3 anti-arpscan ip-based threshold, 4 anti-arpscan trust, Anti – PLANET XGS3-24040 User Manual

18-2

User Guide:

the threshold of port-based ARP scanning prevention should be larger than the threshold of

IP-based ARP scanning prevention, or, the IP-based ARP scanning prevention will fail.

Example:

Set the threshold of port-based ARP scanning prevention as 10 packets /second.

Switch(config)#anti-arpscan port-based threshold 10

18.3 anti-arpscan ip-based threshold

Command:

anti-arpscan ip-based threshold <threshold-value>

no anti-arpscan ip-based threshold

Function:

Set the threshold of received messages of the IP-based ARP scanning prevention. If the rate of

received ARP messages exceeds the threshold, the IP messages from this IP will be blocked. The

unit is packet/second. The “no anti-arpscan ip-based threshold” command will reset the default

value, 3 packets/second.

Parameters:

rate threshold, ranging from 1 to 200.

Default Settings:

3 packets/second.

Command Mode:

Global configuration mode

User Guide:

The threshold of port-based ARP scanning prevention should be larger than the threshold of

IP-based ARP scanning prevention, or, the IP-based ARP scanning prevention will fail.

Example:

Set the threshold of IP-based ARP scanning prevention as 6 packets/second.

Switch(config)#anti-arpscan ip-based threshold 6

18.4 anti-arpscan trust

Command:

anti-arpscan trust [port | supertrust-port]

no anti-arpscan trust [port | supertrust-port]

Function:

Configure a port as a trusted port or a super trusted port;” no anti-arpscan trust <port |

supertrust-port>”command will reset the port as an untrusted port.

Parameters:

None.

Default Settings:

By default all the ports are non- trustful.