[TriLUG] Odd Network problem
Ryan Leathers
Ryan.Leathers at globalknowledge.com
Mon Feb 14 10:17:53 EST 2005
I'm not sure I saw anyone mention this, so I'll add it.
This symptom can be caused by a device in the network performing proxy arp.
Reasonable culprits are things that do "fancy" NAT. Unreasonable culprits
are hosts made to do the bidding of evil-doers by crashing VLANs and
performing MitM tricks.
An example of the former is a Cisco PIX with statics on a lower security
interface. To stop the behavior in this case you'd use the not-so-well
documented command "sysopt noproxyarp <interface>". Anyway, this is just an
example to help you consider possible culprits in your environment.
-----Original Message-----
From: Chris Knowles [mailto:chrisk at trilug.org]
Sent: Sunday, February 13, 2005 1:07 AM
To: Triangle Linux Users Group discussion list
Subject: [TriLUG] Odd Network problem
--
TriLUG mailing list : http://www.trilug.org/mailman/listinfo/trilug
TriLUG Organizational FAQ : http://trilug.org/faq/
TriLUG Member Services FAQ : http://members.trilug.org/services_faq/
TriLUG PGP Keyring : http://trilug.org/~chrish/trilug.asc
More information about the TriLUG
mailing list