Cisco Catalyst 4500 Series - Configuration Command

To Next Page

To Previous Page

58-13

Catalyst 4500 Series Switch, Cisco IOS Software Configuration Guide - Cisco IOS XE 3.9.xE and IOS 15.2(5)Ex

Chapter 58 Configuring Dynamic ARP Inspection

Configuring Dynamic ARP Inspection

To remove the ARP ACL, use the no arp access-list global configuration command. To remove the ARP

ACL attached to a VLAN, use the no ip arp inspection filter arp-acl-name vlan vlan-range global

configuration command.

This example shows how to configure an ARP ACL called host2 on Switch A, to permit ARP packets

from HostB (IP address 170.1.1.2 and MAC address 2.2.2), to apply the ACL to VLAN 100, and to

configure port 1 on Switch A as untrusted:

SwitchA# configure terminal

Enter configuration commands, one per line. End with CNTL/Z.

SwitchA(config)# arp access-list hostB

SwitchA(config-arp-nacl)# permit ip host 170.1.1.2 mac host 2.2.2 log

SwitchA(config-arp-nacl)# exit

SwitchA(config)# ip arp inspection filter hostB vlan 100 static

SwitchA(config)# interface g3/48

SwitchA(config-if)# no ip arp inspection trust

SwitchA(config-if)# end

SwitchA# show arp access-list hostB

ARP access list hostB

permit ip host 170.1.1.2 mac host 0002.0002.0002 log

SwitchA# show ip arp inspection interfaces

Interface Trust State Rate (pps) Burst Interval

--------------- ----------- ---------- --------------

Gi1/1 Untrusted 15 1

Gi1/2 Untrusted 15 1

Gi3/1 Untrusted 15 1

Gi3/2 Untrusted 15 1

Gi3/3 Untrusted 15 1

Gi3/4 Untrusted 15 1

Gi3/5 Untrusted 15 1

Gi3/6 Untrusted 15 1

Gi3/7 Untrusted 15 1

Gi3/8 Untrusted 15 1

Gi3/9 Untrusted 15 1

Gi3/10 Untrusted 15 1

Gi3/11 Untrusted 15 1

Gi3/12 Untrusted 15 1

Gi3/13 Untrusted 15 1

Gi3/14 Untrusted 15 1

Gi3/15 Untrusted 15 1

Gi3/16 Untrusted 15 1

Gi3/17 Untrusted 15 1

Gi3/18 Untrusted 15 1

Gi3/19 Untrusted 15 1

Gi3/20 Untrusted 15 1

Gi3/21 Untrusted 15 1

Gi3/22 Untrusted 15 1

Gi3/23 Untrusted 15 1

Gi3/24 Untrusted 15 1

Gi3/25 Untrusted 15 1

Gi3/26 Untrusted 15 1

Gi3/27 Untrusted 15 1

Gi3/28 Untrusted 15 1

Gi3/29 Untrusted 15 1

Gi3/30 Untrusted 15 1

Gi3/31 Untrusted 15 1

Gi3/32 Untrusted 15 1

Gi3/33 Untrusted 15 1

Gi3/34 Untrusted 15 1

Main Page

Cisco Catalyst 4500 Series - Configuration Command

Table of Contents

Other manuals for Cisco Catalyst 4500 Series

Related product manuals