Configuring Interface-based ARP Entry Restriction

By configuring interface-based ARP entry restriction, the number of ARP entries that an interface can learn is restricted, which effectively prevents ARP entry overflow and ensures ARP entry security.

Context

Perform the following steps on the FW that needs to be configured with ARP security features:

Procedure

Access the system view.
```
system-view
```
Access the interface view.
```
interface interface-type interface-number
```
The following interfaces are supported:
- Layer-3 Ethernet interfaces and sub-interfaces
- Layer-3 GE interfaces and sub-interfaces
- Layer-3 Eth-Trunk interfaces and sub-interfaces
- Layer-2 Ethernet interfaces
- Layer-2 GE interfaces
- Layer-2 Eth-Trunk interfaces
- VLANIF interfaces

Configure interface-based ARP entry restriction.

arp-limit[ vlan vlan-id [ to vlan-id2 ] ] maximum maximum