To Next Page

To Previous Page

clear arpinspection validate

SecureStack C2 Configuration Guide 17-27

clear arpinspection validate

UsethiscommandtoremoveadditionaloptionalARPvalidationparametersthatwerepreviously

configured.

Syntax

clear arpinspection validate {[src-mac] [dst-mac] [ip]}

Parameters

Defaults

Allparametersareoptional,butatleastoneparametermustbespecified.

Mode

Switchcommand,read‐write.

Usage

ThiscommandremovespreviouslyconfiguredadditionalvalidationofARPpacketsbyDAI,

beyondthebasicvalidationthattheARPpacket’ssenderMACaddressandsenderIPaddress

matchanentryintheDHCPsnoopingbindingsdatabase.

Usetheshowarpinspectionvlancommandtodisplaythecurrentstatusoftheadditional

validation

rules.

Example

Thisexampleremovesall3additionalvalidationconditions.

C2(su)->clear arpinspection validate src-mac dst-mac ip

clear arpinspection vlan

UsethiscommandtodisabledynamicARPinspectionononeormoreVLANsortodisable

loggingofinvalidARPpacketsononeormoreVLANs.

Syntax

clear arpinspection vlan vlan-range [logging]

Parameters

src‐mac Clear,orremove,theverificationthatthesenderMACaddressequals

thesourceMACaddressintheEthernetheader.

dst‐mac Clear,orremove,theverificationthatthetargetMACaddressequals

thedestinationMACaddressinthe Ethernetheader.

ip Clear,orremove,checkingtheIPaddressanddroppingARP

packets

withaninvalidaddress.

vlan‐range SpecifiestheVLANorrangeofVLANsonwhichtodisabledynamic

ARPinspection.

logging (Optional)DisableloggingofinvalidARPpacketsforthespecified

VLANs.

Enterasys SecureStack C2 C2G170-24 User Manual

Other manuals for Enterasys SecureStack C2 C2G170-24