Never seen that. Maybe the 7500 has Sticky ARP enabled and you tested your subnet with a different NIC? I don't even know if 7500 routers support Sticky ARP.
Are the IPs in a unique subnet? Is this unique subnet routed to a unique IP? If so... You could configure the unique IP on eth0, are the unique subnet on dummy interfaces (dummyN). Example : Unique Subnet 172.16.0.0/12 routed to Unique IP 192.168.1.1 # ifconfig eth0 192.168.1.1 netmask 255.255.255.0 # ifconfig dummy0 172.16.0.1 netmask 255.255.255.255 # ifconfig dummy1 172.16.0.2 netmask 255.255.255.255 # ifconfig dummy2 172.16.0.3 netmask 255.255.255.255 If the 7500 router throws all traffic targeting 172.16.0.0/12 to IP 192.168.1.1 (eth0, traffic should - if I'm right - be internaly "routed" by linux to the dummyN interface. The 7500 should know nothing about MAC addresses of 172.16.0.0/12 since "Who-Has" requests will be heard on an interface that has nothing to do with this subnet. Regards, Tommy. ----- Original Message ----- From: "ssiusa" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, March 06, 2002 5:22 PM Subject: multiple ip & mac address problem > > Dear All, > We have an unusual problem. We have just installed a rh7.1 > firewall with iptables 1.2.5, we have multiple virtual ip's on one nic (all > have the same mac) connected to a lan which is then piped to the internet > through another section of our network to the internet.. The firewall works > just fine if you are on the lan that the nic is on (X.X.56.X), but if you > attempt to connect to this network (x.x.56.x) from outside the connection > fails, when just one ip is set it works just find from everywhere. we have > traced the problem to a cisco 7500 router (which we have no control over) > and the mac address of the nic, if we could have multiple ip's and multiple > mac address for the ip's I am sure it would work. I tried to change the mac > of the card (eth0) which worked, then I tried to change the mac of the > virtual ip's (eth0:1, eth0:2, etc) which just changed the mac of eth0. > > Does anyone have any suggestions for a solution??? > > Has anyone had the same problem?? > > Thanks > > > Shaun > >
