ZyXEL Communications ZyXEL Dimension ES-2024PWR User Manual

Chapter 6 ARP Inspection Commands

Ethernet Switch CLI Reference Guide

38

The following table describes the labels in this screen.

This example displays whether ports are trusted or untrusted ports for ARP inspection.

The following table describes the labels in this screen.

Table 20 show arp inspection log

LABEL

DESCRIPTION

Total Log Buffer Size

This field displays the maximum number (1-1024) of log messages that

were generated by ARP packets and have not been sent to the syslog

server yet.
If the number of log messages in the Switch exceeds this number, the

Switch stops recording log messages and simply starts counting the

number of entries that were dropped due to unavailable buffer.

Syslog rate

This field displays the maximum number of syslog messages the Switch

can send to the syslog server in one batch. This number is expressed as a

rate because the batch frequency is determined by the Log Interval.

Port

This field displays the source port of the ARP packet.

Vlan

This field displays the source VLAN ID of the ARP packet.

Sender MAC

This field displays the source MAC address of the ARP packet.

Sender IP

This field displays the source IP address of the ARP packet.

Pkts

This field displays the number of ARP packets that were consolidated into

this log message. The Switch consolidates identical log messages

generated by ARP packets in the log consolidation interval into one log

message.

Reason

This field displays the reason the log message was generated.
static deny: An ARP packet was discarded because it violated a static

binding with the same MAC address and VLAN ID.
deny: An ARP packet was discarded because there were no bindings with

the same MAC address and VLAN ID.
static permit: An ARP packet was forwarded because it matched a static

binding.

Time

This field displays when the log message was generated.

Total number of logs

This field displays the number of log messages that were generated by

ARP packets and that have not been sent to the syslog server yet. If one or

more log messages are dropped due to unavailable buffer, there is an entry

called overflow with the current number of dropped log messages.

sysname# show arp inspection interface port-channel 1
Interface Trusted State Rate (pps) Burst Interval
--------- ------------- ---------- --------------
1 Untrusted 15 1

Table 21 show arp inspection interface port-channel

LABEL

DESCRIPTION

Interface

This field displays the port number. If you configure the * port, the settings

are applied to all of the ports.

Trusted State

This field displays whether this port is a trusted port (Trusted) or an

untrusted port (Untrusted).
Trusted ports are connected to DHCP servers or other switches, and the

switch discards DHCP packets from trusted ports only if the rate at which

DHCP packets arrive is too high.