Figure 226 ARP detection configuration page
2.Configure ARP detection as described in Table 82.
3.Click Apply.
Table 82 Configuration items
Item | Description | |
| Select VLANs on which ARP detection is to be enabled. | |
| To add VLANs to the Enabled VLANs list, select one or multiple VLANs from the Disabled | |
VLAN Settings | VLANs list and click the << button. | |
| To remove VLANs from the Enabled VLANs list, select one or multiple VLANs from the list | |
| and click the >> button. | |
|
| |
| Select trusted ports and untrusted ports. | |
| To add ports to the Trusted Ports list, select one or multiple ports from the Untrusted Ports list | |
Trusted Ports | and click the << button. | |
| To remove ports from the Trusted Ports list, select one or multiple ports from the list and click | |
| the >> button. | |
|
| |
| Select ARP packet validity check modes: | |
| • Discard the ARP packet whose sender MAC address is different from the source MAC | |
| address in the Ethernet header. | |
| • Discard the ARP packet whose target MAC address is all 0s, all 1s, or inconsistent with | |
ARP Packet | the destination MAC address in the Ethernet header. | |
• Discard the ARP request whose sender IP address is all 1s or a multicast address, and | ||
Validity Check | ||
discard the ARP reply whose sender and target IP addresses are all 1s or multicast | ||
| ||
| addresses. | |
| If none is selected, the system does not check the validity of ARP packets. | |
| If both ARP packet validity check and user validity check are enabled, the system performs | |
| the former first, and then the latter. | |
|
|
251