No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

NE40E V800R010C10SPC500 Feature Description - Security 01

This is NE40E V800R010C10SPC500 Feature Description - Security
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
ARP Miss Message Rate Limit

ARP Miss Message Rate Limit

Background Information

An Address Resolution Protocol (ARP) Miss message is reported by a device to the upper-layer software when the device fails to find a matching ARP entry for IP datagram forwarding. After receiving the ARP Miss message, the upper-layer software generates a fake ARP entry and sends it to the device. The upper-layer software then sends an ARP request packet to the destination IP address of the ARP Miss message to request the destination MAC address. After receiving the ARP reply packet, the upper-layer software learns address information in the packet and sends the actual ARP entry to the device to replace the fake ARP entry. The device can then forward IP datagrams. If the device receives a large number of ARP Miss messages, these messages consume a lot of CPU resources, and the processing of other services is affected.

This problem can be solved by configuring an ARP Miss message rate limit on the device. After the ARP Miss message rate limit is configured, the device counts the number of received ARP Miss messages. If the number of ARP Miss messages received in a specified period exceeds an upper limit, the device does not process the excess ARP Miss messages.

Related Concepts

ARP Miss message rate limit can be implemented based on one of the following fields in a packet:
  • Source IP addresses: This mode allows you to configure an ARP Miss message rate limit for a specified source IP address or all source IP addresses. If no source IP address is specified, a configured ARP Miss message rate limit is effective for all source IP addresses. This prevents user packets from consuming excessive CPU resources.

  • Virtual local area network (VLAN) IDs: If a device in a VLAN receives a large number of ARP Miss messages in a short period, you can configure ARP Miss message rate limit for this VLAN, preventing user packets in the VLAN from consuming excessive CPU resources.

Usage Scenario

ARP Miss message rate limit is deployed on access and aggregation devices.

Benefits

ARP Miss message rate limit helps prevent CPU exhaustion.

Translation
Download
Updated: 2019-01-03

Document ID: EDOC1100055047

Views: 12698

Downloads: 31

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next