Chapter 24 IP Source Guard
24.7 ARP Inspection Configure
Use this screen to enable ARP inspection on the Switch. You can also configure the length of time the Switch stores records of discarded ARP packets and global settings for the ARP inspection log. To open this screen, click Advanced Application > IP Source Guard > ARP Inspection > Configure.
Figure 109 ARP Inspection Configure
The following table describes the labels in this screen.
Table 77 ARP Inspection Configure
LABEL | DESCRIPTION |
Active | Select this to enable ARP inspection on the Switch. You still have to |
| enable ARP inspection on specific VLAN and specify trusted ports. |
|
|
Filter Aging Time |
|
|
|
Filter aging time | This setting has no effect on existing MAC address filters. |
| Enter how long |
| the Switch after the Switch identifies an unauthorized ARP packet. The |
| Switch automatically deletes the MAC address filter afterwards. Enter 0 if |
| you want the MAC address filter to be permanent. |
|
|
Log Profile |
|
|
|
Log buffer size | Enter the maximum number |
| by ARP packets and have not been sent to the syslog server yet. Make |
| sure this number is appropriate for the specified Syslog rate and Log |
| interval. |
| If the number of log messages in the Switch exceeds this number, the |
| Switch stops recording log messages and simply starts counting the |
| number of entries that were dropped due to unavailable buffer. Click |
| Clearing log status table in the ARP Inspection Log Status screen to |
| clear the log and reset this counter. See Section 24.6.2 on page 213. |
|
|
| 215 |
|
|