Configuring interface settings for arp inspection, Figure 213 confi – Brocade Communications Systems Brocate Ethernet Access Switch 6910 User Manual
Page 930
880
Brocade 6910 Ethernet Access Switch Configuration Guide
53-1002581-01
ARP Inspection
41
•
ARP ACL – Allows selection of any configured ARP ACLs. (Default: None)
•
Static – When an ARP ACL is selected, and static mode also selected, the switch only
performs ARP Inspection and bypasses validation against the DHCP Snooping Bindings
database. When an ARP ACL is selected, but static mode is not selected, the switch first
performs ARP Inspection and then validation against the DHCP Snooping Bindings
database. (Default: Disabled)
Interface
To configure VLAN settings for ARP Inspection:
1. Click Security, ARP Inspection.
2. Select Configure VLAN from the Step list.
3. Enable ARP inspection for the required VLANs, select an ARP ACL filter to check for configured
addresses, and select the Static option to bypass checking the DHCP snooping bindings
database if required.
4. Click Apply.
FIGURE 213
Configuring VLAN Settings for ARP Inspection
Configuring Interface Settings for ARP Inspection
Use the Security > ARP Inspection (Configure Interface) page to specify the ports that require ARP
inspection, and to adjust the packet inspection rate.
CLI References
•
Parameters
These parameters are displayed:
•
Interface – Port or trunk identifier.
•
Trust Status – Configures the port as trusted or untrusted. (Default: Untrusted)
By default, all untrusted ports are subject to ARP packet rate limiting, and all trusted ports are
exempt from ARP packet rate limiting.
Packets arriving on trusted interfaces bypass all ARP Inspection and ARP Inspection Validation
checks and will always be forwarded, while those arriving on untrusted interfaces are subject
to all configured ARP inspection tests.