[c-nsp] Arp Inspection Rate Limit

Murphy, William William.Murphy at uth.tmc.edu
Tue Aug 18 17:43:30 EDT 2009


On access layer ports in our environment 15pps works well.  Very rarely we
have some weird print server or some device that bursts above that, but we
never have had to go above 30pps on an access port.  Since we limit on the
edge ports we don't put a limit on the trunks...

Bill M

-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of NMaio at guesswho.com
Sent: Monday, August 17, 2009 2:06 PM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] Arp Inspection Rate Limit

Just a quick question.  

Taking into account that everyone's network is different and to find the
best limit you need to study a trace.....does anyone use a rule of thumb
for configuring the rate limit for arp inspection.  Does anyone find the
default 15 pps too low on ports other than etherchannels and trunks?

Thanks,

Nick

 

_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 4327 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20090818/92cb3689/attachment.bin>


More information about the cisco-nsp mailing list