicate with each other through the switch. Proxy
ARP can help hosts on a subnet reach remote subnets without your having to configure
routing or a default gateway.
What Is ARP? on page 1522
Proxy ARP Overview on page 1522
Best Practices for Proxy ARP on EX Series Switches on page 1523
Ethernet LANs use ARP to map Ethernet MAC addresses to IP addresses. Each device
maintains a cache containing a mapping of MAC addresses to IP addresses. The switch
maintains this mapping in a cache that it consults when forwarding packets to network
devices. If the ARP cache does not contain an entry for the destination device, the host
(the DHCP client) broadcasts an ARP request for that device's address and stores the
response in the cache.
When proxy ARP is enabled, if the switch receives an ARP request for which it has a route
to the target (destination) IP address, the switch responds by sending a proxy ARP reply
packet containing its own MAC address. The host that sent the ARP request then sends
its packets to the switch, which forwards them to the intended host.
NOTE: For security reasons, the source address in an ARP request must be
on the same subnet as the interface on which the ARP request is received.
You can configure proxy ARP for each interface. You can also configure proxy ARP for a
VLAN by using a routed VLAN interface (RVI).
EX Series switches support two modes of proxy ARP, restricted and unrestricted. Both
modes require that the switch have an active route to the destination address of the ARP
request.
Restricted—The switch responds to ARP requests in which the physical networks of
the source and target are different and does not respond if the source and target IP
addresses are on the same subnet. In this mode, hosts on the same subnet
communicate without proxy ARP. We recommend that you use this mode on the switch.
Copyright © 2010, Juniper Networks, Inc.
Advertisement
Chapters
Table of Contents
Troubleshooting
