Configuring an arp acl, Figure 206 confi – Brocade Communications Systems Brocate Ethernet Access Switch 6910 User Manual

Brocade 6910 Ethernet Access Switch Configuration Guide

871

53-1002581-01

Access Control Lists

41

FIGURE 206

Configuring a MAC ACL

Configuring an ARP ACL

Use the Security > ACL (Configure ACL - Add Rule - ARP) page to configure ACLs based on ARP
message addresses. ARP Inspection can then use these ACLs to filter suspicious traffic (see

“Configuring Global Settings for ARP Inspection”

on page 877).

CLI References

•

“permit, deny (ARP ACL)”

on page 257

•

“show ip access-list”

on page 245

•

“Time Range”

on page 102

Parameters

These parameters are displayed:

•

Type – Selects the type of ACLs to show in the Name list.

•

Name – Shows the names of ACLs matching the selected type.

•

Action – An ACL can contain any combination of permit or deny rules.

•

Packet Type – Indicates an ARP request, ARP response, or either type. (Range: IP, Request,
Response; Default: IP)

•

Source/Destination IP Address Type – Specifies the source or destination IPv4 address. Use
“Any” to include all possible addresses, “Host” to specify a specific host address in the Address
field, or “IP” to specify a range of addresses with the Address and Mask fields. (Options: Any,
Host, IP; Default: Any)

•

Source/Destination IP Address – Source or destination IP address.

•

Source/Destination IP Subnet Mask – Subnet mask for source or destination address. (See
the description for Subnet Mask on

page 862

.)