1. Manuals
  2. Brands
  3. Cisco Manuals
  4. Switch
  5. IAD2423-16FXS-RF - IAD 2423 Router
  6. System message manual

Sw_Dai Messages - Cisco IAD2423-16FXS-RF - IAD 2423 Router System Message Manual

Ethernet access switches
Hide thumbs
Table of Contents

Advertisement

SW_DAI Messages

SW_DAI Messages
This section contains the dynamic ARP inspection (DAI) messages.
Note
Error Message SW_DAI-4-ACL_DENY: [dec] Invalid ARPs ([chars]) on [chars], vlan
[dec].([[enet]/[chars]/[enet]/[chars]/[time-of-day]]).
Error Message SW_DAI-4-DHCP_SNOOPING_DENY: [dec] Invalid ARPs ([chars]) on [chars],
vlan [dec].([[enet]/[chars]/[enet]/[chars]/[time-of-day]]).
Error Message SW_DAI-6-DHCP_SNOOPING_PERMIT: [dec] ARPs ([chars]) on [chars], vlan
[dec].([[enet]/[chars]/[enet]/[chars]/[time-of-day]]).
Cisco ME 3400E, ME 3400, and ME 2400 Ethernet Access Switch System Message Guide
2-78
These messages apply only to the Cisco ME 3400E and ME 3400 switches.
This message means that the switch has received ARP packets considered invalid by
Explanation
ARP inspection. The packets are erroneous, and their presence shows that administratively denied
packets were seen in the network. This log message appears when ACLs either explicitly or
implicitly deny packets (with static ACL configuration). These packets show attempted
man-in-the-middle attacks in the network. The first [dec] is the number of invalid ARP packets. The
first [chars] is either Req (request) or Res (response), and the second [chars] is the short name of the
ingress interface. The second [dec] is the ingress VLAN ID.
[enet]/[chars]/[enet]/[chars]/[time-of-day] is the MAC address of the sender, the IP address of the
sender, the MAC address of the target, the IP address of the target, and the time of day.
Recommended Action
No action is required.
This message means that the switch has received ARP packets considered invalid by
Explanation
ARP inspection. The packets are erroneous, and their presence might show attempted
man-in-the-middle attacks in the network. This log message appears when the sender's IP and MAC
address binding for the received VLAN is not in the DHCP snooping database. The first [dec] is the
number of invalid ARP packets. The first [chars] is either Req (request) or Res (response), and the
second [chars] is the short name of the ingress interface. The second [dec] is the ingress VLAN ID.
[enet]/[chars]/[enet]/[chars]/[time-of-day] is the MAC address of the sender, the IP address of the
sender, the MAC address of the target, the IP address of the target, and the time of day.
Recommended Action
No action is required.
Explanation
This message means that the switch has received ARP packets that have been permitted
because the sender's IP and MAC address match the DHCP snooping database for the received
VLAN. The first [dec] is the number of valid ARP packets. The first [chars] is either Req (request)
or Res (response), and the second [chars] is the short name of the ingress interface. The second [dec]
is the ingress VLAN ID. [enet]/[chars]/[enet]/[chars]/[time-of-day] is the MAC address of the
sender, the IP address of the sender, the MAC address of the target, the IP address of the target, and
the time of day.
No action is required.
Recommended Action
Chapter 2
Messages and Recovery Procedures
OL-9641-04

Advertisement

Table of Contents
loading

Related Manuals for Cisco IAD2423-16FXS-RF - IAD 2423 Router

Related Content for Cisco IAD2423-16FXS-RF - IAD 2423 Router

This manual is also suitable for:

Me-2400-24ts-dMe 3400eMe 2400Me 3400 series

Table of Contents