Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document.
Note: Even the most advanced machine translation cannot match the quality of professional translators.
Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Configuring Defense Against ARP Spoofing Attacks
Pre-configuration Tasks
If an attacker sends bogus ARP packets to a network device or user host, the device or host modifies the local ARP entries, leading to packet forwarding failures. The function of defense against ARP spoofing attacks can prevent such attacks.
Before configuring defense against ARP spoofing attacks, connect interfaces and set physical parameters for the interfaces to ensure that the physical status of the interfaces is Up.
- Configuring ARP Entry Fixing
- Configuring DAI
- Configuring ARP Gateway Anti-Collision
- Configuring Gratuitous ARP Packet Discarding
- Configuring Gratuitous ARP Packet Sending
- Configuring MAC Address Consistency Check in an ARP Packet
- Configuring Strict ARP Learning
- Verifying the ARP Spoofing Attack Defense Configuration