Cisco Systems WSC4500X16SFP Manual De Usuario
C H A P T E R
32-1
Software Configuration Guide—Release 12.2(25)SG
OL-7659-03
32
Understanding and Configuring Dynamic ARP
Inspection
Inspection
This chapter describes how to configure Dynamic ARP Inspection (DAI) on the Catalyst 4500 series
switch.
switch.
This chapter includes the following major sections:
•
•
Note
For complete syntax and usage information for the switch commands used in this chapter, refer to the
Catalyst 4500 Series Switch Cisco IOS Command Reference and related publications at
Catalyst 4500 Series Switch Cisco IOS Command Reference and related publications at
Overview of Dynamic ARP Inspection
Dynamic ARP Inspection (DAI) is a security feature that validates Address Resolution Protocol (ARP)
packets in a network. DAI allows a network administrator to intercept, log, and discard ARP packets with
invalid MAC-IP pairs. This capability protects the network from certain “man-in-the-middle” attacks.
packets in a network. DAI allows a network administrator to intercept, log, and discard ARP packets with
invalid MAC-IP pairs. This capability protects the network from certain “man-in-the-middle” attacks.
This section contains the following subsections:
•
•
•
•
•
•
•