no ip arp gratuitous
--turns off sending of gratious arps, which I think are sent every 45
seconds by default
no ip arp incomplete entries
--When you are "gleaning" (or trying to resolve MAC from some IP address)
you will temporarily create an Incomplete entry, until it is timed out or
resolved. If arp attacks are your concern, you can turn off this temporary
creation.
no ip arp proxy
--Well, this instructs router not to answer arp requests for non-local
destinations. E.g. if the interface address is 10.0.0.0/24 and ARP request
is for 20.0.0.1, normally the router would respond that yes, I am MAC
address for 20.0.0.1 and the host would send all of the frames to the router
- basically not requiring default gateway. With proxy arp turned off, router
can only answer requests for 10.0.0.0/24 (it's local subnet)
On Thu, Apr 16, 2009 at 6:36 PM, rakesh m <raaki.88_at_gmail.com> wrote:
> i got a doubt .. what does these commands are used for ?
>
> no ip arp gratuitous
> no ip arp incomplete entries
> no ip arp proxy
>
>
> thank you
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>
-- Pavel Bykov ---------------- Don't forget to help stopping the braindumps, use of which reduces value of your certifications. Sign the petition at http://www.stopbraindumps.com/ Blogs and organic groups at http://www.ccie.netReceived on Fri Apr 17 2009 - 17:48:49 ART
This archive was generated by hypermail 2.2.0 : Mon May 04 2009 - 07:39:12 ART