ARP filter


#1

Hi All,

I’m trying to setup a new VyOS for a hosted virtualized server. the VyOS instance is working well, but my Hosting provider is complaining about massive ARP requests from my router (outside interface, facing the Internet).

My Internet interface is what they call an IP Failover that is bridged behind another IP address (two different public IP addresses). I had to configure an IP with a /32 and a specific interface route to get full connectivity to the Internet. Here is an extract of my configuration:

myname@VyOS-1:~$ show configuration
interfaces {
ethernet eth1 {
address 172.20.10.254/24
description INSIDE
duplex auto
hw-id 00:0c:29:6b:78:a7
smp_affinity auto
speed auto
}
<…>
ethernet eth3 {
address 5.6.7.8/32
description OUTSIDE
duplex auto
hw-id 00:50:56:XX:XX:XX
smp_affinity auto
speed auto
}
}
<…>
protocols {
static {
interface-route 1.2.3.254/32 {
next-hop-interface eth3 {
}
}
route 0.0.0.0/0 {
next-hop 1.2.3.254 {
}
}
}
}

Do you know if there is any way to block output ARP requests from my VyOS instance?

Thanks a lot

Pierre-Louis


#2

I bet you are referring to OVH. Here is what you need to do:

http://blog.vsense.fr/2013/03/ovh-architecture/


#3

Hey mainecrab, you got it! It is exactly my use case (VyOS on ESXi hosted at OVH)! I followed the instructions on your link and it is all just good (even across reboot)!

Thanks for your answer.

Pierre-Louis