D-Link DWS-3160-24TC

To Next Page

To Previous Page

DWS-3160 Series Gigabit Ethernet Unified Switch CLI Reference Guide

942

Figure 5

Likewise, the attacker can either choose to forward the traffic to the actual default gateway

(passive sniffing) or modify the data before forwarding it (man-in-the-middle attack).

The hacker cheats the victim PC that it is a router and cheats the router that it is the victim. As can

be seen in Figure 5 all traffic will be then sniffed by the hacker but the users will not discover.

Prevent ARP Spoofing via Packet Content ACL

D-Link managed switches can effectively mitigate common DoS attacks caused by ARP spoofing

via a unique Package Content ACL.

For the reason that basic ACL can only filter ARP packets based on packet type, VLAN ID, Source,

and Destination MAC information, there is a need for further inspections of ARP packets. To

Main Page

Default Chapter2
- Table of Contents2
Chapter 1 Using Command Line Interface5
- Setting the Switch's Ip Address7
- Command Syntax Symbols10
- Line Editing Keys11
Chapter 2 Basic Command List14
- Enable Clipaging16
- Disable Clipaging17
- Config Terminal Width24
- Show Terminal Width25
- Config Ports25
- Show Ports26
Chapter 3 802.1Q VLAN Command List28
- Create Vlan28
- Create Vlan Vlanid29
- Delete Vlan30
- Delete Vlan Vlanid30
- Config Vlan31
- Config Vlan Vlanid32
- Show Vlan34
- Show Vlan Ports35
- Show Vlan Vlanid36
- Enable Pvid Auto Assign37
- Disable Pvid Auto Assign38
- Config Gvrp39
- Show Gvrp40
- Enable Gvrp41
- Disable Gvrp41
- Show Private Vlan43
Chapter 4 802.1X Command List44
- Config Radius Add58
- Config Radius Delete59
- Config Radius60
- Show Radius61
- Config Accounting Service67
- Show Accounting Service68
Chapter 5 Access Authentication Control Command List69
- Disable Password Encryption70
- Config Authen Application78
- Show Authen Application79
- Config Authen Parameter Attempt87
- Show Authen Parameter87
- Enable Admin88
Chapter 6 Access Control List (ACL) Command List90
Chapter 7 Access Control List (ACL) Egress Command List109
Chapter 8 Address Resolution Protocol (ARP) Command List127
- Config Arpentry128
- Clear Arptable129
- Show Arpentry130
Chapter 9 ARP Spoofing Prevention Command List132
Chapter 10 Asymmetric VLAN Command List134
Chapter 11 Auto-Configuration Command List136
- Enable Autoconfig136
- Disable Autoconfig136
- Show Autoconfig137
Chapter 12 Basic Commands Command List138
- Create Account138
- Config Account139
- Show Account140
- Delete Account141
- Show Switch142
- Enable Telnet143
- Disable Telnet143
- Enable Web144
- Disable Web144
- Config Firmware146
- Create Ipif147
- Config Ipif148
- Delete Ipif149
- Enable Ipif150
- Disable Ipif150
- Show Ipif151
Chapter 13 BPDU Attack Protection Command List155
Chapter 14 Cable Diagnostics Command List160
Chapter 15 Captive Portal Command List162
Chapter 16 Command Logging Command List198
- Show Command Logging199
Chapter 17 Compound Authentication Command List200
- Config Authentication Ports202
- Show Authentication Ports204
- Show Authorization206
- Config Authentication Server Failover207
- Show Authentication207
Chapter 18 Configuration Command List209
- Show Config209
- Config Configuration211
Chapter 19 Connectivity Fault Management Command List214
- Create Cfm MD215
- Config Cfm MD215
- Create Cfm Ma216
- Config Cfm Ma217
- Create Cfm Mep218
- Config Cfm Mep219
- Delete Cfm Mep221
- Delete Cfm Ma222
- Delete Cfm MD223
- Enable Cfm223
- Disable Cfm224
- Config Cfm Ports225
- Show Cfm Ports225
- Show Cfm226
- Show Cfm Fault228
- Show Cfm Port229
- Cfm Loopback230
- Cfm Linktrace231
- Show Cfm Linktrace232
- Delete Cfm Linktrace234
- Show Cfm Mipccm234
Chapter 20 Connectivity Fault Management (CFM) Extension Command List241
- Config Cfm Ais241
- Config Cfm Lock242
Chapter 21 CPU Interface Filtering Command List246
Chapter 22 Debug Software Command List257
- Debug Buffer258
- Debug Output260
- Debug Config State261
- Debug Show Status263
- Debug Stp Config Ports265
- Debug Stp Show Information266
- Debug Stp Show Flag267
- Debug Stp Show Counter268
- Debug Stp Clear Counter269
- Debug Stp State270
Chapter 23 DHCP Local Relay Command List272
Chapter 24 DHCP Relay Command List276
Chapter 25 DHCP Server Screening Command List292
Chapter 26 D-Link License Management System (DLMS) Command List295
Chapter 27 Ethernet Ring Protection Switching (ERPS) Command List297
Chapter 28 Filter Command List307
Chapter 29 Filter Database (FDB) Command List310
- Create Fdb310
- Create Fdb Vlanid311
- Delete Fdb314
- Clear Fdb315
- Show Fdb317
Chapter 30 Flash File System (FFS) Command List320
- Change Drive321
Chapter 31 Gratuitous ARP Command List331
Chapter 32 IGMP Snooping Command List337
Chapter 33 IGMP Snooping Multicast (ISM) VLAN Command List358
Chapter 34 IP-MAC-Port Binding (IMPB) Command List369
Chapter 35 Ipv6 Neighbor Discover Command List384
- Show Ipv6 Nd387
Chapter 36 Ipv6 Route Command List388
- Delete Ipv6Route389
- Show Ipv6Route389
Chapter 37 Jumbo Frame Command List391
Chapter 38 Link Aggregation Command List393
Chapter 39 Link Layer Discovery Protocol (LLDP) Command List400
- Enable Lldp400
- Disable Lldp401
- Config Lldp401
- Config Lldp Ports403
- Show Lldp407
- Show Lldp Ports409
- Show Lldp Statistics415
- Show Lldp Statistics Ports415
Chapter 40 Loop Back Detection (LBD) Command List417
- Config Loopdetect417
- Config Loopdetect Ports418
- Enable Loopdetect418
- Disable Loopdetect419
- Show Loopdetect420
- Show Loopdetect Ports420
- Config Loopdetect Log422
Chapter 41 MAC Notification Command List423
Chapter 42 MAC-Based Access Control Command List428
Chapter 43 MAC-Based VLAN Command List444
Chapter 44 Mirror Command List447
- Enable Mirror448
- Disable Mirror448
- Show Mirror449
Chapter 45 MLD Snooping Command List450
Chapter 46 MLD Snooping Multicast (MSM) VLAN Command List470
Chapter 47 Multicast Filter Command List481
Chapter 48 Multiple Spanning Tree Protocol (MSTP) Command List490
- Show Stp490
- Show Stp Instance491
- Show Stp Ports492
- Enable Stp496
- Disable Stp497
- Config Stp Version497
- Config Stp Priority498
- Config Stp499
- Config Stp Ports500
Chapter 49 Network Load Balancing (NLB) Command List503
- Show Nlb Fdb505
Chapter 50 Network Monitoring Command List507
- Show Error Ports508
- Show Utilization509
- Show Utilization Dram510
- Show Utilization Flash511
- Clear Counters512
Chapter 51 OAM Command List513
Chapter 52 Peripherals Command List521
- Config Temperature Threshold522
- Config Temperature523
Chapter 53 Ping Command List524
Chapter 54 Port Security Command List526
Chapter 55 Power over Ethernet (Poe) Command List534
- Config Poe System534
- Config Poe Ports535
- Show Poe System536
- Show Poe Ports537
Chapter 56 Power Saving Command List539
Chapter 57 Protocol VLAN Command List541
- Config Port Dot1V544
- Show Port Dot1V545
Chapter 58 Qinq Command List546
- Disable Qinq547
- Config Qinq Ports548
- Show Qinq549
- Show Qinq Ports550
Chapter 59 Quality of Service (Qos) Command List554
- Config Scheduling558
- Show Scheduling559
- Config Dscp Trust566
- Show Dscp Trust567
- Config Dscp Map567
- Show Dscp Map568
Chapter 60 Remote Switched Port Analyzer (RSPAN) Command List570
- Enable Rspan570
- Disable Rspan571
- Create Rspan Vlan571
- Delete Rspan Vlan572
- Config Rspan Vlan573
- Show Rspan574
Chapter 61 Safeguard Engine Command List576
Chapter 62 Secure Shell (SSH) Command List578
- Config Ssh Algorithm578
- Show Ssh Algorithm579
- Config Ssh Authmode580
- Show Ssh Authmode581
- Config Ssh User581
- Show Ssh User582
- Config Ssh Server583
- Enable Ssh584
- Disable Ssh584
- Show Ssh Server585
Chapter 63 Secure Sockets Layer (SSL) Command List587
- Download Ssl Certificate587
- Enable Ssl588
- Disable Ssl589
- Show Ssl590
- Show Ssl Cachetimeout591
- Config Ssl Cachetimeout591
Chapter 64 Sflow Command List593
- Enable Sflow600
- Disable Sflow601
- Show Sflow601
Chapter 65 Show Technical Support Command List605
Chapter 66 Simple Network Management Protocol (SNMP) Command List608
- Create Snmp Community608
- Delete Snmp Community609
- Show Snmp Community610
- Create Snmp User611
- Delete Snmp User612
- Show Snmp User613
- Create Snmp Group613
- Delete Snmp Group614
- Show Snmp Groups615
- Create Snmp View616
- Delete Snmp View617
- Show Snmp View617
- Create Snmp618
- Delete Snmp619
- Show Snmp Host620
- Show Snmp V6Host620
- Config Snmp Engineid621
- Show Snmp Engineid622
- Enable Snmp623
- Disable Snmp623
- Enable Snmp Traps626
- Disable Snmp Traps626
- Show Snmp Traps631
- Config Rmon Trap631
- Show Rmon632
Chapter 67 Single IP Management Command List634
Chapter 68 Syslog and Trap Source-Interface Command List643
Chapter 69 System Log Command List647
- Show Log648
- Enable Syslog649
- Disable Syslog650
- Show Syslog651
- Config Syslog Host651
- Create Syslog Host652
- Delete Syslog Host654
- Show Syslog Host654
Chapter 70 System Severity Command List659
Chapter 71 TELNET Client Command List661
Chapter 72 TFTP Client Command List662
Chapter 73 Time and SNTP Command List666
- Config Sntp666
- Show Sntp667
- Enable Sntp667
- Disable Sntp668
- Config Time668
- Config Dst670
- Show Time671
Chapter 74 Trace Route Command List673
Chapter 75 Traffic Control Command List676
- Config Traffic Control676
- Show Traffic Control678
Chapter 76 Traffic Segmentation Command List681
Chapter 77 Trusted Host Command List683
Chapter 78 Unicast Routing Command List687
- Create Iproute687
- Delete Iproute688
- Show Iproute688
- Show Ipfdb689
Chapter 79 Virtual Router Redundancy Protocol (VRRP) Command List691
- Enable Vrrp691
- Disable Vrrp692
- Show Vrrp696
Chapter 80 VLAN Trunking Command List698
Chapter 81 Voice VLAN Command List703
Chapter 82 Wireless Access Point Profile Command List712
Chapter 83 Wireless AP Failure Status Command List738
Chapter 84 Wireless Client Association Command List741
Chapter 85 Wireless Ad Hoc Status Command List751
Chapter 86 Wireless Detected Client Database Command List753
Chapter 87 Wireless Local Access Point Database Command List761
Chapter 88 Wireless Managed AP Command List767
Chapter 89 Wireless Network Command List788
- Show Wireless Network801
Chapter 90 Wireless Peer Switch Command List804
Chapter 91 Wireless Provisioning and Mutual Authentication Command List812
Chapter 92 Wireless Qos Command List823
Chapter 93 Wireless RF Scan AP Status Command List865
Chapter 94 Wireless Switch Channel and Power Command List866
Chapter 95 Wireless Switch Command List873
- Clear Wireless Statistics895
- Show Wireless896
- Show Wireless Agetime897
- Show Wireless Discovery901
- Show Wireless Rates908
- Show Wireless Statistics910
- Show Wireless Status910
Chapter 96 Wireless WIDS AP RF Security Command List915
Chapter 97 Password Recovery Command List939
Appendix A Mitigating ARP Spoofing Attacks Using Packet Content ACL941
Appendix B Password Recovery Procedure949
Appendix C System Log Entries951
Appendix D Trap Entries965
Appendix Eradius Attributes Assignment970
Appendix F Wireless Switch Specific979

D-Link DWS-3160-24TC - Page 946

Table of Contents

Other manuals for D-Link DWS-3160-24TC

Related product manuals