Recurring ARP Request to Switch interface

Post your questions about SoftEther VPN software here. Please answer questions if you can afford.
Post Reply
augur
Posts: 12
Joined: Tue Jun 04, 2019 6:09 am

Recurring ARP Request to Switch interface

Post by augur » Tue Jun 18, 2019 8:57 am

Hi,

I build up a LAN2LAN connection as described with a switch which works fine. The branch switch IP is 192.168.177.6 and it get recurring ARP request from an unknown source to the switch IP. I cannot identify it but it seems related to Softether because the real LAN port the MAC is connected to is the same as the branch VPN server. Does anybody know if this is common?


2019-06-18,10:31:16.911,SID-NETGEAR1-15,SID-L3-LAN2LAN SWITCH-2,00AE2B623DA2,5EA3A61123E4,0x0806,42,ARPv4,Request,-,-,-,-,-,-,Who has 192.168.177.6? Please Tell 00AE2B623DA2(172.31.44.99),-,xx.xx.xx.xx,-
2019-06-18,10:31:16.911,SID-L3-LAN2LAN SWITCH-2,SID-NETGEAR1-15,5EA3A61123E4,00AE2B623DA2,0x0806,42,ARPv4,Response,-,-,-,-,-,-,5EA3A61123E4 has 192.168.177.6,-,-,xx.xx.xx.xx
2019-06-18,10:31:19.742,SID-L3-LAN2LAN SWITCH-2,-,5EA3A61123E4,FFFFFFFFFFFF,0x0800,85,UDPv4,-,192.168.177.6,echo(7),192.168.177.255,echo(7),-,-,-,-,-,-

18-06-_2019_10-48-46.png
Cheers,
Nils
You do not have the required permissions to view the files attached to this post.

augur
Posts: 12
Joined: Tue Jun 04, 2019 6:09 am

Re: Recurring ARP Request to Switch interface

Post by augur » Tue Jun 18, 2019 9:29 am

I found an option "NoAddressPollingIPv4 which solved this. :-) As I do not filter IPv4 packages as I understood I can use this whichout any problems. It works really fine...as my server does send ARP every 1-2 seconds is there perhaps an option to increase the time between the keep alives send? Enable this in every virtual Hub reduced the network traffic much. Before it was at least 1 Gb a month.

Actually it seems that the virtual switch is sending ARPs only which is much better than every interface. Is this still normal or could be disabled somehow?

2019-06-18,11:37:21.714,SID-L3-LAN2LAN SWITCH-17,-,5EA3A61123E4,FFFFFFFFFFFF,0x0800,85,UDPv4,-,192.168.177.6,echo(7),192.168.177.255,echo(7),-,-,-,-,-,-
2019-06-18,11:37:21.714,SID-L3-LAN2LAN SWITCH-17,-,5EA3A61123E4,FFFFFFFFFFFF,0x0806,42,ARPv4,Response,-,-,-,-,-,-,5EA3A61123E4 has 192.168.177.6,-,-,-

Cheers
Nils

cedar
Site Admin
Posts: 2070
Joined: Sat Mar 09, 2013 5:37 am

Re: Recurring ARP Request to Switch interface

Post by cedar » Tue Jul 09, 2019 5:31 am

You can change the feeling of polling by changing the source code.
But I think it is better to stop ARP polling if you do not need IP based restrictions or logging.

coolname
Posts: 19
Joined: Mon Jun 10, 2019 7:17 am

Re: Recurring ARP Request to Switch interface

Post by coolname » Thu Apr 02, 2020 5:57 pm

I turned on NoArpPolling on a cluster but found it only works in reducing the ARP traffic for a while < 2 hours, and then the issue comes back. Is there any way to effectively reduce the ARP traffic once and for all? I noticed that NoAddressPollingIPv4 is already set to 1 on the cluster controller, and increasing HUB_ARP_SEND_INTERVAL doesn't seem to work either. I'm assuming there is no need to tweak the member server as the virtual hub on the member server is a copy from the controller. Is this correct?

coolname
Posts: 19
Joined: Mon Jun 10, 2019 7:17 am

Re: Recurring ARP Request to Switch interface

Post by coolname » Fri Apr 03, 2020 5:39 am

I stand correct. My issue is different. It's with server broadcasting data packets.


How to have softether cluster servers unicast data packets instead of broadcasting to all connected clients?

* I’ve tried the following setting:
* Deny Non-ARP/ DHCP broadcasts policy - this looks like the most promising one, but unfortunately after it's enabled on the controller server, the clients loses internet after VPN connection.
* Are there any softether settings I can use to make softether server work this way?
* Are there any work arounds such as network tweaks that might help me achieve this goal?
* In case the service code has to be modified for this to work, which softether program/functions I should look into to hopefully be able to tweak the server behavior?

Post Reply