troubleshooting Question

Strange MAC address spoofing problem

Avatar of eggster34
eggster34 asked on
CiscoSoftware FirewallsNetwork Security
1 Comment1 Solution660 ViewsLast Modified:
Hi there,
I have a Cisco ASA 5520 firewall, where ethernet0/1 is connected to a cisco catalyst 2960 switch.
I also have a Cisco 3670 router, connected to the same switch. The Cisco router terminates several frame relay connections.

Randomly, I see entries such as this on my cisco router when I issue the sh arp command:

Internet  192.168.112.1        17   0f3b.d8bd.4162  ARPA   Vlan2

The Vlan2 interface on my router is the one connected to the catalyst switch, and the MAC address above belongs to the ethernet0/1 interface on my ASA, so for some reason, although 192.168.112.0 is a frame network connected to an interface on my router, the switch somehow advertises that network to be reachable through my ASA.

I cannot use this guide since my switch OS does not support the vlan access-map command. What would you suggest me to do?


http://www.cisco.com/en/US/products/hw/switches/ps646/products_configuration_example09186a0080470c39.shtml
ASKER CERTIFIED SOLUTION
Les Moore
Systems Architect
Join our community to see this answer!
Unlock 1 Answer and 1 Comment.
Start Free Trial
Learn from the best

Network and collaborate with thousands of CTOs, CISOs, and IT Pros rooting for you and your success.

Andrew Hancock - VMware vExpert
See if this solution works for you by signing up for a 7 day free trial.
Unlock 1 Answer and 1 Comment.
Try for 7 days

”The time we save is the biggest benefit of E-E to our team. What could take multiple guys 2 hours or more each to find is accessed in around 15 minutes on Experts Exchange.

-Mike Kapnisakis, Warner Bros