HP Switch 5800 - What is the size of the “arp anti-attack source-mac” table?
Title:
HP Switch 5800 - What is the size of the “arp anti-attack source-mac” table?
SoftwareFirmware Version:
5.20 R1109
Product:
0235A36S S5800-32C-PWR
0235A36U S5800-32C
0235A36W S5800-60C-PWR
0235A374 H3C S5800-32F
0235A378 S5800-56C-PWR 48BT POE
0235A379 S5800-56C
Fix:
The size of the “ARP anti-attack source-mac” table is 100,000. When the table gets full then the switch will stop processing ARP attacks. The other command options that work with this are the following :
[H3C]arp anti-attack source-mac ?
aging-time Specify anti-attack aging time
exclude-mac Specify exclude MAC address from anti-attack check
filter Enable ARP anti-attack filter mode
monitor Enable ARP anti-attack monitor mode
threshold Specify anti-attack check threshold
The default aging-time is 300 seconds and the default threshold is 50. It is recommended that you leave the threshold at the default setting. If you set the threshold to low then you will get ARP attack indications from your routers and gateways in your table that are not valid ARP attacks. You can also use the “exclude-mac” option to exclude these devices from the ARP anti-attack detection. When the aging time for a specific entry in the table is reached it is removed from the table so it is very unlikely that the table will ever be full.
Symptom:
1) What is the size of the ARP anti-attack source-mac table?
2) What happens when the ARP anti-attack source-mac table gets full?
Fact:
ARP
anti-attack defense
source-mac table size