11-32
Configuring Advanced Threat Protection
Dynamic IP Lockdown
■ A source is considered “trusted” for all VLANs if it is seen on any VLAN
without DHCP snooping enabled.
■ On the HP Switch series E3800, dynamic IP lockdown is supported on a
port configured for statically configured port-based ACLs.
Switch Number of Hosts Comments
Switches using K and KA
code bases
64 bindings per port
Up to 4096 manual bindings per
switch
This limit is shared with DHCP snooping because they
both use the snooping database.
3400/2800 32 bindings per port; up to 512
manual bindings
Up to 32 VLANs with DHCP
snooping enabled
This is not guaranteed as the hardware resources are
shared with QoS.
2610 8 bindings per port; up to 512
manual bindings
Globally 118 to 125 hosts
Up to 8 VLANs with DHCP
snooping enabled
This is not guaranteed as the hardware resources are
shared with IDM ACLs.
The number of global bindings available is based on the
number o f DHCP snooping-enabled VLANS (1-8).
2600 8 bindings per port; up to 512
manual bindings
Up to 8 VLANs with DHCP
snooping enabled
This is not guaranteed as the hardware resources are
shared with QoS.
To Next Page
Loading...
Need help?
General