Created on 03-07-2007 12:00 AM
Description | VIP created on VLAN interface of redundant interface does not reply to ARP |
Components |
|
Steps or Commands | A FortiGate unit will not reply to ARP requests from a PC trying to access the web server when a Virtual IP is defined. The reason is the last byte of the Virtual IP. The FortiGate unit uses the wrong address type, when the last bye is greater than or equal to 224. The FortiGate unit considers the VIP to be a multicast address and will not update the iplist table. To correct this, manually insert a proxy-arp entry for the FortiGate unit using the CLI. config system proxy-arp This issue was fixed in the MR4 Patch 3 build and is scheduled to be corrected in FortiOS v3.0 MR5. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.