4000 Router Series Security Command Reference

ManualsBrandsHP ManualsNetwork HardwareHP MSR3024 TAA-compliant AC Router

401

402

403

404

405

406

407

408

409

410

399

Parameters

mac-address&<1-n>: MAC address list. The mac-address argument indicates an excluded MAC address

in the format H-H-H. &<1-n> indicates the number of excluded MAC addresses that you can configure.

The value of the n argument is 64.

Usage guidelines

If you do not specify any MAC address, the undo arp source-mac exclude-mac command removes all

excluded MAC addresses.

Examples

# Exclude a MAC address from source MAC-based ARP attack detection.

<Sysname> system-view

[Sysname] arp source-mac exclude-mac 2-2-2

arp source-mac threshold

Use arp source-mac threshold to configure the threshold for source MAC-based ARP attack detection. If

the number of ARP packets sent from a MAC address within 5 seconds exceeds this threshold, the device

recognizes this as an attack.

Use undo arp source-mac threshold to restore the default.

Syntax

arp source-mac threshold threshold-value

undo arp source-mac threshold

Default

The threshold for source MAC-based ARP attack detection is 30.

Views

System view

Predefined user roles

network-admin

Parameters

threshold-value: Specifies the threshold for source MAC-based ARP attack detection. The value range is

1 to 5000.

Examples

# Configure the threshold for source MAC-based ARP attack detection as 30.

<Sysname> system-view

[Sysname] arp source-mac threshold 30

display arp source-mac

Use display arp source-mac to display ARP attack entries detected by source MAC-based ARP attack

detection.

Syntax

MSR2000/MSR3000: