A10E/A28E/A28F Configuration Guide
Uplink Port 3 permits all ARP packets to pass.
Downlink Port 1 permits ARP packets with specified IP address 10.10.10.1 to pass.
Other interfaces permit ARP packets complying with dynamic binding learnt by DHCP
snooping to pass.
Downlink Port 2 configures ARP packets rate limiting. The rate threshold is set to 20 pps
and rate limiting recovery time is set to 15s.
Figure 6-3 Configuring dynamic ARP inspection
Configuration steps
Step 1 Set Port 3 to the trusted interface.
Alpha-A28E#config
Alpha-A28E(config)#interface port 3
Alpha-A28E(config-port)#ip arp-inspection trust
Alpha-A28E(config-port)#exit
Step 2 Configure the static binding relationship.
Alpha-A28E(config)#ip arp-inspection static-config
Alpha-A28E(config)#ip arp-inspection binding 10.10.10.1 port 1
Step 3 Enable binding between dynamic ARP inspection and dynamic DHCP Snooping.
Alpha-A28E(config)#ip dhcp snooping
Alpha-A28E(config)#ip arp-inspection dhcp-snooping
Step 4 Configure ARP packet rate limiting on an interface.
To Next Page
Loading...