Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

ISP connecting going to Switch

AnkitSharma1
Here to help
‎Mar 19 2024 7:32 PM
‎Mar 19 2024 7:32 PM

ISP connecting going to Switch

Since we got one handoff from ISP, Connection is going to switch and then distributing to firewall 1 and 2 however what are these IP's i am seeing when i clicked on switch port which is connected to ISP connection.

 

AnkitSharma1_0-1710901931100.png

 

0 Kudos
Subscribe
7 Replies 7
BlakeRichardson
Kind of a big deal
Kind of a big deal
‎Mar 19 2024 7:42 PM
‎Mar 19 2024 7:42 PM

Given they are all showing the same MAC I'd say the switch is reporting on devices upstream. Is the a screenshot of the port that is connected to the ISP or one of your downstream firewalls? 

 

Also I wouldn't recommend connecting a switch directly to an ISP like this. 

btr.net.nz
0 Kudos
Subscribe
In response to BlakeRichardson
AnkitSharma1
Here to help
‎Mar 19 2024 7:50 PM
‎Mar 19 2024 7:50 PM

AnkitSharma1_0-1710903016997.png

 

0 Kudos
Subscribe
In response to AnkitSharma1
AnkitSharma1
Here to help
‎Mar 19 2024 7:52 PM
‎Mar 19 2024 7:52 PM

Same thing with another ISP on switch 2

0 Kudos
Subscribe
In response to AnkitSharma1
K2_Josh
Building a reputation
‎Mar 20 2024 5:43 AM
‎Mar 20 2024 5:43 AM

In case it helps, it looks like 00:00:5E is VRRP.

 

https://stackoverflow.com/questions/14710389/reserved-mac-addresses-some-are-assigned-anyway

 

So I'm wondering if the port configuration on 46-48 of the MS isn't setup properly and potentially leaking through the MS to the MX LAN ports. I would setup a separate VLAN that is not configured on the MX, and ideally not not part of the trunk ports to the MX.

0 Kudos
Subscribe
KarstenI
Kind of a big deal
Kind of a big deal
‎Mar 20 2024 2:22 AM
‎Mar 20 2024 2:22 AM

What firewall is it? Looks like a Proxy-ARP misconfiguration.

Subscribe
In response to KarstenI
AnkitSharma1
Here to help
‎Mar 20 2024 6:13 AM
‎Mar 20 2024 6:13 AM

We are using MX84

0 Kudos
Subscribe
In response to AnkitSharma1
KarstenI
Kind of a big deal
Kind of a big deal
‎Mar 20 2024 8:10 AM
‎Mar 20 2024 8:10 AM

Hmm, what else has an IP on this VLAN? Do a packet capture on the ISP port and look for ARP packets.

Subscribe
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.