Filter
Top Products
Security
ARP Inspection
376 Cisco Small Business 200, 300 and 500 Series Managed Switch Administration Guide (Internal Version)
18
Interaction Between ARP Inspection and DHCP Snooping
If DHCP Snooping is enabled, ARP Inspection uses the DHCP Snooping Binding
database in addition to the ARP access control rules. If DHCP Snooping is not
enabled, only the ARP access control rules are used.
ARP Defaults
The following table describes the ARP defaults:
ARP Inspection Work Flow
To configure ARP Inspection:
STEP 1 Enable ARP Inspection and configure various options in the Security > ARP
Inspection > Properties page.
STEP 2 Configure interfaces as ARP trusted or untrusted in the Security > ARP Inspection
> Interface Setting page.
STEP 3 Add rules in the Security > ARP Inspection > ARP Access Control and ARP Access
Control Rules pages.
STEP 4 Define the VLANs on which ARP Inspection is enabled and the Access Control
Rules for each VLAN in the Security > ARP Inspection > VLAN Settings page.
Defining ARP Inspection Properties
To configure ARP Inspection:
Option Default State
Dynamic ARP Inspection Not enabled.
ARP Packet Validation Not enabled
ARP Inspection Enabled on
VLAN
Not enabled
Log Buffer Interval SYSLOG message generation for
dropped packets is enabled at 5
seconds interval