Configuring interface settings for arp inspection – LevelOne GTL-2691 User Manual

C

HAPTER

13

| Security Measures

ARP Inspection

– 375 –

Figure 193: Configuring VLAN Settings for ARP Inspection

C

ONFIGURING

I

NTERFACE

S

ETTINGS

FOR

ARP I

NSPECTION

Use the Security > ARP Inspection (Configure Interface) page to specify

the ports that require ARP inspection, and to adjust the packet inspection

rate.

CLI R

EFERENCES

◆

"ARP Inspection" on page 960

P

ARAMETERS

These parameters are displayed:

◆

Port – Port identifier.

◆

Trust Status – Configures the port as trusted or untrusted.

(Default: Untrusted)
By default, all untrusted ports are subject to ARP packet rate limiting,

and all trusted ports are exempt from ARP packet rate limiting.
Packets arriving on trusted interfaces bypass all ARP Inspection and

ARP Inspection Validation checks and will always be forwarded, while

those arriving on untrusted interfaces are subject to all configured ARP

inspection tests.

◆

Packet Rate Limit – Sets the maximum number of ARP packets that

can be processed by CPU per second on untrusted ports.

(Range: 0-2048; Default: 15)
This rate limit applies to both trusted and untrusted ports.
Setting the rate limit to “0” means that there is no restriction on the

number of ARP packets that can be processed by the CPU.
The switch will drop all ARP packets received on a port which exceeds

the configured ARP-packets-per-second rate limit.

W

EB

I

NTERFACE

To configure interface settings for ARP Inspection:

1.

Click Security, ARP Inspection.

2.

Select Configure Interface from the Step list.