Chapter 21 IP Source Guard

21.4 ARP Inspection Status

Use this screen to look at the current list of MAC address filters that were created because the Switch identified an unauthorized ARP packet. When the Switch identifies an unauthorized ARP packet, it automatically creates a MAC address filter to block traffic from the source MAC address and source VLAN ID of the unauthorized ARP packet. To open this screen, click Advanced Application > IP Source Guard > ARP Inspection.

Figure 83 ARP Inspection Status

The following table describes the labels in this screen.

Table 57 ARP Inspection Status

LABEL

DESCRIPTION

Total number of filters

This field displays the current number of MAC address filters that were

 

created because the Switch identified unauthorized ARP packets.

 

 

Index

This field displays a sequential number for each MAC address filter.

 

 

MAC Address

This field displays the source MAC address in the MAC address filter.

 

 

VID

This field displays the source VLAN ID in the MAC address filter.

 

 

Port

This field displays the source port of the discarded ARP packet.

 

 

Expiry (sec)

This field displays how long (in seconds) the MAC address filter remains in

 

the Switch. You can also delete the record manually (Delete).

 

 

Reason

This field displays the reason the ARP packet was discarded.

 

MAC+VLAN: The MAC address and VLAN ID were not in the binding

 

table.

 

IP: The MAC address and VLAN ID were in the binding table, but the IP

 

address was not valid.

 

Port: The MAC address, VLAN ID, and IP address were in the binding

 

table, but the port number was not valid.

 

 

Delete

Select this, and click Delete to remove the specified entry.

 

 

Delete

Click this to remove the selected entries.

 

 

Cancel

Click this to clear the Delete check boxes above.

 

 

21.4.1 ARP Inspection Log Status

Use this screen to look at log messages that were generated by ARP packets and that have not been sent to the syslog server yet. To open this screen, click Advanced Application > IP Source Guard > ARP Inspection > Log Status.

 

163

ES-2024 Series User’s Guide