DELL OS10 S5248F-ON /32 route not working when destination is in ARP table

Hi, just an idea, if the static route and the management route have the same prefix, you might have to set up the management VRF to communicate properly. You can use these commands to set up the management VRF. 

OS10(config)# ip vrf mgmt
OS10(config-vrf-mgmt)# rd 1:1
OS10(config-vrf-mgmt)# interface mgmt 1/1/1
OS10(config-if-ma-1/1/1)# vrf forwarding mgmt
OS10(config-if-ma-1/1/1)# ip address
OS10(config-if-ma-1/1/1)# no shutdown
OS10(config-if-ma-1/1/1)# exit
OS10(config-vrf-mgmt)# ip route https://dell.to/3XNyGYh

Or I encountered this article  https://dell.to/3XNyHeN, you can follow the steps from OS10 How to Configure Out Of Band Management to set up Out Of Band (OOB) management access to the network device. You can use these commands to give an IP address and set up the management route:

OS10(config)# interface mgmt 1/1/1
OS10(conf-if-ma-1/1/1)# ip address
OS10(conf-if-ma-1/1/1)# no shutdown
OS10(conf-if-ma-1/1/1)# exit
OS10(config)# management route

Hi

My problem is not VRF but the problem is if IP is in the ARP table. Traffic will not forward to the destination in the routing table. but will be forwarded directly to MAC destinated in the ARP table.

In my case, I want the firewall to check ingress traffic by announcing route /32 to switch and then the firewall will forward traffic to destinated host in the same VLAN.

Thank you

Hello pureewatk,

I think it may be doing what it is supposed to do. Use ARP before routing. Ideally the firewall is between the switch and the end device not connected separately and trying to force traffic to route through the firewall.

Have you tried updating to OS 10.5.5?

Hi

We have not tried to update OS 10.5.5.

I want to share this behavior is not occur on OS9 and Cisco N7K.

Or this is default behaviour for OS10 ?

Thank you

Hello, the firmware you are using is not recommended. Please bring it up to 10.5.5.3.
https://dell.to/3POcZp8