Chapter 25 commands for preventing arp spoofing, 1 ip arp-security updateprotect, 2 ip arp-security learnprotect – PLANET WGSW-52040 User Manual

25-38

Chapter 25 Commands for

Preventing ARP Spoofing

25.1 ip arp-security updateprotect

Command:

ip arp-security updateprotect

no ip arp-security updateprotect

Function:

Forbid ARP table automatic update. The "no ip arp-security updateprotect” command re-enables ARP table

automatic update.

Parameter:

None.

Default:

ARP table automatic update.

Command Mode:

Global Mode/ Interface configuration.

User Guide:

Forbid ARP table automatic update, the ARP packets conflicting with current ARP item (e.g. with same IP but

different MAC or port) will be dropped, the others will be received to update aging timer or create a new item; so, the

current ARP item keep unchanged and the new item can still be learned.

Example:

Switch(Config-if-Vlan1)#ip arp-security updateprotect.

Switch(config)#ip arp-security updateprotect

25.2 ip arp-security learnprotect

Command:

ip arp-security learnprotect