Programmable Internetworking & Communication Operating System Docs ... Click Spaces -> Space Directory to see docs for all releases ...
Page tree
Skip to end of metadata
Go to start of metadata

The set protocols arp inspection vlan access-list command applies an ARP inspection access list to a VLAN.

Command Syntax

set protocols arp inspection vlan <vlan-id> access-list <acl-name>




vlan <vlan-id>

Specifies a VLAN ID. The value is an integer that ranges from 1 to 4094.

access-list <acl-name>

Specifies an access list name. The value is a string.

Usage Guidelines

A VLAN can be configured with multiple access-lists, and the system will check through the access-lists of the VLAN to match an ARP entry upon receiving an ARP packet. If no ARP entry is matched, the ARP packet will be dropped.


Configure the access-list first and then apply to a VLAN, otherwise it will prompt access-list does not exist when committing this command.


  • Apply the ARP inspection access list test1 to VLAN 100.
admin@Xorplus# set protocols arp inspection vlan 100 access-list test1
admin@Xorplus# commit

  • No labels