SwitchB (Config-If-Ethernet1/2)#anti-arpscan trust port
SwitchB (Config-If-Ethernet1/2)exit
21.5 ARP Scanning Prevention Troubleshooting Help
ARP scanning prevention is disabled by default. After enabling ARP scanning
prevention, users can enable the debug switch, "debug anti-arpscan", to view debug
information.
If the state of a port is showed as not closed when using "show anti-arpscan", it
means that the port is not closed by the ARP scanning prevention function. If the port is
closed by other modules, users can check it with "show interface".
The max number of IP that can be disabled by IP-based ARP scanning prevention is
64. If the limit is exceeded, users will see a prompt. Other modules can also disable IP,
since the max number of IP that can be disabled by the switch is 256, if this limit is
exceeded, a prompt will also be returned.
540