Anti-Spoof Cache

The MAC-IP Anti-Spoof Cache lists all the devices presently listed as “authorized” to access the network, and all devices marked as “blacklisted” (denied access) from the network.

To add a device to the list

1. Navigate to the NETWORK | System > MAC-IP Anti-Spoof page.
2. Click +Add. The Add Anti-Spoof Cache dialog displays.

3. Select an interface from Interface.
4. Enter the IP address for the device in the IP Address field.
5. Enter the MAC address for the device in the MAC Address field.
6. Select the A Router option to allow traffic coming from behind this device.
7. Select the A blacklisted device option to block packets from this device, regardless of its IP address.
8. Click Save.

If you need to edit an Anti-Spoof cache entry, click the entry’s Edit icon under the Configure column.

Single, or multiple, anti-spoof cache entries can be deleted. To do this, select the checkbox next to each entry, then click Delete MAC-IP Anti-Spoof Cache).

To clear cache statistics

1. Select the desired devices, then click Reset.

Some packet types are bypassed even though the MAC-IP Anti-Spoof feature is enabled:

• Non-IP packets.
• DHCP packets with source IP as 0.
• Packets from a VPN tunnel.
• Packets with invalid Unicast IPs as their source IPs.
• Packets from interfaces where the Management status is not enabled under anti-spoof settings.

The Anti-Spoof Cache Search section provides the ability to search the entries in the cache.

To search the MAC-IP Anti-Spoof Cache

1. Navigate to the NETWORK | System > MAC-IP Anti-Spoof page.
2. Enter a search string in the field.
3. Click Search. Matching entries in the MAC-IP Anti-Spoof cache are displayed.

To clear the Anti-Spoof Cache table and redisplay all entries, click Refresh.