OcNOS-SP : System Management Guide : System Management Command Reference : Access Control List Commands : arp access-list response
arp access-list response
Use this command to configure an ARP access control entry in an ARP access control list (ACL).
This command determines whether to accept or drop an ARP response packet based on the configured match criteria.
Use the no form of this command to remove an ACL specification.
Note: Configuring the same filter again with a change of sequence number or change of action will result in updating the sequence number or filter action.
Command Syntax
(<1-268435453>|)(deny|permit) response ip (A.B.C.D/M|A.B.C.D A.B.C.D|host A.B.C.D|any) (A.B.C.D/M|A.B.C.D A.B.C.D|host A.B.C.D|any) mac (any | ((XX-XX-XX-XX-XX-XX|XX:XX:XX:XX:XX:XX|XXXX.XXXX.XXXX) -XX-XX-XX-XX|XX:XX:XX:XX:XX:XX|XXXX.XXXX.XXXX)) | (host (XX-XX-XX-XX-XX-XX|XX:XX:XX:XX:XX:XX|XXXX.XXXX.XXXX))) (any | ((XX-XX-XX-XX-XX-XX|XX:XX:XX:XX:XX:XX|XXXX.XXXX.XXXX) (XX-XX-XX-XX-XX-XX|XX:XX:XX:XX:XX:XX|XXXX.XXXX.XXXX)) | (host (XX-XX-XX-XX-XX-XX|XX:XX:XX:XX:XX:XX|XXXX.XXXX.XXXX)))(vlan <1-4094>|) (inner-vlan <1-4094>|)
no (<1-268435453>|)(deny|permit) response ip (A.B.C.D/M|A.B.C.D A.B.C.D|host A.B.C.D|any) (A.B.C.D/M|A.B.C.D A.B.C.D|host A.B.C.D|any) mac (any | ((XX-XX-XX-XX-XX-XX|XX:XX:XX:XX:XX:XX|XXXX.XXXX.XXXX) -XX-XX-XX-XX|XX:XX:XX:XX:XX:XX|XXXX.XXXX.XXXX)) | (host (XX-XX-XX-XX-XX-XX|XX:XX:XX:XX:XX:XX|XXXX.XXXX.XXXX))) (any | ((XX-XX-XX-XX-XX-XX|XX:XX:XX:XX:XX:XX|XXXX.XXXX.XXXX) (XX-XX-XX-XX-XX-XX|XX:XX:XX:XX:XX:XX|XXXX.XXXX.XXXX)) | (host (XX-XX-XX-XX-XX-XX|XX:XX:XX:XX:XX:XX|XXXX.XXXX.XXXX)))(vlan <1-4094>|) (inner-vlan <1-4094>|)
Parameters
<1-268435453>
ARP ACL sequence number.
deny
Drop the packet.
permit
Accept the packet.
response
ARP response
A.B.C.D/M
Source/destination IP prefix and length.
A.B.C.D A.B.C.D
 
Source/destination IP address and mask.
host A.B.C.D
A single source/destination host IP address.
any
Match any source/destination IP address.
mac
MAC address configuration.
any
Match any source/destination MAC address.
XX-XX-XX-XX-XX-XX
 
Source/destination MAC address (Option 1).
XX:XX:XX:XX:XX:XX
 
Source/destination MAC address (Option 2).
XXXX.XXXX.XXXX
Source/destination MAC address (Option 3).
XX-XX-XX-XX-XX-XX
 
Source/destination wildcard (Option 1).
XX:XX:XX:XX:XX:XX
 
Source/destination wildcard (Option 2).
XXXX.XXXX.XXXX
Source/destination wildcard (Option 3).
vlan <1-4094>
VLAN identifier.
inner-vlan <1-4094>
 
Inner VLAN identifier.
Command Mode
ARP access-list mode
Applicability
This command was introduced in OcNOS version 3.0.
Example
#configure terminal
(config)#arp access-list arp1
(config-arp-acl)#10 permit response ip 1.1.1.0/24 mac 0000.0000.0001 FFFF.FFFF.FFF0
(config-arp-acl)#no 10
 
 
Last modified date: 10/19/2023