Chapter 28 ARP Inspection
GS2220 Series User’s Guide
279
The following table describes the labels in this screen.
28.3 IPv6 So urc e G ua rd O ve rvie w
The purpose of IPv6 source guard is to distinguish between authorized and unauthorized users by using a
binding table that validates the source of IPv6 traffic. The binding table can be manually created or be
learned through Dynamic Host Configuration Protocol version 6 snooping (DHCPv6 snooping). IPv6
source guard can deny IPv6 traffic from an unknown source. The IPv6 source guard binding table
includes:
• IPv6 address
• IPv6 prefix
• VLAN ID
• Port number
• MAC address
Enable IPv6 source guard on a port for the Switch to check incoming IPv6 packets on that port. A
packet is allowed when it matches any entry in the IPSG binding table. If a user tries to send IPv6 packets
to the Switch that do not match an entry in the IPSG binding table, the Switch will drop these packets.
The Switch forwards matching traffic normally. The IPv6 source guard related screens are available in
standalone mode.
Table 131 Advanced Application > IP Source Guard > IPv4 Source Guard Setup > ARP Inspection >
Configure > VLAN
LABEL DESCRIPTIO N
VLAN Search by
VID
Specify the VLANs you want to manage in the section below. Use a comma (,) to separate
individual VLANs or a dash (–) to indicates a range of VLANs. For example, “3,4” or “3–9”.
Search Click this to display the specified range of VLANs in the section below.
VID This field displays the VLAN ID of each VLAN in the range specified above. If you configure the
* VLAN, the settings are applied to all VLANs.
Enabled Select Ye s to enable ARP inspection on the VLAN. Select No to disable ARP inspection on the
VLAN.
Log Specify when the Switch generates log messages for receiving ARP packets from the VLAN.
No ne : The Switch does not generate any log messages when it receives an ARP packet from
the VLAN.
De ny: The Switch generates log messages when it discards an ARP packet from the VLAN.
Pe rm it: The Switch generates log messages when it forwards an ARP packet from the VLAN.
All: The Switch generates log messages every time it receives an ARP packet from the VLAN.
Apply Click Apply to save your changes to the Switch’s run-time memory. The Switch loses these
changes if it is turned off or loses power, so use the Sa ve link on the top navigation panel to
save your changes to the non-volatile memory when you are done configuring.
Cancel Click this to reset the values in this screen to their last-saved values.
Change Pages Click Pre vio us or Ne xt to show the previous or next screen if all status information cannot be
seen in one screen.
To Next Page
Loading...
