Arp Detection Configuration Example Ii - HP 5120 EI Switch Series Configuration Manual
Hide thumbs
Also See for 5120 EI Switch Series:
- Lan switching configuration manual (235 pages) ,
- Installation manual (92 pages) ,
- Specification (51 pages)
Table of Contents
Advertisement
[SwitchB-GigabitEthernet1/0/3] quit
# Enable the checking of the MAC addresses and IP addresses of ARP packets.
[SwitchB] arp detection validate dst-mac ip src-mac
After the preceding configurations are complete, when ARP packets arrive at interfaces GigabitEthernet
1/0/2 and GigabitEthernet 1/0/3, their MAC and IP addresses are checked, and then the packets are
checked against the static IP source guard binding entries and finally DHCP snooping entries.
ARP detection configuration example II
Network requirements
As shown in
ARP detection for VLAN 10 to allow only packets from valid clients to pass. Configure Host A and Host B
as local 802.1X access users.
Figure 85 Network diagram for ARP detection configuration
DHCP server
Switch A
Switch B
GE1/0/1
Host A
Configuration procedure
Add all the ports on Switch B into VLAN 10, and configure the IP address of VLAN-interface 10 on
1.
Switch A. (details not shown)
Configure Switch A as a DHCP server
2.
# Configure DHCP address pool 0
<SwitchA> system-view
[SwitchA] dhcp enable
[SwitchA] dhcp server ip-pool 0
[SwitchA-dhcp-pool-0] network 10.1.1.0 mask 255.255.255.0
Configure Host A and Host B as 802.1X clients (the configuration procedure is omitted) and
3.
configure them to upload IP addresses for ARP detection.
Configure Switch B
4.
# Enable the 802.1X function.
<SwitchB> system-view
[SwitchB] dot1x
Figure
85, configure Switch A as a DHCP server and Switch B to support 802.1X. Enable
Vlan-int10
10.1.1.1/24
VLAN10
GE1/0/3
GE1/0/2
Host B
275
Advertisement
Table of Contents
Troubleshooting
