How to configure ARP Miss message rate limit on S and E series switches

For S and E series switches (except S1700 switches): You can configure the rate limit on ARP Miss messages in one of the following methods as required (supported by the S5720SI/S5720S-SI, S5720EI, S5720HI, S6720EI, and all S series modular switches, but not supported by E series switches):

- Limiting the rate on ARP Miss messages based on source IP addresses
# Set the maximum number of ARP Miss messages triggered by the IP address 10.0.0.1 to 100, and by other source IP addresses to 60.
[HUAWEI] arp-miss speed-limit source-ip maximum 60
[HUAWEI] arp-miss speed-limit source-ip 10.0.0.1 maximum 100
- Limiting the rate on ARP Miss messages globally, in a VLAN, or on an interface
# Configure the device to process a maximum of 200 ARP Miss messages triggered by IP packets from the Layer 2 interface GE0/0/1 in 10 seconds.
[HUAWEI] interface gigabitethernet 0/0/1
[HUAWEI-GigabitEthernet0/0/1] arp-miss anti-attack rate-limit enable
[HUAWEI-GigabitEthernet0/0/1] arp-miss anti-attack rate-limit packet 200 interval 10

Scroll to top