Enabling the SYN Cookie feature ······························································································································ 235
Configuring IP source guard ·································································································································· 236
IP source guard overview ············································································································································ 236
Static IP source guard entries ····························································································································· 236
Configuration task list ·················································································································································· 237
Troubleshooting IP source guard ································································································································ 250
Enabling ARP black hole routing ······················································································································· 252
Configuring ARP packet rate limit ····················································································································· 254
Configuring ARP detection ·········································································································································· 257
Configuring user validity check ························································································································· 257
Configuration guidelines ···································································································································· 264
Configuration procedure ···································································································································· 265
Configuring ND attack defense ····························································································································· 266
Overview ······································································································································································· 266
vi