Cisco 4500M Software Manual page 479
Software guide
Hide thumbs
Also See for 4500M:
- Command reference manual (578 pages) ,
- Hardware installation and maintenance manual (143 pages) ,
- Upgrade manual (24 pages)
Table of Contents
Advertisement
Chapter 34
Understanding and Configuring Dynamic ARP Inspection
The statistics will display as follows:
Vlan
----
Vlan
----
Vlan
----
S1#
Configuring Switch S2
To enable DAI and configure fa3/3 on S2 as trusted, follow these steps:
Verify the connectivity:
Step 1
S2# show cdp neighbors
Capability Codes: R - Router, T - Trans Bridge, B - Source Route Bridge
Device ID
S1
S2#
Step 2
Enable DAI on VLAN 1, and verify the configuration:
S2# conf t
Enter configuration commands, one per line.
S2(config)# ip arp inspection vlan 1
S2(config)# end
S2# show ip arp inspection vlan 1
Source Mac Validation
Destination Mac Validation : Disabled
IP Address Validation
Vlan
----
Vlan
----
S2#
Configure interface fa3/3 as trusted:
Step 3
S2# conf t
Enter configuration commands, one per line.
S2(config)# interface fastEthernet 3/3
S2(config-if)# ip arp inspection trust
S2(config-if)# end
S2# show ip arp inspection interfaces
OL-6696-01
Forwarded
---------
1
2
DHCP Permits
ACL Permits
------------
-----------
1
2
Dest MAC Failures
-----------------
1
0
S - Switch, H - Host, I - IGMP, r - Repeater, P - Phone
Local Intrfce
Fas 3/3
Configuration
-------------
1
Enabled
ACL Logging
-----------
1
Deny
Dropped
DHCP Drops
-------
----------
2
2
Source MAC Failures
-------------------
0
IP Validation Failures
----------------------
0
Holdtme
Capability
120
R S I
End with CNTL/Z.
: Disabled
: Disabled
Operation
ACL Match
---------
---------
Active
DHCP Logging
------------
Deny
End with CNTL/Z.
Software Configuration Guide—Release 12.2(25)EW
Configuring Dynamic ARP Inspection
ACL Drops
----------
0
0
Platform
Port ID
WS-C4006
Fas 6/3
Static ACL
----------
34-7
Advertisement
Table of Contents
