Administrator Guide
Layer 2 Switching Commands 380
Syntax
ip arp inspection limit {none | rate pps [burst interval seconds]}
no ip arp inspection limit
• none — To set no rate limit.
• pps — The number of packets per second (Range: 0–300).
• seconds — The number of seconds (Range: 1–15).
Default Configuration
The default rate limit is 15 packets per second.
The default burst interval is 1 second.
Command Mode
Interface Configuration (gigabitethernet, port-channel, tengigabitethernet,
fortygigabitethernet) mode
User Guidelines
If Dynamic ARP Inspection packets are received on a port at a rate that
exceeds the threshold for a specified time, that port will be diagnostically
disabled. The threshold is configurable up to 300 pps, and the burst is
configurable up to 15s long. The default is 15 pps and 1s burst.
Use the no shut command to bring the port back in to service.
Example
console(config-if-Gi1/0/1)#ip arp inspection limit none
console(config-if-Gi1/0/1)#ip arp inspection limit rate 100 burst interval 2
ip arp inspection trust
The ip arp inspection trust command configures an interface as trusted for
Dynamic ARP Inspection. Use the no form of this command to configure an
interface as untrusted.
Syntax
ip arp inspection trust
no ip arp inspection trust