Filter
Top Products
xStack DES-3800 Series Layer 3 Stackable Fast Ethernet Managed Switch
276
Parameter Description
ACL Mode
This field will enable and disable the ACL mode for IP-MAC binding on the Switch, without
altering previously set configurations. When enabled, the Switch will automatically create two
ACL packet content mask entries which will aid the user in processing certain IP-MAC binding
entries created. The ACL entries created when this command is enabled, can only be
automatically installed if the Access Profile table has two entries available of the possible 9
entries allowed.
Trap/Log
This field will enable and disable the sending of trap log messages for IP-MAC binding. When
enabled, the Switch will send a trap log message to the SNMP agent and the Switch log when
an ARP packet is received that doesn’t match the IP-MAC binding configuration set on the
Switch.
From…To
Select a port or range of ports to set for IP-MAC Binding.
State
Use the pull-down menu to enable or disable these ports for IP-MAC Binding.
Strict
This mode provides a stricter method of control. If the user selects this mode, all packets will
be sent to the CPU, thus all packets will not be forwarded by the hardware until the S/W learns
the entries for the ports. The port will check ARP packets and IP packets by IP-MAC-PORT
Binding entries. When the packet is found by the entry, the MAC address will be set to
dynamic. If the packet is not found by the entry, the MAC address will be set to block. Other
packets will be dropped. The default mode is strict if not specified. The ports with strict mode
will capture unicast DHCP packets through the ACL module. If configuring IP-MAC binding port
enable in strict mode when IP-MAC binding DHCP_snoop is enabled, it will create an ACL
profile and the rules according to the ports. If there is not enough profile or rule space for ACL
profile or rule table, it will return a warning message and will not create ACL profile and rules to
capture unicast DHCP packets.
Loose
This mode provides a looser way of control. If the user selects loose mode, ARP packets and
IP Broadcast packets will be sent to the CPU. The packets will still be forwarded by the
hardware until a specific source MAC address is blocked by the software. The port will check
ARP packets and IP Broadcast packets by IP-MAC-PORT Binding entries. When the packet is
found by the entry, the MAC address will be set to dynamic. If the packet is not found by the
entry, the MAC address will be set to block. Other packets will be bypassed.
Allow Zero IP
Use the pull down menu to enable or disable this feature. Allow zero IP configures the state
which allows zero IP packets to bypass.
Forward_dhcppkt
By default, the DHCP packet with broadcast DA will be flooded. When set to disable, the
broadcast DHCP packet received by the specified port will not be forwarded. This setting is
effective when DHCP snooping is enabled, under the case that DHCP packet which has been
trapped by the CPU needs to be forwarded by the software. This setting controls the
forwarding behavior in this situation.
Max entry
Specifies the maximum number of IP-MAC-Port Binding entries. By default, per port max entry
is 5.