Configuring Authorized Arp; Configuration Procedure; Configuration Example (On A Dhcp Server) - HP FlexNetwork 10500 Series Security Configuration Manual
Hide thumbs
Also See for FlexNetwork 10500 Series:
- Configuration manual (512 pages) ,
- Specifications (42 pages) ,
- Datasheet (20 pages)
Table of Contents
Advertisement
Configuring authorized ARP
Authorized ARP entries are generated based on the DHCP clients' address leases on the DHCP
server or dynamic client entries on the DHCP relay agent. For more information about DHCP server
and DHCP relay agent, see Layer 3—IP Services Configuration Guide.
With authorized ARP enabled, an interface is disabled from learning dynamic ARP entries. This
feature prevents user spoofing and allows only authorized clients to access network resources.
Configuration procedure
To enable authorized ARP:
Step
1.
Enter system view.
2.
Enter Layer 3 Ethernet interface,
Layer 3 aggregate interface, or
VLAN interface view.
3.
Enable authorized ARP on the
interface.
Configuration example (on a DHCP server)
Network requirements
As shown in
server) to ensure user validity.
Figure 126 Network diagram
Configuration procedure
1.
Configure Device A:
# Specify the IP address for GigabitEthernet 1/0/1.
<DeviceA> system-view
[DeviceA] interface gigabitethernet 1/0/1
[DeviceA-GigabitEthernet1/0/1] ip address 10.1.1.1 24
[DeviceA-GigabitEthernet1/0/1] quit
# Configure DHCP.
[DeviceA] dhcp enable
[DeviceA] dhcp server ip-pool 1
[DeviceA-dhcp-pool-1] network 10.1.1.0 mask 255.255.255.0
[DeviceA-dhcp-pool-1] quit
# Enter Layer 3 Ethernet interface view.
[DeviceA] interface gigabitethernet 1/0/1
# Enable authorized ARP.
Figure
126, configure authorized ARP on GigabitEthernet 1/0/1 of Device A (a DHCP
Command
system-view
interface interface-type
interface-number
arp authorized enable
435
Remarks
N/A
N/A
By default, authorized ARP is
disabled.
Advertisement
Table of Contents
Troubleshooting
