Verifying Proxy ARP and ARP Suppression for the Edge-Routed Bridging Overlay
Verifying Proxy ARP and ARP Suppression for the Edge-Routed Bridging Overlay
Proxy ARP and ARP suppression are enabled by default on all QFX Series switches that can act as leaf devices in an edge-routed bridging overlay. (For a list of these switches, see Data Center Fabric Reference Design Supported Hardware Summary.) As a result, there is no configuration needed to enable these features.
In Junos OS releases before Release 19.1R1, you could turn off proxy ARP and ARP suppression on EX Series and QFX Series switches using the no-arp-suppression configuration statement. That statement is no longer supported starting in Junos OS Release 19.1R1, so proxy ARP and ARP suppression is always enabled.
To verify proxy ARP is working on supported devices and ARP suppression prevents other leaf devices from seeing the ARP requests, perform the following:
- Select a remote end system entry to verify that proxy
ARP is enabled on a supported leaf device. In this example, Leaf 10
is a QFX10002 switch.
user@leaf-10> show arp no-resolve expiration-time | match 10.1.4.20102:0c:10:04:02:01 10.1.4.201 irb.500 [.local..9] none 1157
- Verify that the entry was learned from a remote leaf device.
In this case, the ARP entry was learned from Leaf 4 and 5.
user@leaf-10> show evpn database mac-address 02:0c:10:04:02:01 extensiveInstance: default-switch VN Identifier: 50000, MAC address:: 02:0c:10:04:02:01 Source: 00:00:00:00:00:00:51:10:00:01, Rank: 1, Status: Active Remote origin: 192.168.1.4 # Leaf 4 Remote origin: 192.168.1.5 # Leaf 5 Timestamp: Sep 11 00:37:32 (0x59b63d3c) State: <Remote-To-Local-Adv-Done> IP address: 10.1.4.201 Remote origin: 192.168.1.4 Remote origin: 192.168.1.5 IP address: 2001:db8::10:1:4:201 Flags: <Proxy> Remote origin: 192.168.1.4 Remote origin: 192.168.1.5 History db: Time Event Sep 11 00:37:33 2017 Active ESI unchanged (00:00:00:00:00:00:51:10:00:01) Sep 11 00:37:33 2017 Updating output state (change flags 0x0) Sep 11 00:37:33 2017 Advertisement route cannot be created (no local state present) Sep 11 00:37:33 2017 Updating output state (change flags 0x0) Sep 11 00:37:33 2017 Advertisement route cannot be created (no local source present) Sep 11 00:37:33 2017 IP host route cannot be created (No remote host route for non-MPLS instance) Sep 11 00:37:33 2017 Updating output state (change flags 0x4000 <IP-Peer-Added>) Sep 11 00:37:33 2017 Creating MAC+IP advertisement route for proxy Sep 11 00:37:33 2017 IP host route cannot be created (No remote host route for non-MPLS instance) Sep 11 00:37:33 2017 Clearing change flags <IP-Peer-Added> - Send an ARP Request and verify that the ARP reply is generated.
user@leaf-10> monitor traffic interface irb no-resolveverbose output suppressed, use <detail> or <extensive> for full protocol decode Address resolution is OFF. Listening on irb, capture size 96 bytes 00:43:01.881508 In arp who-has 10.1.4.201 tell 10.1.4.202 00:43:01.881569 Out arp reply 10.1.4.201 is-at 02:0c:10:04:02:01 00:43:02.081404 In arp who-has 10.1.4.201 tell 10.1.4.202 ## The next entry is the MAC address from the operational mode command issued in Step 2. 00:43:02.081466 Out arp reply 10.1.4.201 is-at 02:0c:10:04:02:01
- Verify that ARP is suppressed in the remote leaf device.
Note: There is no ARP request connecting Leaf 4 to any other leaf
in the segment.
user@leaf-4> monitor traffic interface irb no-resolveverbose output suppressed, use <detail> or <extensive> for full protocol decode Address resolution is OFF. Listening on irb, capture size 96 bytes ^C 0 packets received by filter 0 packets dropped by kernel
Proxy ARP and ARP Suppression for an Edge-Routed Bridging Overlay — Release History
Table 1 provides a history of all of the features in this section and their support within this reference design.
Table 1: Proxy ARP and ARP Suppression in an Edge-Routed Bridging Overlay Release History
Release | Description |
|---|---|
19.1R2 | QFX10002-60C and QFX5120-32C switches running Junos OS Release 19.1R2 and later releases in the same release train also support all features documented in this section. |
19.1R1 | The no-arp-suppression statement is deprecated starting in Junos OS Release 19.1R1. You can no longer turn off proxy ARP and ARP suppression. |
18.4R2 | QFX5120-48Y switches running Junos OS Release 18.4R2 and later releases in the same release train support all features documented in this section. |
18.1R3-S3 | All devices in the reference design that support Junos OS Release 18.1R3-S3 and later releases in the same release train also support all features documented in this section. |