Can this ARPing be stopped?
Guru Member
With FLEX H it tries to ARP on a WAN interface outside the given IP WAN it should not be needed to be done and my ISP does ignore them but best not to have them sent out also ARP broadcast when doing ping check ever 5 seconds plus more if you do another ping check rule in routing it would be best to only do a ARP broadcast when ping does not get a reply.
Note Cisco MAC is my ISP and GigaByteTech is my MAC set in FLEX H
Is their a SSH command that can stop this please thanks
All Replies
-
Hi @PeterUK,
Our engineer wants to check this symptom via CLI. Could you allow SSH for the remote access policy rule so we can use the domain you have provided to access? Thanks!
Zyxel Melen0 -
So did see why this is a problem? it also happen on the FLEX 200 non H the more routing rules you have like this.
The worse and more ARP happens
My take on ARP is on finding IP within the subnet that has not been looked up is of course broadcast ARP then from then on every 30-60 seconds random do a unicast ARP and if that fails back to broadcast ARP then with Zyxel doing ping checks it uses that stored ARP for the gateway or IP in subnet to send ping but if ping fails on timeout then do broadcast ARP for the gateway or IP in subnet.
0 -
So is this still being looked into?
0 -
Hi @PeterUK,
Yes, we are still checking. I'm sorry for the delayed update.
In the meantime, may I check with you if this issue still occurs in V1.32 firmware? Because I tried adding policy routes in my lab and monitoring for 20 minutes, I didn't see the strange ARP packet as you marked in the post. Could you also help to confirm if this issue happens at any time? If so, I will ask our engineer to check this issue directly.
Zyxel Melen0 -
yes happen with V1.32 firmware
So policy routes if doing it every 5 seconds for ping check period will cause ARP every 5 seconds
as for the other ARP I think you need to setup DDNS
0 -
Hi @PeterUK,
Our engineer has checked this issue. Since the IP addresses are from Zyxel services, they tried to connect related domain from your USG FLEX 200HP, but query was failed. Based on your network structure, could you help to allow specific domains on the uplink device? We assume this issue is because the service was blocked and cause the firewall tried to find the related IP addresses.
I will send the domain list to you via private message.
Zyxel Melen0 -
Its seem the DNS cache on FLEX H failed in some way and had to do a
cmd dns proxy clear-cache
which is another issue as to why that happened but still ARP to IP's outside the subnet still happens for Zyxel services which is not needed because it should use the gateway
0
Zyxel Employee
Categories
- All Categories
- 431 Beta Program
- 2.6K Nebula
- 170 Nebula Ideas
- 114 Nebula Status and Incidents
- 6K Security
- 385 USG FLEX H Series
- 294 Security Ideas
- 1.5K Switch
- 78 Switch Ideas
- 1.2K Wireless
- 42 Wireless Ideas
- 6.7K Consumer Product
- 267 Service & License
- 412 News and Release
- 87 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.9K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 83 Security Highlight
