Wired Intelligent Edge

last person joined: 21 hours ago 

Bring performance and reliability to your network with the HPE Aruba Networking Core, Aggregation, and Access layer switches. Discuss the latest features and functionality of your switching devices, and find ways to improve security across your network to bring together a mobile-first solution
Back to discussions
Expand all | Collapse all

duplicate ipv4 in vsf stack

This thread has been viewed 2 times

  • 1.  duplicate ipv4 in vsf stack

    Posted Oct 18, 2019 09:02 AM

    Hi,

     

    i'm preparing a stack replacement.  I created a three member vsf stack using 2930F switches.  For migration purposes, one port is trunked to the old to-be-migrated stack.

     

    All works well, except one thing...  I'm getting duplicate ipv4 entries in the logs :

     

    W 10/18/19 13:12:34 02581 ip: ST1-CMDR: IPv4: Duplicate IPv4 address
    172.30.254.26 is detected on port 1/48 in VLAN 1254 with a MAC
    address of 001c7f-626d88

     

    The strange thing is ... i'm sure there is no duplicate ipv4. 

    When mirroring a port and having a look with wireshark i see (gw is here a Checkpoint fw 172.30.254.254) :

     

    Checkpoint -> Aruba arp who has 172.30.254.26, tell 172.30.254.254

    Aruba -> Checkpoint arp 172.30.254.26 is at 38:21:c7:b2:7c:8a

    Checkpoint -> Aruba arp 172.30.254.26 is at 38:21:c7:b2:7c:8a

     

    After that i immediately see a syslog packet announcing the duplicate ipv4 address.

     

    As we see, the mac address which is supposed to have the duplicate ip is the Checkpoint fw.  Which is actually responding that the ip belongs to another mac address?

     

    VSF-DMZ# show arp

    IP ARP table

    IP Address MAC Address Type Port
    --------------- ----------------- ------- ----
    172.30.254.254 00:1c:7f:62:6d:88 dynamic 1/48

     


    #2930F


  • 2.  RE: duplicate ipv4 in vsf stack

    MVP GURU
    Posted Oct 21, 2019 09:38 AM

    There is no virtual IP address on your firewall ?



  • 3.  RE: duplicate ipv4 in vsf stack

    Posted Oct 22, 2019 04:26 AM

    There is a virtual ip, but it's not 172.30.254.26.



  • 4.  RE: duplicate ipv4 in vsf stack

    Posted Oct 23, 2019 08:25 AM

    Did you configure ip arp probing on your aruba switch?



  • 5.  RE: duplicate ipv4 in vsf stack

    Posted Oct 23, 2019 11:14 AM

    No, actually it's a very basic setup...

     

    ; JL260A Configuration Editor; Created on release #WC.16.10.0001
    ; Ver #14:27.6f.f8.1d.9b.3f.bf.bb.ef.7c.59.fc.6b.fb.9f.fc.ff.ff.37.ef:04
    hostname "Aruba-2930F-48G-4SFP"
    module 1 type jl260a
    ip default-gateway 172.30.254.254
    snmp-server community "public" unrestricted
    no lldp run
    vlan 1
       name "DEFAULT_VLAN"
       no untagged 48
       untagged 1-47,49-52
       no ip address
       disable layer3
       exit
    vlan 1254
       name "VLAN1254"
       untagged 48
       ip address 172.30.254.26 255.255.255.0
       exit
    primary-vlan 1254
    activate software-update disable
    activate provision disable