[pfSense] Avoiding kernel messages about MAC changes

Vincent Hoffman vince at unsane.co.uk
Sat Nov 5 06:26:36 EDT 2011 

On 05/11/2011 10:14, bsd wrote:
> Hi,
>
> Just for my info, is there a way to avoid these message about arp changes ? 
> They are due to WAN interfaces (WAN / OPT) beeing bridged together
>
> WAN <--> OPT 
>   BRI_WAN
>
>
> myname.abc.biz kernel log messages:
> +++ /tmp/security.UyYMRtdm	2011-11-05 03:01:05.000000000 +0100
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:74 to 00:0b:ab:16:83:75 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:74 to 00:0b:ab:16:83:75 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:74 to 00:0b:ab:16:83:75 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
> +arp: 1.2.3.4 moved from 00:0b:ab:16:83:75 to 00:0b:ab:16:83:74 on igb0
For FreeBSD its these two sysctls you need to adjust.

net.link.ether.inet.log_arp_movements: log arp replies from MACs
different than the one in the cache
net.link.ether.inet.log_arp_wrong_iface: log arp packets arriving on the
wrong interface

I'd need to log into a pfsense box to see where you change this in the
web interface but i'm pretty sure you can.


Vince



>
> Thanks. 
>
> ––––––––––––––––––––––––––––––––––––––––––––––
> ---------> Grégory Bernard Director <---------
> ---------------> www.osnet.eu <---------------
> --> Your provider of OpenSource appliances <--
> ––––––––––––––––––––––––––––––––––––––––––––––
> OSnetOSnetOSnetOSnetOSnetOSnetOSnetOSnetOSnetO
>
> _______________________________________________
> List mailing list
> List at lists.pfsense.org
> http://lists.pfsense.org/mailman/listinfo/list

More information about the List mailing list