How to get router to respond to ARP requests from switch so i can manage it

I have a web managed switch on my network. It is connected to a router, along with the host PC i am on. I cannot ping it through the router. Router is Fedora server. the router's applicable interfaces are: enp3s0 wan interface enp4s0 with static IP 192.168.2.2/24 enp6s0 with static IP 10.2.4.1/24 routing table on the router has applicable entries: Destination Gateway Genmask Flags Metric Ref Use Iface 0.0.0.0 192.168.2.2 0.0.0.0 UG 100 0 0 enp4s0 0.0.0.0 10.2.4.1 0.0.0.0 UG 103 0 0 enp6s0 10.2.4.0 0.0.0.0 255.255.255.0 U 103 0 0 enp6s0 192.168.2.0 0.0.0.0 255.255.255.0 U 100 0 0 enp4s0 the hosts are directly attached to these interfaces with these ips: IP MAC attached if switch 192.168.2.1 (static) 60:be:b4:13:28:e1 enp4s0 pc 10.2.4.5 (dhcp) 1c:2a:a3:1e:74:df enp6s0 when i ping from the host pc, i get timeouts. so i ran tcpdump from the router on enp4s0 sudo tcpdump -i enp4s0 -n 16:18:06.345052 IP 10.2.4.5 > 192.168.2.1: ICMP echo request, id 48, seq 430, length 64 16:18:07.334961 ARP, Request who-has 192.168.2.2 tell 192.168.2.2, length 28 16:18:07.369062 IP 10.2.4.5 > 192.168.2.1: ICMP echo request, id 48, seq 431, length 64 16:18:08.361151 ARP, Request who-has 192.168.2.2 tell 192.168.2.2, length 28 16:18:08.393080 IP 10.2.4.5 > 192.168.2.1: ICMP echo request, id 48, seq 432, length 64 16:18:09.385150 ARP, Request who-has 192.168.2.2 tell 192.168.2.2, length 28 16:18:09.417072 IP 10.2.4.5 > 192.168.2.1: ICMP echo request, id 48, seq 433, length 64 [ ... ] 16:18:17.609124 IP 10.2.4.5 > 192.168.2.1: ICMP echo request, id 48, seq 441, length 64 16:18:18.601152 ARP, Request who-has 192.168.2.1 tell 192.168.2.2, length 28 16:18:18.601366 ARP, Reply 192.168.2.1 is-at 1c:2a:a3:1e:74:df, length 46 16:18:18.633088 IP 10.2.4.5 > 192.168.2.1: ICMP echo request, id 48, seq 442, length 64 discernible facts: * the packets travel the router's nftables forward chain from enp6s0 to enp4s0 * the switch then asks who has 192.168.2.2, the gateway. it gets no response. * the router later asks who has 192.168.2.1. the switch responds with its mac. * the router's arp table records it. * the switch still does not know who has 192.168.2.2 routers applicable arp entries Address HWtype HWaddress Flags Mask Iface 192.168.2.1 ether 1c:2a:a3:1e:74:df C enp4s0 10.2.4.5 ether 04:7c:16:4d:0a:84 C enp6s0 the switch is not responding to pings, and furthermore, to my web requests to manage it. when i send a web request from the browser, i immediately get a bunch more "Request who-has 192.168.2.2", which reveals that the http request reached the switch and knows to reply to that IP, but it still doesn't know who has that IP. it keeps asking. here is the host pc applicable arp table entries, showing the router responded to the PC's arp request, so why not then to the switch? Address HWtype HWaddress Flags Mask Iface 10.2.4.1 ether 60:be:b4:13:28:e3 C enp12s0 This is the only 192.168. network. all other interfaces start with 10. what would cause the router not to reply to the switch's arp request so i can eventually ping and manage it.