Are Multicast Mac Addresses Supported?

By design the Palo Alto Networks device, does not cache multicast Mac addresses.

If your environment requires such an address, like an instance where a Load Balancer is used in an active/active setup, you will need to configure a static arp entry on the firewall.

Steps to configure a static arp entry.

  1. Go to the Network tab > Interfaces > Ethernet tab.
  2. Click on appropriate Interface > click on the Advanced tab > Arp Entries tab.

  3. Click on the add button.
  4. Add the IP and mac address.
  5. Commit the changes.
  6. Verify the mac is there by running the command,  show arp all.

    > show arp all

    maximum of entries supported :      500

    default timeout:                    1800 seconds

    total ARP entries in table :        42

    total ARP entries shown :           42

    status: s - static, c - complete, e - expiring, i - incomplete

    interface           ip address        hw address              port     statuss   ttl


    ethernet1/1      07:00:5e:00:00:1c ethernet1/1    s      N/A

