Name: Cisco Catalyst 4500 Series
Brand: Cisco
Rating: 4 (1 reviews)

To Next Page

To Previous Page

53-25

Software Configuration Guide—Release IOS XE 3.6.0E and IOS 15.2(2)E

OL_28731-01

Chapter 53 Configuring DHCP Snooping, IP Source Guard, and IPSG for Static Hosts

Configuring IP Source Guard for Static Hosts

Configuring IPSG for Static Hosts on a Layer 2 Access Port

You can configure IPSG for static hosts on a Layer 2 access port.

To enable IPSG for static hosts with IP filters on a Layer 2 access port, perform this task:

Command Purpose

Step 1

Switch(config)# ip device tracking

Turns on the IP host table.

Step 2

Switch(config)# ip device tracking [probe {count

count | interval interval}]

(Optional) Configures these parameters for the IP device

tracking table:

• count—Number of times that the switch sends the

ARP probe. The range is 1 to 5. The default is 3.

• interval—Number of seconds that the switch waits

for a response before resending the ARP probe. The

range is 30 to 300 seconds. The default is 30

seconds.

Step 3

Switch(config)# ip device tracking [probe {delay

interval}]

(Optional) Configures the optional probe delay

parameter for the IP device tracking table:

• interval—Number of seconds that the switch delays

sending an ARP probe, triggered by link-up and

ARP probe generation by the tracked device. The

range is 1 to 120 seconds. The default is 0 seconds.

Step 4

Switch(config)# interface fastEthernet a/b

Enters IP configuration mode.

Step 5

Switch(config-if)# switchport mode access

Configures a port as access.

Step 6

Switch(config-if)# switchport access vlan n

Configures the VLAN for this port.

Step 7

Switch(config-if)# ip device tracking maximum n

Establishes a maximum limit for the bindings on this

port.

Upper bound for the maximum is 10.

Step 8

Switch(config-if)# switchport port-security

(Optional) Activates port security for this port.

Step 9

Switch(config-if)# switchport port-security

maximum n

(Optional) Establishes a maximum number of MAC

addresses for this port.

Step 10

Switch(config-if)# ip verify source tracking

[port-security]

Activates IPSG for static hosts on this port.

Step 11

Switch(config-if)# end

Exits configuration interface mode.

Step 12

Switch# show ip verify source interface-name

Verifies the configuration.

Step 13

Switch# show ip device track all

[active | inactive] count

Verifies the configuration by displaying the IP-to-MAC

binding for a given host on the switch interface.

• all active—Displays only the active IP-to-MAC

binding entries.

• all inactive—Displays only the inactive IP-to-MAC

binding entries.

• all—Displays the active and inactive IP-to-MAC

binding entries.

Other manuals for Cisco Catalyst 4500 Series

Manual19 pages

Command Reference Guide1230 pages

System Message Guide150 pages

Configuration Guide1610 pages

Software Configuration Guide2086 pages

Message Guide146 pages

Installation Guide194 pages

Datasheet11 pages

Overview46 pages

Quick Reference Guide59 pages

Questions and Answers:

Need help?

Do you have a question about the Cisco Catalyst 4500 Series and is the answer not in the manual?

Cisco Catalyst 4500 Series Specifications

General

Series	Catalyst 4500 Series
Category	Switch
Layer Support	Layer 2, Layer 3
Form Factor	Modular chassis
Stackable	No
Chassis Slots	3, 6, 7, 10
Power Supply Options	AC, DC
Redundancy	Power supply, Supervisor engine
Network Management	Cisco IOS Software CLI, SNMP, Cisco Prime Infrastructure
Features	Security, QoS
Port Density	Up to 384 ports per chassis
Security Features	802.1X, ACLs, DHCP Snooping, Dynamic ARP Inspection, IP Source Guard
Supervisor Engine	8-E