26-9
Cisco IE 2000 Switch Software Configuration Guide
OL-25866-01
Chapter 26 Configuring Dynamic ARP Inspection
How to Configure Dynamic ARP Inspection
Limiting the Rate of Incoming ARP Packets
Command Purpose
Step 1 configure terminal Enters global configuration mode.
Step 2 interface interface-id Specifies the interface to be rate-limited, and enters interface
configuration mode.
Step 3 ip arp inspection limit {rate pps [burst
interval seconds] | none}
Limits the rate of incoming ARP requests and responses on the
interface.
The default rate is 15 pps on untrusted interfaces and unlimited on
trusted interfaces. The burst interval is 1 second.
rate pps—Specifies an upper limit for the number of incoming
packets processed per second. The range is 0 to 2048 pps.
(Optional) burst interval seconds—Specifies the consecutive
interval in seconds, over which the interface is monitored for a high
rate of ARP packets. The range is 1 to 15.
rate none—Specifies no upper limit for the rate of incoming ARP
packets that can be processed.
Step 4 exit Returns to global configuration mode.
Step 5 errdisable recovery cause
arp-inspection interval interval
(Optional) Enables error recovery from the DAI error-disabled state .
By default, recovery is disabled, and the recovery interval is 300
seconds.
interval interval—Specifies the time in seconds to recover from the
error-disabled state. The range is 30 to 86400.
Step 6 exit Returns to privileged EXEC mode.