Summary of ARP Configuration Tasks

Table 1 describes the ARP configuration tasks. You can perform the configuration tasks in any sequence based on service requirements.

For details on ARP security, see ARP Security Configuration in the S2720, S5700, and S6700 V200R019C10 Configuration Guide - Security.

**Table 1** ARP configuration tasks
Scenario	Description	Task
Adjusting aging parameters of dynamic ARP entries	Dynamic ARP entries are generated and maintained automatically using the ARP protocol. They can be aged, updated, or overwritten by static ARP entries. You can adjust the aging parameters of dynamic ARP entries based on service requirements.	Adjusting Aging Parameters of Dynamic ARP Entries
Configuring static ARP	Static ARP entries can be neither aged nor overwritten by dynamic ARP entries, ensuring communication security. Static ARP entries can be configured for critical devices (such as servers) on the switch.	Configuring Static ARP
Configuring proxy ARP	Proxy ARP falls into the following types and applies to different scenarios: Routed proxy ARP: enables hosts (without default gateway configured) to communicate when they are located on the same network segment but different physical networks (different broadcast domains). Intra-VLAN proxy ARP: enables hosts to communicate when they are located on the same network segment and same VLAN but user isolation is configured in the VLAN. Inter-VLAN proxy ARP: enables hosts to communicate when they are located on the same network segment but different VLANs.	Configuring Proxy ARP
Connecting a device to a network load balance (NLB) cluster	NLB is a Microsoft-developed feature running in a cluster of multiple Windows servers. You can enable a device to interwork with an NLB cluster using any of the following methods: Configure multi-interface ARP when the device is directly connected to the NLB cluster. Configure physical link loopback if the device does not support multi-interface ARP. Enable the device to dynamically learn ARP entries with multicast MAC addresses when the device connects to the NLB cluster through a Layer 2 switch.	Connecting a Device to an NLB Cluster (Using Multi-Interface ARP) Connecting a Device to an NLB Cluster (Using Physical Link Loopback) Configuring Dynamic Learning of ARP Entries with Multicast MAC Addresses
Configuring dynamic learning of ARP entries with multicast MAC addresses	When user terminals connected to a device have multicast MAC addresses, the device can be configured to dynamically learn ARP entries with multicast MAC addresses.	Configuring Dynamic Learning of ARP Entries with Multicast MAC Addresses
Configuring egress ARP inspection (EAI)	If most of users connected to a device obtain IP addresses through DHCP, EAI can be deployed on the device to perform the following: Reduce the number of broadcast ARP Request packets to mitigate the impact of ARP broadcast packets on the network. Prevent the users' IP and MAC addresses from being detected by other users, thereby avoiding ARP attacks.	Configuring Egress ARP Inspection
Disabling a device from packetizing ARP Miss messages	When the device is enabled to packetize ARP Miss messages, the device cannot respond to ICMP host unreachable packets. To enable the device to reply with ICMP host unreachable packets, disable the device from packetizing ARP Miss messages.	Disabling a Device from Packetizing ARP Miss Messages
Configuring ARP unicast probe	When a peer device cannot accept broadcast packets, you can configure ARP unicast probe on the local device. The local device can then send a unicast ARP Request packet to detect whether the peer device exists.	Configuring ARP Unicast Probe
Configuring IP address conflict detection	IP address conflict detection facilitates IP address management on a network and allows a device to quickly locate conflicting IP addresses.	Configuring IP Address Conflict Detection