AnsweredAssumed Answered

Proxy Arp's for subnet not on firewall

Question asked by Juan Concepcion on Sep 10, 2017
Latest reply on Sep 12, 2017 by Norbert Bohusch

I have run into this several times where I create proxy arp(s) on external interface of the firewall for a distinct subnet so for example:


Firewall interface


add arp proxy ipv4-address interface eth1 real-ipv4-address


the firewall does not respond for the proxy arp(s) but rather routes it back to it's default gateway.  It's not until I add in a static route with reads:


add static-route nexthop gateway logical eth1


that it will start responding for the arps.  Is this expected behavior??