Web-based Configuration Guide Security
112
7.7 Anti-ARP Spoofing
7.7.1 Overview
Gateway-targeted ARP spoofing prevention is used to check whether the source IP address of an ARP packet
through an access port is set to the gateway IP address. If yes, the packet will be discarded to prevent hosts
from receiving wrong ARP response packets. If not, the packet will not be handled. In this way, only the uplink
devices can send ARP packets, and the ARP response packets sent from other clients which pass for the
gateway are filtered out.
7.7.2 Procedure
Choose Local Device > Security > IP Source Guard > Excluded VLAN.
1. Enabling Anti-ARP Spoofing
Click Add, select the desired port and enter the gateway IP, click OK.
Note
Generally, the anti-ARP spoofing function is enabled on the downlink ports of the device.
To Next Page
Loading...
Need help?
General