Manualshelf

HP VPN Firewall Appliances Attack Protection Command Reference

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
41424344454647484950
43
arp anti-attack source-mac threshold
Use arp anti-attack source-mac threshold to configure the threshold for source MAC-based ARP attack
detection. If the number of ARP packets from a MAC address within 5 seconds exceeds this threshold, the
device recognizes this as an attack.
Use undo arp anti-attack source-mac threshold to restore the default.
Syntax
arp anti-attack source-mac threshold threshold-value
undo arp anti-attack source-mac threshold
Default
The threshold for source MAC-based ARP attack detection is 50.
Views
System view
Default command level
2: System level
Parameters
threshold-value: Specified the threshold for source MAC-based ARP attack detection. The value is in the
range of 10 to 100.
Examples
# Configure the threshold for source MAC-based ARP attack detection as 30.
<Sysname> system-view
[Sysname] arp anti-attack source-mac threshold 30
display arp anti-attack source-mac
Use display arp anti-attack source-mac to display ARP attack entries detected by source MAC-based
ARP attack detection.
Syntax
display arp anti-attack source-mac [ interface interface-type interface-number ] [ | { begin | exclude |
include } regular-expression ]
Views
Any view
Default command level
1: Monitor level
Parameters
interface interface-type interface-number: Displays ARP attack entries detected on the interface.
|: Filters command output by specifying a regular expression. For more information about regular
expressions, see Getting Started Guide.
begin: Displays the first line that matches the specified regular expression and all lines that follow.