in

IEOC - Internetwork Expert's Online Community

Welcome to Internetwork Expert's Online Community - IEOC - a place for CCIE and CCENT candidates to connect, share, and learn. Our Online Community features CCIE forums and discussions for all tracks including Routing & Switching, Voice, Security, Service Provider, and Storage. Through these online communities you can discuss your questions with thousands of your peers, hundreds of CCIE's and Internetwork Expert's own team of world renowned CCIE instructors and authors, Brian Dennis - Quintuple CCIE #2210, Scott Morris - Quad CCIE #4713, Brian McGahan – Triple CCIE #8593, Petr Lapukhov - Quad CCIE #16379, Anthony Sequeira - CCIE #15626, Keith Barker - Dual CCIE #6783, and Marvin Greenlee - Triple CCIE #12237.
Forums » CCIE Forums » CCIE Service Provider Technical » Should I turn off proxy-arp and redirect on serial port??
Latest post 04-23-2009 8:42 AM by oscar reutual. 2 replies.
Page 1 of 1 (3 items)
Sort Posts: Previous Next

  • 04-23-2009 6:47 AM

    Should I turn off proxy-arp and redirect on serial port??

    Reply Contact

    As title,someone advise me do that!

    and in my works, i do like that a long time,

    but now ,i am wonder ,really shoud i do like that ? Turn off both on serial port?

    proxy-arp is working for ethernet,so why serial port need to shut it for security ?

    if turn on proxy-arp, what will happen??

     

    Someone can explain for me?

    thanks lots!

    regards!

     
    • Post Points: 20

  • 04-23-2009 7:18 AM In reply to

    • Seba
    • Top 25 Contributor
    • Joined on 07-17-2008
    • Ireland
    • Expert
    • Points 3,680

    Re: Should I turn off proxy-arp and redirect on serial port??

    Reply Contact

    If it is lab related question, I would strongly recommend to do only what you are asked to do in lab tasks. End of the story.

    In real life, I personally use KISS principle (at least I try), so configure only features which are required in your scenario.

    It is true that some security recommendations say turn off particular global and interface level services. Potential impact on the network if you keep features A or B enabled really depends on scenario.

    Give us scenario and we will try to analyze it.

    Cheers,

    Seba

     

    Sebastian Pasternacki

    CCIE #17541 RS/Sec/SP
    • Post Points: 20

  • 04-23-2009 8:42 AM In reply to

    Re: Should I turn off proxy-arp and redirect on serial port??

    Reply Contact

    Thank seba !

    I face ccie isp lab test in few days.

    In the past years ,in my working life, i shut ip proxy-arp and ip redirect for all interface ,ethernet,serial,even loopback,

    although i know some of these is no necessary ! But who care about ? for example,shut proxy-arp 

    under serial port, is equel to turn on this feature,because proxy-arp is not related to serial link, shut or no shut does

    nothing .

    But in lab test,i really dont know if i should  shut it !

    My consideration,shut these all under all port is simple & stupid , but effective ,because after that,i dont need to check relate problem again.

    But on the other side , a man shut proxy-arp under serial port,may present that man dont really understand proxy-arp feature. And this may

    cause me lost points. How can i do now?   

    Who can help me  out  ?

    Thank lots!

    Regards !

     
    • Post Points: 5
Page 1 of 1 (3 items)
IEOC CCIE Forums Internetwork Expert CCIE Training
About IEOC | Terms of Use | RSS | Privacy Policy
© 2009 Internetwork Expert, Inc. All Rights Reserved