交換機ARP代理詳解
交換機ARP代理詳解
圖表
The Host A (172.16.10.100) on Subnet A needs to send packets to Host D (172.16.20.200) on Subnet B. As shown in the diagram above, Host A has a /16 subnet mask. What this means is that Host A believes that it is directly connected to all of network 172.16.0.0. When Host A needs to communicate with any devices it believes are directly connected, it will send an ARP request to the destination. Therefore, when Host A needs to send a packet to Host D, Host A believes that Host D is directly connected, so it sends an ARP request to Host D.
這個主機A要傳送資料包到主機D。圖表顯示主機A使用的是16位掩碼。主機A相信目的網段是直接連線在172.16.0.0上的。於是主機A直接傳送一個ARP請求給目的站點。
To reach Host D (172.16.20.200), Host A needs the MAC address of Host D.
Therefore, Host A broadcasts an ARP request on Subnet A, as below:
主機A 需要得到主機D的MAC地址,所以主機A廣播ARP請求:
In above ARP request, Host A (172.16.10.100) is requesting that Host D (172.16.20.200) send its MAC address. The above ARP request packet is then encapsulated in an Ethernet frame with Host A's MAC address as the source address and a broadcast (FFFF.FFFF.FFFF) as the destination address. Since the ARP request is a broadcast, it reaches all the nodes in the Subnet A, including the router's e0 interface, but does not reach Host D. The broadcast will not reach Host D because routers, by default, do not forward broadcasts.
ARP請求裡主機A將自己的MAC地址作為源地址 FFFF.FFFF.FFFF 做為目的地址進行廣播。但是路由器的E0 口預設不支援轉發廣播。所以主機D不能響應這個ARP請求。
Since the router knows that the target address (172.16.20.200) is on another subnet and can reach Host D, it will reply with its own MAC address to Host A.
路由器知道主機D在其他子網,於是用自己的MAC地址來應答A
Above is the Proxy ARP reply that the router sends to Host A. The proxy ARP reply packet is encapsulated in an Ethernet frame with router's MAC address as the source address and Host A's MAC address as the destination address. The ARP replies are always unicast to the original requester.
路由器用自己介面的MAC地址作為源地址回覆ARP應答給主機A。這個ARP應答總是利用單播來回復。
On receiving this ARP reply, Host A updates its ARP table as below:
主機A收到ARP請求後更新自己的MAC地址表
From now on Host A will forward all the packets that it wants to reach 172.16.20.200 (Host D) to the MAC address 00-00-0c-94-36-ab (router). Since the router knows how to reach Host D, the router forwards the packet to Host D. The ARP cache on the hosts in Subnet A is populated with the MAC address of the router for all the hosts on Subnet B. Hence, all packets destined to Subnet B are sent to the router. The router forwards those packets to the hosts in Subnet B.
現在主機A如果傳送資料包給主機D就將資料傳送給MAC 00-00-0c-94-36-ab.由路由器轉發給主機D。所以目的地址為子網B的資料都傳送給路由器。子網A內所有主機ARP地址表顯示去往子網B主機的MAC地址 全是路由器介面的MAC地址。這個路由器轉發其他資料包到子網B。
The ARP cache of Host A is given below:
這個主機A的ARP 地址表
Note:
Multiple IP addresses are mapped to a single MAC address (the router's
MAC address), indicating that proxy ARP is in use.
多個IP地址被對映到一個MAC地址。標誌這在路由器上使用了 proxy-arp。
The Cisco router's interface should be configured to accept and respond to proxy ARP. This is enabled by default. Proxy ARP can be disabled on a per interface basis with the interface configuration command no ip proxy-arp, as shown below:
cisco 交換機應該配置為能夠支援proxy arp。而且它預設是被開啟的。如果需要關閉可以使用 no ip proxy-arp 在介面模式下關閉。
在介面上使用 ip proxy-arp 命令啟用 proxy-arp
The Host A (172.16.10.100) on Subnet A needs to send packets to Host D (172.16.20.200) on Subnet B. As shown in the diagram above, Host A has a /16 subnet mask. What this means is that Host A believes that it is directly connected to all of network 172.16.0.0. When Host A needs to communicate with any devices it believes are directly connected, it will send an ARP request to the destination. Therefore, when Host A needs to send a packet to Host D, Host A believes that Host D is directly connected, so it sends an ARP request to Host D.
這個主機A要傳送資料包到主機D。圖表顯示主機A使用的是16位掩碼。主機A相信目的網段是直接連線在172.16.0.0上的。於是主機A直接傳送一個ARP請求給目的站點。
To reach Host D (172.16.20.200), Host A needs the MAC address of Host D.
Therefore, Host A broadcasts an ARP request on Subnet A, as below:
主機A 需要得到主機D的MAC地址,所以主機A廣播ARP請求:
| Sender's MAC Address |
Sender's IP Address |
Target MAC Address |
Target IP Address |
| 00-00-0c-94-36-aa |
172.16.10.100 |
00-00-00-00-00-00 |
172.16.20.200 |
In above ARP request, Host A (172.16.10.100) is requesting that Host D (172.16.20.200) send its MAC address. The above ARP request packet is then encapsulated in an Ethernet frame with Host A's MAC address as the source address and a broadcast (FFFF.FFFF.FFFF) as the destination address. Since the ARP request is a broadcast, it reaches all the nodes in the Subnet A, including the router's e0 interface, but does not reach Host D. The broadcast will not reach Host D because routers, by default, do not forward broadcasts.
ARP請求裡主機A將自己的MAC地址作為源地址 FFFF.FFFF.FFFF 做為目的地址進行廣播。但是路由器的E0 口預設不支援轉發廣播。所以主機D不能響應這個ARP請求。
Since the router knows that the target address (172.16.20.200) is on another subnet and can reach Host D, it will reply with its own MAC address to Host A.
路由器知道主機D在其他子網,於是用自己的MAC地址來應答A
| Sender's MAC Address |
Sender's IP Address |
Target MAC Address |
Target IP Address |
| 00-00-0c-94-36-ab |
172.16.20.200 |
00-00-0c-94-36-aa |
172.16.10.100 |
Above is the Proxy ARP reply that the router sends to Host A. The proxy ARP reply packet is encapsulated in an Ethernet frame with router's MAC address as the source address and Host A's MAC address as the destination address. The ARP replies are always unicast to the original requester.
路由器用自己介面的MAC地址作為源地址回覆ARP應答給主機A。這個ARP應答總是利用單播來回復。
On receiving this ARP reply, Host A updates its ARP table as below:
主機A收到ARP請求後更新自己的MAC地址表
| IP Address |
MAC Address |
| 172.16.20.200 |
00-00-0c-94-36-ab |
From now on Host A will forward all the packets that it wants to reach 172.16.20.200 (Host D) to the MAC address 00-00-0c-94-36-ab (router). Since the router knows how to reach Host D, the router forwards the packet to Host D. The ARP cache on the hosts in Subnet A is populated with the MAC address of the router for all the hosts on Subnet B. Hence, all packets destined to Subnet B are sent to the router. The router forwards those packets to the hosts in Subnet B.
現在主機A如果傳送資料包給主機D就將資料傳送給MAC 00-00-0c-94-36-ab.由路由器轉發給主機D。所以目的地址為子網B的資料都傳送給路由器。子網A內所有主機ARP地址表顯示去往子網B主機的MAC地址 全是路由器介面的MAC地址。這個路由器轉發其他資料包到子網B。
The ARP cache of Host A is given below:
這個主機A的ARP 地址表
| IP Address |
MAC Address |
| 172.16.20.200 |
00-00-0c-94-36-ab |
| 172.16.20.100 |
00-00-0c-94-36-ab |
| 172.16.10.99 |
00-00-0c-94-36-ab |
| 172.16.10.200 |
00-00-0c-94-36-bb |
多個IP地址被對映到一個MAC地址。標誌這在路由器上使用了 proxy-arp。
The Cisco router's interface should be configured to accept and respond to proxy ARP. This is enabled by default. Proxy ARP can be disabled on a per interface basis with the interface configuration command no ip proxy-arp, as shown below:
cisco 交換機應該配置為能夠支援proxy arp。而且它預設是被開啟的。如果需要關閉可以使用 no ip proxy-arp 在介面模式下關閉。
Router# configure terminalEnter configuration commands, one per line. End with CNTL/Z.Router(config)# interface ethernet 0Router(config-if)# no ip proxy-arpRouter(config-if)# ^ZRouter#To enable proxy ARP on an interface, use the ip proxy-arp interface configuration command.
在介面上使用 ip proxy-arp 命令啟用 proxy-arp
相關文章
- 【轉】交換機開發(四)—— ARP 基礎知識解析
- 交換機的作用、功能和工作原理詳解
- 接入交換機、匯聚交換機、核心交換機的區別
- Linux 核心引數 arp_ignore & arp_announce 詳解Linux
- POE交換機全方位解讀(中)
- POE交換機全方位解讀(上)
- POE交換機全方位解讀(下)
- 【轉】交換機開發(一)—— 交換機的工作原理
- 全國產交換機、軍用交換機與普通交換機到底有啥區別?
- 華為交換機和銳捷交換機埠隔離
- 二層交換機和三層交換機的區別
- 一文詳解 ARP 協議協議
- 41.交換機
- 交換機測試
- ARP地址解析協議、DNS域名系統和交換機、路由器、閘道器的概念協議DNS路由器
- 工業級交換機和網路級交換機區別?
- 工業交換機與商業交換機區別對比
- 騰達TEG5328F交換機怎麼樣?騰達TEG5328F交換機詳細評測
- 2018十大交換機品牌排行 交換機哪個牌子好?
- 網路交換機功能和原理的詳細說明
- 配置PoE交換機功能
- 智慧管理PoE交換機
- 遠端管理交換機
- 華為交換機埠安全詳解--埠隔離、環路檢測與埠安全
- 選購交換機的引數依據和主要的引數指標詳解指標
- HCNP Routing&Switching之代理ARP
- 二層交換機鏈路聚合、三層交換機鏈路聚合和三層交換機的單臂路由專案路由
- 網路交換機常見故障及解決方法
- 【轉】交換機開發(二)—— 三層交換機報文轉發過程
- 環網自主可控交換機相較與普通的交換機優勢在哪?
- 交換機基礎及stp
- VLAN與三層交換機
- 華為交換機配置Telnet
- 網路(1)——交換機配置
- 交換機的簡單配置
- 華為交換機VLAN配置
- 交換機及路由基礎路由
- 華為交換機配置(一)
- 代理模式詳解模式