JetStream 52-Port Gigabit Stackable L3 Managed Switch CLI Guide
Syntax
ip arp inspection validate {src-mac|dst-mac|ip}
no ip arp inspection validate {src-mac|dst-mac|ip}
Parameter
src-mac ——Enable the switch to check whether the source MAC address
and the Sender MAC address are the same when receiving an ARP packet. If
not, the ARP packet will be discarded.
dst-mac ——Enable or disable the switch to check whether the Destination
MAC address and the Target MAC address are the same when receiving an
ARP Reply packet. If not, the ARP packet will be discarded.
ip ——Enable or disable the switch to check whether the Sender IP address
of all ARP packets and the Target IP address of ARP Reply packets are legal.
The illegal packets will be discarded.
Command Mode
Global Configuration Mode
Example
Enable the ARP Detection function for VLAN 5 and enable the logging feature:
T3700G-52TQ(config)#ip arp inspection vlan 5 logging
14.3 ip arp inspection trust
Description
The ip arp inspection trust command is used to configure the port for which
the ARP Detect function is unnecessary as the Trusted Port. To clear the
Trusted Port list, please use no ip arp detection trust command .The specific
ports, such as up-linked port, routing port and LAG port, should be set as
Trusted Port. To ensure the normal communication of the switch, please
configure the ARP Trusted Port before enabling the ARP Detect function.
Syntax
ip arp inspection trust
no ip arp inspection trust
87
To Next Page
Loading...
