7 arp inspection configure – ZyXEL Communications ES-3124 User Manual
Page 209
Chapter 24 IP Source Guard
ES-3124 Series User’s Guide
209
24.7 ARP Inspection Configure
Use this screen to enable ARP inspection on the Switch. You can also configure the length of
time the Switch stores records of discarded ARP packets and global settings for the ARP
inspection log. To open this screen, click Advanced Application > IP Source Guard > ARP
Inspection > Configure.
Figure 114 Advanced Application > IP Source Guard > ARP Inspection > Configure
The following table describes the labels in this screen.
Table 80 Advanced Application > IP Source Guard > ARP Inspection > Configure
LABEL
DESCRIPTION
Active
Select this to enable ARP inspection on the Switch. You still have to enable
ARP inspection on specific VLAN and specify trusted ports.
Filter Aging Time
Filter aging time
This setting has no effect on existing MAC address filters.
Enter how long (1-2147483647 seconds) the MAC address filter remains in
the Switch after the Switch identifies an unauthorized ARP packet. The
Switch automatically deletes the MAC address filter afterwards. Enter 0 if
you want the MAC address filter to be permanent.
Log Profile
Log buffer size
Enter the maximum number (0-1024) of log messages that were generated
by ARP packets and have not been sent to the syslog server yet. Make
sure this number is appropriate for the specified Syslog rate and Log
interval.
If the number of log messages in the Switch exceeds this number, the
Switch stops recording log messages and simply starts counting the
number of entries that were dropped due to unavailable buffer. Click
Clearing log status table in the ARP Inspection Log Status screen to
clear the log and reset this counter. See