Technical Tip: Getting error when configure an IP range greater than 256 entries in proxy-arp

anoushiravan · ‎09-28-2023

Description

This article describes how to fix the error when configuring an IP range greater than 256 entries in proxy-arp.

Scope

FortiGate, FortiProxy.

Solution

As per the design, it is not possible to use an IP range greater than 256 IP addresses:

Spoke1 # config system proxy-arp
Spoke1 (proxy-arp) # edit 0
new entry '0' added
Spoke1 (0) # set interface port4
Spoke1 (0) # set ip 10.229.0.1
Spoke1 (0) # set end-ip 10.229.255.253
Spoke1 (0) # show

config system proxy-arp
edit 1
set interface "port4"
set ip 10.28.0.1
set end-ip 10.28.255.253
next
end

Spoke1 (0) # end

The IP range is larger than 256.
Object check operator error, -8, discard the setting.
Command fail. Return code -8.

According to the Max Values, FortiOS can host up to 256 Proxy ARP configurations, Max values (limitation) can be checked via the following document:

Maximum Values Table

Or Max values can be checked via CLI command 'print tablesize', in output search for the following line:

system.proxy-arp: 0 256 0

Relates documents:
Technical Tip: How to use the 'proxy-arp' feature in FortiGate

config system proxy-arp
config system proxy-arp

Technical Tip: Getting error when configure an IP range greater than 256 entries in proxy-arp

You are leaving our website