Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 9842 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Unable to clear ARP cache on XG210 w/ 17.0.6

BEC IT Dept

Hi,

Our Sophos box is showing <incomplete> entries in the ARP table and is dropping connections frequently. We're running 17.0.6 (this forum says that 17.0.8 is the latest version but my console shows no new updates).

During our investigation into issues in our network, we came across ARP table issues on the network and it looks like there might be some issues with the Sophos box.

Has anyone experienced the same issue? I've tried:

  • Deleting the entries manually from the GUI
  • Flushing the entries from the GUI
  • Flushing the entries from the command line ( ip -s -s neigh flush all )

When I flush the GUI, the entries disappear but return after refreshing the page. When I flush via the command line, I get success (even after a few rounds) but "arp -a" shows the whole table as it was before the command.

If anyone has any insight on how to flush the box, it would be greatly appreciated.



This thread was automatically locked due to age.
  • 0

    Also having the same issue as noted above, with an XG230, same firmware, same results. 

  • 0

    Hi BEC,

    I tried to recreate this in my local lab and when I flush the arp neighbor cache table from the UI option, I see that XG will immediately do an arp request and ask who-has the MAC address. 

    02:31:54.019398 PortA, OUT: Out 00:50:56:3f:10:90 ethertype ARP (0x0806), length 44: Request who-has 192.168.90.2 tell 192.168.90.1, length 28
    02:31:54.019696 PortA, IN: In 00:0c:29:62:09:a8 ethertype ARP (0x0806), length 62: Reply 192.168.90.2 is-at 00:0c:29:62:09:a8, length 46
    02:31:54.092134 PortB, OUT: Out 00:0c:29:18:53:95 ethertype ARP (0x0806), length 44: Request who-has 192.168.92.2 tell 192.168.92.133, length 28
    02:31:54.092401 PortB, IN: In 00:50:56:eb:bb:5e ethertype ARP (0x0806), length 62: Reply 192.168.92.2 is-at 00:50:56:eb:bb:5e, length 46
    02:32:00.363757 PortA, OUT: Out 00:50:56:3f:10:90 ethertype ARP (0x0806), length 44: Request who-has 192.168.90.23 tell 192.168.90.1, length 28
    02:32:01.363391 PortA, OUT: Out 00:50:56:3f:10:90 ethertype ARP (0x0806), length 44: Request who-has 192.168.90.23 tell 192.168.90.1, length 28
    02:32:02.363379 PortA, OUT: Out 00:50:56:3f:10:90 ethertype ARP (0x0806), length 44: Request who-has 192.168.90.23 tell 192.168.90.1, length 28

    Here, 192.168.90.2 is my directly connected system and 192.168.90.23 is my AD server IP defined in the AD Server configurations on the XG.

    Thanks,

  • 0

    Did you manage to solve this issue? I am having the exact same problem.