I want to configure Dynamic ARP Inspection with a D2 device (Firmware 6.03.11.0004). I configured DHCP Snooping for the Client VLAN (10) with the corresponding trusted and untrusted ports and with "show dhcpsnooping bindings" I see the data.
I also configured DAI with
set arpinspection vlan 10 logging
set arpinspection trust port [u] enable
Unfortunately I can run a successful ARP Attac for Man-in-the-middle from a Client (untrusted) port. Which results in a poisoned ARP table. No logging happend.
If i run "set arpinspection vlan 10" I get: "Failed to configure DAI on the vlan range".
Does anybody have a clue?