Chapter 27 IP Source Guard
OLT2406 User’s Guide
245
The OLT discards ARP packets on untrusted ports in the following situations:
• The sender’s information in the ARP packet does not match any of the current bindings.
• The rate at which ARP packets arrive is too high.
27.10.2.3 Syslog
The OLT can send syslog messages to the specified syslog server (Chapter 46 on page 380) when it
forwards or discards ARP packets. The OLT can consolidate log messages and send log messages in
batches to make this mechanism more efficient.
27.10.2.4 Configuring ARP Inspection
Follow these steps to configure ARP inspection on the OLT.
1 Configure DHCP snooping. See Section 27.10.1.5 on page 244.
Note: It is recommended you enable DHCP snooping at least one day before you enable
ARP inspection so that the OLT has enough time to build the binding table.
2 Enable ARP inspection on each VLAN.
3 Configure trusted and untrusted ports, and specify the maximum number of ARP packets that each port
can receive per second.
To Next Page
Loading...
