Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

Cisco GLBP Doubt

Posted on 2010-09-05
8
Medium Priority
?
615 Views
Last Modified: 2012-05-10
I have a doubt with glbp

In the figure that i have attached,
let's assume that the client1 issued an arp broadcast request, so the switch will have the source mac add of client1 in the mac address table and the port no , the avg will send an arp  reply with the virtual mac address and the switch will record the virtual mac and the port no of the source, which in this case is the virtual mac address of Router A.

i found no doubt in the above but,

when the client2 issues an arp, the avg(RA) will receive it and will send the virtual mac address of the avf(Router B), so now the swich will record the mac address of the sender which in this case is virtual mac addr of Router B (but given by Router A), so In the switch cam table, mac addr will be the virtual mac addr of routerb, but the port no recorded by the switch would be that of the port on which the routerA is present as it was the replier to the arp query,

So how does a switch know that it has to forward the frames to routerB as the replier to the arp query fro client B was Router A and its port is recorded by the switch.  


GLBP.png
0
Comment
Question by:tpat
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
  • 2
8 Comments
 
LVL 24

Expert Comment

by:rfc1180
ID: 33608938
>So how does a switch know that it has to forward the frames to routerB as the replier to the arp query fro client B was Router A and its port is recorded by the switch.

The ARP reply information for the destination MAC and IP (Router B) is contained in the data payload of the Ethernet fram (ARP data is encapsulated into an Ethernet frame) and not in the source and destination of the Ethernet Frame as you think it is, these are 2 different pieces of information.

http://book.chinaunix.net/special/ebook/oreilly/Understanding_Linux_Network_Internals/0596002556/understandlni-CHP-28-SECT-1.html


Billy
0
 

Author Comment

by:tpat
ID: 33609129
So what would be the layer 2 information in the ARP Reply from router a  to client b.
would it be:

SMAC: 0007.b400.0101
DMAC:  client B's mac address.

ARP REPLY:
SMAC: 0007.b400.0102
DMAC: client 2's mac address
SIP: 10.21.8.10
DIP: client 2's ip address
0
 
LVL 24

Accepted Solution

by:
rfc1180 earned 1000 total points
ID: 33609303
not sure who Client B is, as you only have client 2 on the map (Maybe a typo):

SMAC: 0007.b400.0101
DMAC:  client 2's mac address.  <----- this is how the switch will make the forwarding decision on

ARP REPLY:
SMAC: 0007.b400.0102
DMAC: client 2's mac address
SIP: 10.21.8.10
DIP: client 2's ip address


Billy
0
Ready for your healthcare security check-up?

In the past few years, healthcare organizations have become a prime target for advanced attacks. Does your organization have what it needs to defend itself? Schedule your healthcare security check-up today and download our free Healthcare Security Resource Kit today!

 
LVL 17

Assisted Solution

by:rochey2009
rochey2009 earned 1000 total points
ID: 33611294

No.     Time        Source                Destination           Protocol Info
     32 0.094000    c2:00:07:d4:00:00     c2:03:07:d4:00:00     ARP      192.168.0.1 is at 00:07:b4:00:00:01

Frame 32 (60 bytes on wire, 60 bytes captured)
Ethernet II, Src: c2:00:07:d4:00:00 (c2:00:07:d4:00:00), Dst: c2:03:07:d4:00:00 (c2:03:07:d4:00:00)
Address Resolution Protocol (reply)
    Hardware type: Ethernet (0x0001)
    Protocol type: IP (0x0800)
    Hardware size: 6
    Protocol size: 4
    Opcode: reply (0x0002)
    Sender MAC address: Cisco_00:00:01 (00:07:b4:00:00:01)
    Sender IP address: 192.168.0.1 (192.168.0.1)
    Target MAC address: c2:03:07:d4:00:00 (c2:03:07:d4:00:00)
    Target IP address: 192.168.0.100 (192.168.0.100)

Hi,
Here's a trace of an arp response from my GNS3 lab. The source of the ethernet frame is  c2:00:07:d4:00:00 which is the mac address of the ethernet interface on the GLBP router. Encapsulated in the arp request is the virtual mac-address 00:07:b4:00:00:01, so the switch doesn't see the virtual mac-address at this point and records the routers mac-address in it's mac table and not the virtual mac-address.
0
 

Author Comment

by:tpat
ID: 33612490
So the trace shows the ARP reply has the Source Mac address of the physical interface of the router, and the ARP payload has the source mac adress  as the virtual mac address. Am i right?
0
 
LVL 24

Expert Comment

by:rfc1180
ID: 33612511
>Am i right?
correct, no different that what was discussed prior
0
 
LVL 17

Expert Comment

by:rochey2009
ID: 33616501
your correct.
0
 

Author Closing Comment

by:tpat
ID: 33738594
Understood it!
0

Featured Post

WEBINAR - Latest Cyber Tips for Defense

Join the WatchGuard Threat Research Team on October 26th for an informative webinar featuring expert tips and tricks for defending your organization from today's latest cyber threats. Don't leave yourself vulnerable to attack. Register for the webinar today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As dyndns has reduced the capabilities of the free service, I looked around for other free providers of Dynamic DNS service. After testing several I decided to move my DNS hosting to Hurricane Electric as then domains that require dynamic hostnam…
David Varnum recently wrote up his impressions of PRTG, based on a presentation by my colleague Christian at Tech Field Day at VMworld in Barcelona. Thanks David, for your detailed and honest evaluation!
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
Suggested Courses

598 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question