1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
|
Network Working Group G. Malkin
Request For Comments: 1868 Xylogics, Inc.
Category: Experimental November 1995
ARP Extension - UNARP
Status of this Memo
This memo defines an Experimental Protocol for the Internet
community. This memo does not specify an Internet standard of any
kind. Discussion and suggestions for improvement are requested.
Distribution of this memo is unlimited.
Abstract
The Address Resolution Protocol allows an IP node to determine the
hardware (datalink) address of a neighboring node on a broadcast
network. The protocol depends on timers to age away old ARP entries.
This document specifies a trivial modification to the ARP mechanism,
not the packet format, which allows a node to announce that it is
leaving the network and that all other nodes should modify their ARP
tables accordingly.
Acknowledgements
Thanks to James Carlson/Xylogics for reviewing this document and
proposing the backwards compatibility mechanism.
1. Introduction
The primary purpose of the Address Resolution Protocol, as defined in
[1], is to determine a node's hardware address based on its network
address (protocol address in ARPspeak). The ARP protocol
specifically states that nodes should not periodically advertise
their existence for two reasons: first, this would generate a lot of
network traffic and table maintenance overhead; second, it is highly
unlikely that all nodes will need to communicate to all other nodes.
Since a node does not advertise its existence, neither does it
advertise its imminent departure. This is not a serious problem
since most ARP implementations maintain timers to age away old
entries, and departing nodes seldom depart gracefully in any case.
Over time, an additional use has been found for ARP: Proxy ARP.
While there are those who believe Proxy ARP is an evil thing, it does
serve a purpose; that is, it allows for communication in ways never
considered in the original IP architecture. For example, allows
dial-in hosts to connect to a network without consuming a large
Malkin Experimental [Page 1]
^L
RFC 1868 UNARP November 1995
amount of the IP address space (i.e., all of the hosts contain
addresses on the same subnet, even though they are not directly
attached to the physical network associated with that subnet address.
It is this use of Proxy ARP which produces the problem addressed by
this document.
2. The Problem
Consider the following topology:
+--------+
| Host A |
+--------+
|
======================================== LAN
| |
+--------+ +--------+
| CS1 | comm. servers | CS2 |
+--------+ +--------+
| | | |
+-+ +-+ +-+ +-+
| | | | modems | | | |
+-+ +-+ +-+ +-+
Assume that all of the modems are on the same rotary; that is, when a
remote host dials in, it may be assigned a modem on either of the
communication servers. Further assume that all of the remote hosts'
IP addresses have the same subnet address as the servers and Host A,
this in order to conserve address space.
To begin, a remote host dials into CS1 and attempts to communicate
with Host A. Host A will assume, based on the subnet mask, that the
remote host is actually attached to the LAN and will issue an ARP
Request to determine its hardware address. Naturally, the remote
host will not hear this request. CS1, knowing this, will respond in
the remote host's place with its own hardware address. Host A, on
receiving the ARP Reply, will then communicate with the remote host,
transparently through CS1. So far everything is just fine.
Now, the remote host disconnects and, before Host A can age its ARP
cache, reconnects through CS2. Herein lies the problem. Whenever
Host A attempts to send a packet to the remote host, it will send it
to CS1 because it cannot know that its ARP cache entry is invalid.
If, when the remote host disconnects, the server to which it was
attached could inform other nodes on the LAN that the protocol
address/hardware address mapping was no longer valid, the problem
would not occur.
Malkin Experimental [Page 2]
^L
RFC 1868 UNARP November 1995
3. The Solution
When a server, as described above, disconnects from a remote host for
which it has responded to a Proxy ARP, it broadcasts an UNARP. An
UNARP is an unsolicited ARP Reply with the following field values:
Hardware Address Space as appropriate
Protocol Address Space 0x800 (IP)
Hardware Address Length 0 (see Backwards Compatibility)
Protocol Address Length 4 (length of an IP address)
Opcode 2 (Reply)
Source Hardware Address Not Included
Source Protocol Address IP address of detaching host
Target Hardware Address Not Included
Target Protocol Address 255.255.255.255 (IP broadcast)
NOTE: this is a 16-byte packet (not including MAC header)
On receiving an UNARP, a node deletes the ARP cache entry associated
with the IP address.
It is not strictly necessary that a server keep state information
about whether or not it has actually sent a Proxy ARP Reply; it would
be sufficient if a server always sends an UNARP when a remote host
disconnects.
Of course, there is no reason why a host which gracefully detaches
from a LAN cannot also send an UNARP for itself. This would be
especially useful if, upon re-attaching, it might have a different
hardware address.
4. Backwards Compatibility
The modifications to support UNARP are trivial, so there is every
expectation that it will be widely supported. Of course, there will
be a period of time during which nodes which support UNARP will
coexist with nodes which do not support UNARP. To prevent
unenlightened nodes from adding spurious ARP cache entries with
hardware addresses of zero, UNARP packets specify a hardware address
length of zero. This should be rejected by nodes which do not
support UNARP. As a consequence of this, the source and target
hardware address fields do not exist in UNARP packets (as previously
described).
It is recommended that implementors include a configuration switch to
disable UNARP in the event that some vendor's ARP implementation
might take offense at the abbreviated UNARP packet format.
Malkin Experimental [Page 3]
^L
RFC 1868 UNARP November 1995
5. Security Considerations
Security issues are not discussed in this memo.
References
[1] Plummer, D., "An Ethernet Address Resolution Protocol", STD 37,
RFC 826, MIT, November 1982.
Author's Address
Gary Scott Malkin
Xylogics, Inc.
53 Third Avenue
Burlington, MA 01803
Phone: (617) 272-8140
EMail: gmalkin@xylogics.com
Malkin Experimental [Page 4]
^L
|