ip arp-throttle exclude-mac
Excludes traffic from a device having the specified MAC address from ARP packet monitoring and filtering, and adds the MAC address to the Excluded MAC List in the output for the show ip arp-throttle command (page xx). You can exclude up to ten MAC addresses.
Syntax
[no] ip arp-throttle exclude-mac <MAC-addr [MAC-addr...MAC-addr]]>
Options
no
Where exclude-mac has been used to exclude traffic from a device having the specified MAC address for ARP packet monitoring and filtering, the no option restores ARP packet traffic from that device to IP ARP throttling, and removes the device MAC address from the Excluded MAC List .
Example
001018-0158c8
01555d-c95d0a
switch(config)# ip arp-throttle exclude-mac 001018-0158c8 01555d-c95d0a switch(config)# show ip arp-throttle Source MAC Based ARP Attack Detection Information Enabled : Yes Remediation Mode : Filter Threshold (pkt) : 30 Blacklist Age (sec) : 300 Excluded MAC List ----------------- 001018-0158c8 01555d-c95d0a Clients in Blacklist : 3 Clients Being Tracked : 190
Restore the client having the MAC address 001018-0158c8 to IP ARP-throttling and then use show ip arp-throttle to view the result in the Excluded MAC List:
switch(config)# no ip arp-throttle exclude-mac 001018-0158c8 switch(config)# show ip arp-throttle Source MAC Based ARP Attack Detection Information Enabled : Yes Remediation Mode : Filter Threshold (pkt) : 30 Blacklist Age (sec) : 300 Excluded MAC List ----------------- 01555d-c95d0a Clients in Blacklist : 4 Clients Being Tracked : 189