The display deception arp-proxy command displays the interface IP address of the switch and the target IP addresses in the proxy ARP requests sent to the switch in the online IP address table.
The switch cannot scan its interface IP address and the target IP addresses in the proxy ARP requests sent to the switch. Therefore, the switch may lure the traffic destined for these IP addresses to a Decoy. To solve this problem, after the switch receives ARP requests destined for these IP addresses, the switch returns ARP reply packets, and the management plane instructs the deception module to add the target IP addresses in ARP requests to the online IP address table.
# Display the interface IP address of the switch and the target IP addresses in the proxy ARP requests sent to the switch in the online IP address table.
<HUAWEI> display deception arp-proxy ------------------------------------------------------------------------------------------------------- Current total number = 1 ------------------------------------------------------------------------------------------------------- ip-address vlan vpn-instance 10.1.1.1 10 default --------------------------------------------------------------------------------
| Item | Description |
|---|---|
| Current total number | Number of entries. |
| ip-address | Interface IP address of the switch or the target IP address in the proxy ARP request sent to the switch. |
| vlan | VLAN ID corresponding to the IP address. |
| vpn-instance | VPN instance to which the IP address belongs. |