3 commands for preventing arp, nd spoofing, 1 ip arp-security updateprotect, 2 ipv6 nd-security updateprotect – Accton Technology ES4626 User Manual
Page 354: Ommands, Reventing, Poofing
354
2.
Disable ARP, ND automatic learning function
Command Explanation
Admin mode and Interface Mode
ip arp-security learnprotect
no Ip arp-security learnprotect
ipv6 nd-security learnprotect
no ipv6 nd-security learnprotect
Disable and enable ARP, ND automatic
learning function
3.
Function on changing dynamic ARP, ND to static ARP, ND
Command Explanation
Admin Mode and Interface Mode
ip arp-security convert
ipv6 nd-security convert
Change dynamic ARP, ND to static ARP, ND
4. Clear dynamic ARP, ND
Command Explanation
Admin Mode and Interface Mode
clear ip arp dynamic
clear ipv6 nd dynamic
Clear dynamic ARP, ND
12.3 Commands For Preventing ARP, ND Spoofing
12.3.1 ip arp-security updateprotect
Command:
ip arp-security updateprotect
no ip arp-security updateprotect
Function :
Forbid ARP automatic learning function of IPv4 Version, the “ no ip
arp-security updateprotect ”command re-enables ARP automatic learning function.
Parameter:
None
Default:
Learn ARP and update normally
Command Mode:
Global Mode/ Interface configuration
Example:
Switch(Config-if-Vlan1)# ip arp-security updateprotect
Switch(Config)# ip arp-security updateprotect
12.3.2 ipv6 nd-security updateprotect
Command:
ipv6 nd-security updateprotect
no ipv6 nd-security updateprotect