No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Feature Description - IP Services 01

NE05E and NE08E V300R003C10SPC500

This is NE05E and NE08E V300R003C10SPC500 Feature Description - IP Services
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Static ARP Application

Static ARP Application

Networking Description

As shown in Figure 2-15, the intranet of an organization communicates with the Internet through the gateway PE. To prevent network attackers from obtaining private information by modifying ARP entries on the PE, deploy static ARP.

Figure 2-15 Static ARP networking

  • Before static ARP is deployed, the PE dynamically learns and updates ARP entries using ARP messages. However, dynamic ARP entries can be aged and overwritten by new dynamic ARP entries. Therefore, network attackers can send fake ARP messages to modify ARP entries on the PE to obtain the private information of the organization.
  • After static ARP is deployed, ARP entries on the PE are manually configured and maintained by a network administrator. Static ARP entries are neither aged nor overwritten by dynamic ARP entries. Therefore, deploying static ARP can prevent network attackers from sending fake ARP messages to modify ARP entries on the PE, and information security is ensured.

Feature Deployment

Deploy static ARP on the PE to set up fixed mapping between IP and MAC addresses of hosts on the intranet. This can prevent network attackers from sending fake ARP messages to modify ARP entries on the PE, ensuring the stability and security of network communication and minimizing the risk of private information being stolen.

Translation
Download
Updated: 2019-01-14

Document ID: EDOC1100058931

Views: 10110

Downloads: 17

Average rating:
This Document Applies to these Products
Related Version
Related Documents
Share
Previous Next