Procedure

  1. Enter system view.

    system-view

  2. Enable source MAC-based ARP attack detection and specify the handling method.

    arp source-mac { filter | monitor }

    By default, this feature is disabled.

  3. Set the threshold.

    arp source-mac threshold threshold-value

    The threshold is 30.

  4. Set the aging timer for ARP attack entries.

    arp source-mac aging-time time

    By default, the lifetime is 300 seconds.

  5. (Optional.) Exclude specific MAC addresses from this detection.

    arp source-mac exclude-mac mac-address&<1-n>

    By default, no MAC address is excluded.