Home » Netgear Manuals » Hubs & Switches » Netgear XSM4348CS » Manual Viewer

Netgear XSM4348CS CLI Manual Software Version 12.x - Page 547

Dynamic ARP Inspection Commands

Add to My Manuals
Save this manual to your list of manuals

Page 547 highlights

M4300 Intelligent Edge Series Fully Managed Stackable Switches Term Definition MAC Address The MAC address for the entry that is added. IP Address The IP address of the entry that is added. Type Entry type; statically configured from CLI or dynamically learned from DHCP Snooping. VLAN VLAN for the entry. Interface IP address of the interface in unit/slot/port format. Command example: (NETGEAR Switch) #show ip source binding MAC Address 00:00:00:00:00:08 00:00:00:00:00:09 00:00:00:00:00:0A IP Address 1.2.3.4 1.2.3.4 1.2.3.4 Type dhcp-snooping dhcp-snooping dhcp-snooping Vlan ----- 2 3 4 Interface 1/0/1 1/0/1 1/0/1 Dynamic ARP Inspection Commands Dynamic ARP Inspection (DAI) is a security feature that rejects invalid and malicious ARP packets. DAI prevents a class of man-in-the-middle attacks, where an unfriendly station intercepts traffic for other stations by poisoning the ARP caches of its unsuspecting neighbors. The miscreant sends ARP requests or responses mapping another station's IP address to its own MAC address. DAI relies on DHCP snooping. DHCP snooping listens to DHCP message exchanges and builds a binding database of valid MAC addresses, IP addresses, VLANs, and interfaces. When DAI is enabled, the switch drops ARP packets whose sender MAC address and sender IP address do not match an entry in the DHCP snooping bindings database. You can optionally configure additional ARP packet validation. ip arp inspection vlan Use this command to enable Dynamic ARP Inspection on a list of comma-separated VLAN ranges. Default Format Mode Disabled ip arp inspection vlan vlan-list Global Config Switching Commands 547 CLI Command Reference Manual

Section	Page
M4300 Intelligent Edge Series Fully Managed Stackable Switches	1
Contents	4
1 About the Managed Switch Software	9
Scope	10
Product Concept	10
2 Using the Command-Line Interface	11
Command Syntax	12
Command Conventions	12
Common Parameter Values	13
unit/slot/port Naming Convention	14
Using the No Form of a Command	15
Executing Show Commands	15
CLI Output Filtering	15
3 Software Modules	17
Command Modes	18
Command Completion and Abbreviation	23
CLI Error Messages	23
CLI Line-Editing Conventions	24
Using CLI Help	25
Access the CLI	26
4 Stacking Commands	27
Dedicated Port Stacking Commands	28
Stack Port Commands	40
Stack Firmware Synchronization Commands	47
Nonstop Forwarding Commands for Stack Configuration	48
5 Management Commands	53
Configure the Switch Management CPU	54
CPU Queue Commands	57
Management Interface Commands	58
IPv6 Management Commands	65
Console Port Access Commands	70
Telnet Commands	72
Secure Shell Commands	77
Management Security Commands	80
Management Access Control List Commands	81
Hypertext Transfer Protocol Commands	85
Access Commands	93
User Account Commands	94
Per-Command Authorization	99
Exec Authorization	99
SNMP Commands	126
RADIUS Commands	138
TACACS+ Commands	156
Configuration Scripting Commands	161
Prelogin Banner, System Prompt, and Host Name Commands	163
OpenFlow Commands	165
Cloud Managed Commands	176
Application Commands	180
6 Utility Commands	183
AutoInstall Commands	184
CLI Output Filtering Commands	188
Dual Image Commands	190
System Information and Statistics Commands	191
Switch Services Commands	220
Logging Commands	223
Email Alerting and Mail Server Commands	231
System Utility and Clear Commands	237
Simple Network Time Protocol Commands	251
Time Zone Commands	257
DHCP Server Commands	261
DNS Client Commands	274
IP Address Conflict Commands	280
Serviceability Packet Tracing Commands	281
Support Mode Commands	317
Cable Test Command	319
Power Management Commands	320
USB commands	322
sFlow Commands	323
Switch Database Management Template Commands	331
Green Ethernet Commands	334
Remote Monitoring Commands	343
Statistics Application Commands	358
7 Switching Commands	366
Port Configuration Commands	368
Expandable Port Configuration Commands for 40G Ports on the APM402XL Port Card	376
Port Configuration for the Third-Party TPM404H HDMI Port Card	378
Port Link Flap Commands	379
Spanning Tree Protocol Commands	381
Loop Protection Commands	414
VLAN Commands	417
Switch Port Commands	429
Double VLAN Commands	433
Private VLAN Commands	437
Voice VLAN Commands	439
Precision Time Protocol Commands	443
Provisioning (IEEE 802.1p) Commands	444
Asymmetric Flow Control	445
Protected Ports Commands	446
Private Group Commands	448
GARP Commands	450
GVRP Commands	452
GMRP Commands	454
Port-Based Network Access Control Commands	457
802.1X Supplicant Commands	477
Storm-Control Commands	481
Link Dependency Commands	490
Link Local Protocol Filtering Commands	492
MRP Commands	493
MMRP Commands	494
MVRP Commands	498
Port-Channel/LAG (802.3ad) Commands	501
Port Mirroring Commands	521
Static MAC Filtering Commands	524
DHCP L2 Relay Agent Commands	528
DHCP Client Commands	536
DHCP Snooping Configuration Commands	537
Dynamic ARP Inspection Commands	547
MVR Commands	554
IGMP Snooping Configuration Commands	562
IGMP Snooping Querier Commands	576
MLD Snooping Commands	581
MLD Snooping Querier Commands	591
Port Security Commands	596
LLDP (802.1AB) Commands	601
LLDP-MED Commands	610
Denial of Service Commands	618
MAC Database Commands	628
ISDP Commands	631
Interface Error Disabling and Auto Recovery Commands	638
UniDirectional Link Detection Commands	641
Link Debounce Commands	645
Bonjour Commands	646
8 Routing Commands	648
Address Resolution Protocol Commands	649
IP Routing Commands	656
Routing Policy Commands	682
Router Discovery Protocol Commands	692
Virtual LAN Routing Commands	696
Virtual Router Redundancy Protocol Commands	699
DHCP and BootP Relay Commands	709
IP Helper Commands	711
Open Shortest Path First Commands	719
General OSPF Commands	719
OSPF Interface Commands	739
IP Event Dampening Commands	745
OSPF Graceful Restart Commands	748
OSPFv2 Stub Router Commands	751
OSPF Show Commands	752
Routing Information Protocol Commands	774
ICMP Throttling Commands	782
9 Captive Portal Commands	785
Captive Portal Global Commands	786
Captive Portal Configuration Commands	791
Captive Portal Status Commands	801
Captive Portal Client Connection Commands	803
Captive Portal Interface Commands	806
Captive Portal Local User Commands	807
Captive Portal User Group Commands	815
10 IPv6 Commands	817
Tunnel Interface Commands	818
Loopback Interface Commands	820
IPv6 Routing Commands	821
OSPFv3 Commands	857
Global OSPFv3 Commands	858
OSPFv3 Interface Commands	874
OSPFv3 Graceful Restart Commands	879
OSPFv3 Stub Router Commands	883
OSPFv3 Show Commands	884
DHCPv6 Commands	901
DHCPv6 Snooping Configuration Commands	912
11 Quality of Service Commands	923
Class of Service Commands	924
Differentiated Services Commands	932
DiffServ Class Commands	934
DiffServ Policy Commands	943
DiffServ Service Commands	949
DiffServ Show Commands	950
MAC Access Control List Commands	956
IP Access Control List Commands	965
IPv6 Access Control List Commands	981
Time Range Commands for Time-Based ACLs	990
Auto-Voice over IP Commands	993
iSCSI Optimization Commands	997
12 Data Center Commands	1004
Priority-Based Flow Control Commands	1005
13 IP Multicast Commands	1010
Multicast Commands	1011
DVMRP Commands	1019
PIM Commands	1024
Internet Group Message Protocol Commands	1042
IGMP Proxy Commands	1050
14 IPv6 Multicast Commands	1056
IPv6 Multicast Forwarder	1057
IPv6 PIM Commands	1061
IPv6 MLD Commands	1076
IPv6 MLD-Proxy Commands	1084
15 Power over Ethernet Commands	1090
About PoE	1091
PoE Commands	1091
16 Switch Software Log Messages	1102
Core	1103
Utilities	1105
Management	1108
Switching	1112
QoS	1119
Routing/IPv6 Routing	1120
Multicast	1123
Stacking	1128
Technologies	1128
O/S Support	1131