11-33
Configuring Advanced Threat Protection
Dynamic IP Lockdown
■ A source is considered “trusted” for all VLANs if it is seen on any VLAN
without DHCP snooping enabled.
■ On the HP switch series 5400 and 3500, dynamic IP lockdown is supported
on a port configured for statically configured port-based ACLs.
Switch Number of Hosts Comments
3500/5400 64 bindings per port
Up to 4096 manual bindings per
switch
This limit is shared with DHCP snooping because they
both use the snooping database.
3400/2800 32 bindings per port; up to 512
manual bindings
Up to 32 VLANs with DHCP
snooping enabled
This is not guaranteed as the hardware resources are
shared with QoS.
2610 8 bindings per port; up to 512
manual bindings
Globally 118 to 125 hosts
Up to 8 VLANs with DHCP
snooping enabled
This is not guaranteed as the hardware resources are
shared with IDM ACLs.
The number of global bindings available is based on the
number o f DHCP snooping-enabled VLANS (1-8).
2600 8 bindings per port; up to 512
manual bindings
Up to 8 VLANs with DHCP
snooping enabled
This is not guaranteed as the hardware resources are
shared with QoS.
To Next Page
Loading...
Need help?
General
