beautypg.com

Command list, Arp security, Command list arp security – Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Page 1440

background image

DHCP Snooping Commands

Software Reference for x310 Series Switches

56.2

AlliedWare Plus

TM

Operating System - Version 5.4.4C

C613-50046-01 REV A

Command List

This chapter gives detailed information about the commands used to configure DHCP
snooping. For detailed descriptions of related ACL commands, see

Chapter 34, IPv4

Hardware Access Control List (ACL) Commands

. For more information about DHCP

snooping, see

Chapter 55, DHCP Snooping Introduction and Configuration

.

DHCP snooping can operate on static link aggregators (e.g., sa2) and dynamic link
aggregators (e.g. po2), as well as on switch ports (e.g., port1.0.2).

arp security

Use this command to enable ARP security on untrusted ports in the VLANs, so that the
switch only responds to/forwards ARP packets if they have recognized IP and MAC source
addresses.

Use the no variant of this command to disable ARP security on the VLANs.

Syntax

arp security

no arp security

Default

Disabled

Mode

Interface Configuration (VLANs)

Usage

Enable ARP security to provide protection against ARP spoofing. DHCP snooping must
also be enabled on the switch (

service dhcp-snooping command on page 56.24

), and on

the VLANs (

ip dhcp snooping command on page 56.9

).

Example

To enable ARP security on VLANs 2 to 4, use the commands:

Related Commands

arp security violation
show arp security
show arp security interface
show arp security statistics

awplus#

configure terminal

awplus(config)#

interface vlan2-vlan4

awplus(config-if)#

arp security

See also other documents in the category Allied Telesis Computer hardware: