ip arp-throttle exclude-mac

Excludes traffic from a device having the specified MAC address from ARP packet monitoring and filtering, and adds the MAC address to the Excluded MAC List in the output for the show ip arp-throttle command (page xx). You can exclude up to ten MAC addresses.

Syntax


[no] ip arp-throttle exclude-mac <MAC-addr [MAC-addr...MAC-addr]]>

Options


no

Where exclude-mac has been used to exclude traffic from a device having the specified MAC address for ARP packet monitoring and filtering, the no option restores ARP packet traffic from that device to IP ARP throttling, and removes the device MAC address from the Excluded MAC List .

Example

Exclude the clients having the following two MAC addresses from IP ARP-throttling, then use show ip arp-throttle to view the result in the Excluded MAC List:
  • 001018-0158c8

  • 01555d-c95d0a

switch(config)# ip arp-throttle exclude-mac 001018-0158c8 01555d-c95d0a

switch(config)# show ip arp-throttle
 Source MAC Based ARP Attack Detection Information

  Enabled               : Yes
  Remediation Mode      : Filter
  Threshold (pkt)       : 30
  Blacklist Age (sec)   : 300

  Excluded MAC List
  -----------------
  001018-0158c8
  01555d-c95d0a

  Clients in Blacklist  : 3
  Clients Being Tracked : 190

Restore the client having the MAC address 001018-0158c8 to IP ARP-throttling and then use show ip arp-throttle to view the result in the Excluded MAC List:

switch(config)# no ip arp-throttle exclude-mac 001018-0158c8

switch(config)# show ip arp-throttle
 Source MAC Based ARP Attack Detection Information

  Enabled               : Yes
  Remediation Mode      : Filter
  Threshold (pkt)       : 30
  Blacklist Age (sec)   : 300

  Excluded MAC List
  -----------------
  01555d-c95d0a

  Clients in Blacklist  : 4
  Clients Being Tracked : 189