arpresolve: can't allocate llinfo for 192.168.100.1

HG

@chpalmer My experience with the Technicolor TC4400 SR70.12.33-180327 is that I can only access the management interface with the NAT and Virtual IP while it is connected to the ISP. It works without the NAT rule if there is no ISP connection. The Virtual IP was always needed, because the WAN interface gets it IP address via DHCP so it has no IP address at all without the connection to the ISP. With the connection to the ISP, the WAN interface gets its public IP via DHCP.

mrsunfire

@HG said in arpresolve: can't allocate llinfo for 192.168.100.1:

I don't know which modem you have, but I read in another forum that e.g. there is a TC4400 firmware version that has exactly the bug that is doesn't respond to ARP requests on LAN side after the cable connection is established. Maybe also other modems have this bug. The proposed solution there was to add a static ARP entry for the LAN address of the cable modem. I have the TC4400 but with another firmware without this bug, so unfortunately I cannot tell how to do this with pfSense.

I can confirm this. I have a TC4400 with .33 firmware without this issue, because the modem resets the interface after bootup. With my .41 firmware, I have this bug, because the interface doesn't get shutdown after boot.

How to set a static arp?

@HG said in arpresolve: can't allocate llinfo for 192.168.100.1:

@chpalmer My experience with the Technicolor TC4400 SR70.12.33-180327 is that I can only access the management interface with the NAT and Virtual IP while it is connected to the ISP. It works without the NAT rule if there is no ISP connection. The Virtual IP was always needed, because the WAN interface gets it IP address via DHCP so it has no IP address at all without the connection to the ISP. With the connection to the ISP, the WAN interface gets its public IP via DHCP.

In my case I don't need a virtual IP adress to access the TC4400 (with or without public IP). If it's not connected to the ISP, starts to deliver a 192.168.100.10 IP by DHCP. After this happened and the pubic IP returned, then this error shows up. If I disable to get a private IP from the modem I don't get this error but also I can't connect the WebGUI of the modem without a connection to ISP.

chpalmer

@HG said in arpresolve: can't allocate llinfo for 192.168.100.1:

My experience with the Technicolor TC4400 SR70.12.33-180327 is that I can only access the management interface with the NAT and Virtual IP while it is connected to the ISP.

That is a limitation of that particular modem model.

HG

@mrsunfire said in arpresolve: can't allocate llinfo for 192.168.100.1:

How to set a static arp?

Unfortunately, I don't know how to do it permanently, and I have no real experience with it, but you could try first manually by executing "arp -S 192.168.100.1 xx:xx:xx:xx:xx:xx" (replace xx:xx:xx:xx:xx:xx with the modem's MAC address) on the command line to see if it really helps.

mrsunfire

On DHCP server site I can configure static arp but on client site I don't think so. Maybe by command. I will give it a try next week and will update you guys. Thanks so far.

HG

@mrsunfire said in arpresolve: can't allocate llinfo for 192.168.100.1:

If it's not connected to the ISP, starts to deliver a 192.168.100.10 IP by DHCP.

Maybe I remembered incorrectly and that was probably also the case in my setup and I added the virtual IP together with the NAT.

stephenw10

Did any of you try adding a VIP on the WAN in the modem mgmt subnet?

mrsunfire

What do you mean by this? I now added a Virtual IP for WAN (192.168.100.2) and will see if this helps. Before that I didn't have any VIP or NAT only a outbound firewall rule on LAN.

stephenw10

If pfSense has a an interface in that subnet marked as local in the routing table it should be able to add ARP entries for things inside it removing the issue.
You might need to add an outbound NAT rule after doing that though since pfSense will just route to it as a local subnet and the modem will have no rout5e back.

Steve

monofox

I can confirm, that adding VIP to WAN with /32 mask and adding outbound NAT gives proper access to maintenance screen of TC4400. I cross checked through web ui as well as ssh, that its working without adding static arp (there is actually no arp entry). I'd originally defined the VIP in /24 subnet on WAN interface. In that case obviously i needed a static arp entry. But with /32 its not required.

war6000

@stephenw10 said in arpresolve: can't allocate llinfo for 192.168.100.1:

Did any of you try adding a VIP on the WAN in the modem mgmt subnet?

This worked for me. Thank you @stephenw10

johnpoz

@war6000 while that would most likely stop the logs you were seeing. It would prob be a more logical to set your ip to say 192.168.100.2/24 and then if you want to talk to 192.168.100.1 to access say your modems status page you would be coming from 192.168.100.2 vs your public IP on that interface hoping the modem answers, etc.