How to do the Cisco 'ip sticky-arp' command in a Brocade/Foundry device and how does it operate?

dfeldmanjr
dfeldmanjr used Ask the Experts™
on
I recently discovered the 'ip sticky-arp' command in Cisco devices. However, I have a mesh network of Cisco/Foundry (Brocade) devices and do not know how to implement a similiar command for Foundry devices.

I would also like to know more regarding the operation of 'ip sticky-arp'. I imagine it does not release IP-MAC associations in the mac-address table until the source mac comes from a different port and then the switch annotates the change. However, I have heard something regarding Layer 3 ports do not operate in the same manner and switching devices on that Layer 3 port could cause a problem if 'ip sticky-arp' is applied to them.

Any information would be greatly apprecaited. Thank you.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®

"Sticky ARP prevents MAC address spoofing by ensuring that ARP entries (IP address, MAC address, and source VLAN) do not get overridden. The switch maintains ARP entries in order to forward traffic to end devices or other switches. ARP entries are usually updated periodically or modified when ARP broadcasts are received. During an attack, ARP broadcasts are sent using a spoofed MAC address (with a legitimate IP address) so that the switch learns the legitimate IP address with the spoofed MAC address and begins to forward traffic to that MAC address. With sticky ARP enabled, the switch learns the ARP entries and does not accept modifications received through ARP broadcasts. If you attempt to override the sticky ARP configuration, you will receive an error message. "

Foundry has port security and static arp entries, what is missing is the feature to notice the change via broadcast and alrm based on the attempt. Foundry is a decent device but if you want advanced features and functionality this is one of the descriminators with top of the line equipment.

harbor235 ;}

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial