Enterasys SecureStack C2 C2G170-24

Enterasys SecureStack C2 C2G170-24

698 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

set arpinspection trust

SecureStack C2 Configuration Guide 17-21

DAIusestheDHCPsnoopingbindingsdatabasetoverifythatthesenderMACaddressandthe

sourceIPaddressareavalidpairinthedatabase.ARPpacketswhosesenderMACaddressand

senderIPaddressdonotmatchanentryinthedatabasearedropped.

Ifloggingisenabled,invalid

ARPpacketsarealsologged.

Example

ThisexampleenablesDAIonVLANs2through5andalsoenablesloggingofinvalidARPpackets

onthoseVLANs.

C2(su)->set arpinspection vlan 2-5 logging

set arpinspection trust

UsethiscommandtoenableordisableaportasadynamicARPinspectiontrustedport.

Syntax

set arpinspection trust port port-string {enable | disable}

Parameters

Defaults

Bydefault,allphysicalportsandLAGsareuntrusted.

Mode

Switchcommand,read‐write.

Usage

Individualinterfacesareconfiguredas trustedoruntrusted.ThetrustconfigurationforDAIis

independentofthetrustconfigurationforDHCPsnooping.Atrustedportisaportthenetwork

administratordoesnotconsidertobeasecuritythreat.Anuntrustedportisonewhichcould

potentiallybeusedtolaunch

anetworkattack.

DAIconsidersallphysicalportsandLAGsuntrustedbydefault.Packetsarrivingontrusted

interfacesbypassallDAIvalidationchecks.

Example

Thisexampleenablesportge.1.1astrustedforDAI.

C2(su)->set arpinspection trust port ge.1.1 enable

port‐string SpecifiestheportorportstobeenabledordisabledasDAItrusted

ports.TheportscanbephysicalportsorLAGsthataremembersofa

VLAN.

enable|disable EnablesordisablesthespecifiedportsastrustedforDAI.

Table of Contents

Other manuals for Enterasys SecureStack C2 C2G170-24

Hardware Installation Guide74 pages

Related product manuals

Preview: SecureStack C2 C2G124-24

SecureStack C2 C2G124-24

Preview: Enterasys SecureStack C2

Enterasys SecureStack C2

Preview: SecureStack A2 A2H124-24

SecureStack A2 A2H124-24

Preview: SecureStack B3 B3G124-48

SecureStack B3 B3G124-48

SecureStack A2 A2H254-16

Preview: SecureStack B3 B3G124-24P

SecureStack B3 B3G124-24P

Preview: SecureStack B2 B2G124-48P

SecureStack B2 B2G124-48P

Enterasys SSA-G1018-0652

Preview: Enterasys C3G124-24

Enterasys C3G124-24

Preview: Enterasys B5G124-24

Enterasys B5G124-24

Preview: Enterasys 08H20G4-24

Enterasys 08H20G4-24

Preview: Enterasys Matrix-V V2H124-24

Enterasys Matrix-V V2H124-24