beautypg.com

Clearing arp inspection counters, Dhcp snooping, Displaying the arp table – Brocade Multi-Service IronWare Switching Configuration Guide (Supporting R05.6.00) User Manual

Page 792

background image

762

Multi-Service IronWare Switching Configuration Guide

53-1003036-02

DHCP snooping

19

Clearing ARP inspection counters

You can use the clear arp-inspection-statistics command to clear the ARP inspection statistics
counters for all ports on the device or for a specified module or port as shown in the following.

clear arp-inspection-statistics ethernet 3/1

Syntax: clear ip arp-inspection-statistics [slot slot-num | ethernet slot/port ]

The slot option allows you to clear ARP inspection statistics for a single Ethernet interface module
in a slot specified by the slot-num variable.

The ethernet option allows you to clear ARP inspection statistics for a single port specified by the
slot/port variable.

Displaying the ARP table

To display the ARP Inspection table, enter the following command.

The command displays all ARP entries in the system. The illustration above shows the output from
a Brocade NetIron XMR and Brocade MLX series device and includes a multi-port static ARP entry.

Syntax: show ip static-arp

DHCP snooping

NOTE

DHCP snooping only supports IPV4 traffic.

Dynamic Host Configuration Protocol (DHCP) snooping enables the device to filter untrusted DHCP
packets in a subnet. DHCP snooping can ward off MiM attacks, such as a malicious user posing as
a DHCP server sending false DHCP server reply packets with the intention of misdirecting other
users. DHCP snooping can also stop unauthorized DHCP servers and prevent errors due to user
mis-configuration of DHCP servers.

Target IP

The destination IP address of the ARP rejected packet.

Target MAC

The destination MAC address of the ARP rejected packet.

Source IP

The source IP address of the ARP rejected packet.

Source MAC

The source MAC address of the ARP rejected packet.

VLAN

The VLAN number of the ARP rejected packet.

TABLE 90

Show ip arp-inspection-statistics (Continued)

This field...

Displays...

Brocade# show ip static-arp

Total no. of entries: 4

Index IP Address MAC Address Port VLAN ESI

1 10.1.1.1 0001.0001.0001 1/1

2 10.6.6.2 0002.0002.0002 1/2

3 10.6.6.7 1111.1111.1111 2/1...

Ports : ethe 2/1 to 2/7 ethe 3/1 to 3/2

4 10.7.7.7 0100.5e42.7f40 3/3

See also other documents in the category Brocade Computer Accessories: