The difference between Proxy ARP and local proxy ARP is around the network to which the host belongs for which the device proxies.
If the source and destination are on different networks, enable proxy-arp on the L3 switch to enable it to proxy on behalf of the destination.
If the source and destination are on the same network, enable local-proxy-arp on the L3 switch to enable it to proxy on behalf of the destination.
Proxy-arp use case is when you have multiple VLAN/SVI configured on the switch, say SVI10=192.168.1.1/24, SVI20-192.168.2.1/24
and all servers NICs are configured within the single IP space 192.168.0.0/16.
When serverA 192.168.1.10/16 wants to communicate with serverB 192.168.2.10/16, the ARP reply sent to serverA for serverB is actually the switch MAC as proxy-arp would be configured.
This is also useful when server NICs are configured with their own IP as default-GW IP. (gateway-less static IP configuration).
Local-proxy-arp use-case is for micro-segmentation where, in combination with private-VLAN, all L2 traffic must be inspected on the proxy-device (typically CX 10000).
Original Message:
Sent: Nov 23, 2023 08:17 AM
From: tommyd
Subject: VSX and proxy-arp
I had a chance to mess around with the Aruba Fabric Composer and crate a VSX custer using it. It did put ip local-proxy-arp int a vlan interface with an active-gateway enabled. I've compared it with "OS-CX 10.09 VXLAN EVPN Guide" which does not even mention the proxy arp.
What is the purpose of proxy-arp in this context and whet is the difference between ip local-proxy-arp and ip proxy-arp
The "AOS-CX 10.09 IP Services Guide" isn't really helpful here.
------------------------------
-- tommyd
------------------------------