What is the cause of this entry be non-complete?
I have established a SSTP VPN, and have put on proxy ARP so I can find machines on this device. I have been able to connect to 192.168.88.9 no issue but 192.168.88.10 has not been able to be reached at all. After some snooping I’m believing this is the issue.
I have double checked to make sure the acquired MAC address is the correct MAC of the device with the corresponding IP address.
Any help would be greatly appreciated!
It’s a bit confusing. If you forget about SSTP for a moment, can 192.168.88.10 communicate with router at all? If ARP doesn’t complete, then it shouldn’t. But then what exactly are you checking about “acquired MAC” when there should be none?
Yes all devices can reach 192.168.88.10 off the VPN. The 192.168.88.x is actually my DMZ. I have another firewall behind my Mikrotik device with and IP address of 192.168.1.0 and all devices find the 192.168.88.0 devices fine. It is just the VPN client that can find 192.168.88.9 but not 192.168.88.10
As for the “aquired MAC” when you look at the ARP table under IP, each IP address has an associated MAC address, and everything there is correct. That is what I ment.
It’s still confusing. VPN client itself doesn’t find local devices using ARP, it’s done by router. And it’s exactly the same whether it’s initiated by VPN client that wants to connect to local address, or by router, or by that local address and router is responding to it. So if it would depend solely on ARP (it doesn’t, firewall also has a say about it), then either both router and VPN client could communicate with that local address, or neither could. Also, in ARP table, if it’s just “D” and not “DC”, then the entry doesn’t have any MAC address. Or do you see 192.168.88.10 with just “D” flag, but with correct MAC address? Maybe I don’t understand how exactly is everything connected…