Proxy ARP option on USG to work like L3 switch
Guru Member
This was tested on my VPN300 but likely holds true for current models
The following setup works on my XS1930-10
XS1930-10 interface IP 192.168.255.233 / 255.255.255.192
Two clients
IP 192.168.255.193
subnet 255.255.255.255
gateway 192.168.255.233
IP 192.168.255.194
subnet 255.255.255.255
gateway 192.168.255.233
As the subnets of the clients is 255.255.255.255 it can only ARP to the gateway never to each other but due to XS1930-10 when you ping 192.168.255.194 from 192.168.255.193 it works.
on VPN300 with interface general 192.168.255.247 / 255.255.255.192 and proxy ARP 192.168.255.193-192.168.255.194
Two clients
IP 192.168.255.193
subnet 255.255.255.255
gateway 192.168.255.247
IP 192.168.255.194
subnet 255.255.255.255
gateway 192.168.255.247
The clients try to ping each other they go to the VPN300 gateway but the proxy ARP does not work the same way as L3 switch.
Categories
- All Categories
- 438 Beta Program
- 2.7K Nebula
- 189 Nebula Ideas
- 121 Nebula Status and Incidents
- 6.2K Security
- 465 USG FLEX H Series
- 305 Security Ideas
- 1.6K Switch
- 81 Switch Ideas
- 1.3K Wireless
- 44 Wireless Ideas
- 6.8K Consumer Product
- 281 Service & License
- 440 News and Release
- 88 Security Advisories
- 31 Education Center
- 10 [Campaign] Zyxel Network Detective
- 4.3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 93 Security Highlight
