Sw_Dai Messages; Sw_Dai-4 - Cisco Catalyst 4500 Series System Message Manual

Cisco ios system message guide ios release 12.2(37)sg

Hide thumbs Also See for Catalyst 4500 Series:

Software configuration manual (2086 pages)

Administration manual (1814 pages)

Configuration manual (1610 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

page of 150

/ 150
Contents
Table of Contents
Bookmarks

Table of Contents

SW_DAI Messages

This section contains the dynamic ARP inspection (DAIMAN) messages.

SW_DAI-4

Error Message SW_DAI-4-ACL_DENY: [dec]Invalid ARPs (Req) on [chars], vlan [dec].

Error Message SW_DAI-4-DHCP_SNOOPING_DENY: [dec] Invalid ARPs (Req) on [chars], vlan

[chars].

Error Message SW_DAI-4-INVALID_ARP: [dec] Invalid ARPs (Req) on [chars], vlan

[chars].

Error Message SW_DAI-4-PACKET_BURST_RATE_EXCEEDED: [dec] packets received in [dec]

seconds on [char].

Catalyst 4500 Series Switch Cisco IOS System Message Guide

2-110

The switch received ARP packets that are considered invalid by ARP inspection. The

Explanation

packets are invalid, and their presence indicates that administratively denied packets are in the

network. This log message generates when packets have been denied by ACLs either explicitly or

implicitly (with static ACL configuration). The presence of these packets indicates a possible

"man-in-the-middle" attacks in the network.

To stop these messages from generating, find the source host of these packets

Recommended Action

and stop the host from sending them.

The switch received ARP packets that are considered invalid by ARP inspection. The

Explanation

packets are invalid, and their presence may be an indication of "man-in-the-middle" attacks that are

attempted in the network. This message is logged when the IP address and MAC address binding for

the sender on the received VLAN is not listed in the DHCP snooping database.

To stop these messages from generating, find the source host of these packets

Recommended Action

and stop the host from sending them.

The switch received ARP packets that are considered invalid by ARP inspection. The

Explanation

packets are invalid and do not pass one or more of the source MAC address, destination MAC

address, or IP address validation checks. A packet was denied because the source MAC address,

destination MAC address, or IP validation failed.

To stop these messages from generating, find the source host of these packets

Recommended Action

and stop the host from sending them.

The switch received [dec] number of ARP packets in the specified burst interval. The

Explanation

interface was in the errdisabled state and the switch received the packets at a rate higher than the

configured packet rate for every second over the configured burst interval. The message is logged

just before the interface entered the errdisabled state and if the configured burst interval is more than

one second.

This is an informational message only. No action is required.

Recommended Action

Chapter 2

Messages and Recovery Procedures

OL-13091-01

Table of Contents

Sw_Dai Messages; Sw_Dai-4 - Cisco Catalyst 4500 Series System Message Manual

SW_DAI Messages

SW_DAI-4

Related Manuals for Cisco Catalyst 4500 Series

Related Content for Cisco Catalyst 4500 Series

Table of Contents