Configuring IPv4 IMPB ARP Detection Configuration
User Guide
863
3.2.3 Configuring ARP Detection on Ports
Follow these steps to configure ARP Detection on ports:
Step 1 configure
Enter global configuration mode.
Step 2 interface { fastEthernet
port
| range fastEthernet
port-list
|
gigabitEthernet
port
| range
gigabitEthernet
port-list
| ten-gigabitEthernet
port
| range ten-gigabitEthernet
port-list
}
Enter interface configuration mode.
Step 3 ip arp inspection trust
Configure the port as a trusted port, on which the ARP Detection function will not take
effect. The specific ports, such as up-linked ports and routing ports are suggested to be set
as trusted ports.
Step 4 ip arp inspection limit-rate
value
Specify the maximum number of the ARP packets can be received on the port per second.
value:
Specify the limit rate value. The valid values are from 0 to 300 pps (packets/second),
and the default value is 100.
Step 5 ip arp inspection burst-interval
value
Specify a time range. If the average speed of received ARP packets in this time range reach
the limit, the port will be shut down.
value:
Specify the time range. The valid values are from 1 to 15 seconds, and the default
value is 1 second.
Step 6 show ip arp inspection interface
View the configurations and status of the ports.
Step 7 ip arp inspection recover
(Optional) For ports on which the speed of receiving ARP packets has exceeded the limit,
use this command to restore the port from Down status to Normal status.
Step 8 end
Return to privileged EXEC mode.
Step 9 copy running-config startup-config
Save the settings in the configuration file.
The following example shows how to set port 1/02 as a trusted port, and set limit-rate as 20
pps and burst interval as 2 seconds on port 1/0/2:
Switch#configure
Switch(config)#interface gigabitEthernet 1/0/2
Switch(config-if)#ip arp inspection trust
Switch(config-if)#ip arp inspection limit-rate 20
To Next Page
Loading...
Need help?
General
