SX Switch Port Security


I have a requirement for port security on an mellanox SX switch. I need to stop customer ports from talking to one another (same vlan and subnet)

Also I need to be able to lock MACs to IPs (ARP ACLs) on both access ports and trunks to stop ARP/MAC spoof and ip theft (dup IPs)

Please note the switch is used as a TOR in a DC and alot of the access and trunks ports (back to blade chassis) are customer managed and therefore “untrusted”

We have L2 and L3 (MAC and IPv4) ACL rules today.We don’t support ARP ACL. Please do get in touch with us at and we will track this feature.