Arp Packet Source Mac Consistency Check Commands; Arp Valid-Check Enable; Arp Active Acknowledgement Commands; Arp Active-Ack Enable - H3C MSR Series Command Reference Manual

chassis chassis-number slot slot-number: Specifies a card on an IRF member device. The
chassis-number argument represents the member ID of the IRF member device. The slot-number
argument represents the slot number of the card. If you do not specify a card, this command displays
ARP attack entries for the global active MPU. (Distributed devices in IRF mode.)
Examples
# Display the ARP attack entries detected by source MAC-based ARP attack detection.
<Sysname> display arp source-mac
Source-MAC
23f3-1122-3344
23f3-1122-3355
23f3-1122-33ff
23f3-1122-33ad
23f3-1122-33ce
ARP packet source MAC consistency check
commands

arp valid-check enable

Use arp valid-check enable to enable ARP packet source MAC address consistency check.
Use undo arp valid-check enable to disable ARP packet source MAC address consistency check.
Syntax
arp valid-check enable
undo arp valid-check enable
Default
ARP packet source MAC address consistency check is disabled.
Views
System view
Predefined user roles
network-admin
Usage guidelines
Configure this feature on gateways. The gateways can filter out ARP packets whose source MAC
address in the Ethernet header is different from the sender MAC address in the message body.
Examples
# Enable ARP packet source MAC address consistency check.
<Sysname> system-view
[Sysname] arp valid-check enable

ARP active acknowledgement commands

arp active-ack enable

Use arp active-ack enable to enable the ARP active acknowledgement feature.
VLAN ID Interface
4094 GE1/0/1
4094 GE1/0/2
4094 GE1/0/3
4094 GE1/0/4
4094 GE1/0/5
1111
Aging-time
10
30
25
30
2