Unable to connect to WAN link



  • Our proxy has recently stopped working. It is unable to find to connect to an upstream Cisco ASA which is the gateway to the internet.

    Currently the network is set up like this:

    Clients - LAN 10.0.5.220 pfSense Proxy WAN 172.16.1.10 - 172.16.1.2 ASA - Internet

    A packet capture reveals that the proxy is trying to arp to find the ASA but it fails.
    12:49:01.594049 ARP, Request who-has 172.16.1.2 tell 172.16.1.10, length 28
    12:49:02.673697 ARP, Request who-has 172.16.1.2 tell 172.16.1.10, length 28
    12:49:03.233464 ARP, Request who-has 172.16.1.2 tell 172.16.1.10, length 28
    12:49:04.692995 ARP, Request who-has 172.16.1.2 tell 172.16.1.10, length 28

    If I connect a laptop directly to the ASA and give it the 172.16.1.10 address it can connect to the internet but and if I connect the laptop to the Proxy server and give it the WAN link address it arps and populates the arp table correctly. So it seems both devices work fine until they are connect to eachother.

    Does anyone have any idea why this would be occurring?


  • Rebel Alliance Developer Netgate

    Are they connected directly back-to-back or through a switch? It could be a duplex mismatch, a bad cable, who knows. If it can't get an ARP response, that's at layer 2 or lower (switch, physical connections, etc)