Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
325
Views
0
Helpful
1
Replies

Arp question

darkbeatzz
Level 1
Level 1

‎08-15-2008 06:23 AM - edited ‎03-06-2019 12:49 AM

Hi,

Is there a way that you can stop arp replies on a cisco switch?

Labels:
0 Helpful
1 Reply 1

Giuseppe Larosa
Hall of Fame
Hall of Fame

‎08-15-2008 06:44 AM

Hello Mick,

I try to guess:

if your router or switch is answering ARP requests for IP addresses different then their own you need to disable proxy-arp

int vlan 5

no ip proxy-arp

if you want the switch to never answer to ARP requests even if for their own IP address is a different matter.

In this case you should use a VACL and deny traffic with ethertype = ARP protocol

0x0806 ARP, Address Resolution Protocol.

to be sure in both directions

However, not all switch platforms allow to use ethertype based ACL (catOS allows I think)

in this case all legitimate systems will need a static ARP entry to communicate with the switch

Hope to help

Giuseppe

0 Helpful
Customers Also Viewed These Support Documents