Cisco Certified Network Professional 2025 – 400 Free Practice Questions to Pass the Exam

The command used to check the status of Dynamic ARP Inspection (DAI) is "show ip arp inspection". This command provides valuable information regarding the configuration and operational status of DAI on a Cisco device. By executing this command, network administrators can see whether DAI is enabled on specific VLANs, the binding table that DAI uses to inspect ARP packets, and various statistics related to ARP inspection activities, such as valid and invalid ARP packets. This information helps in monitoring the network's security against ARP spoofing and forgery attacks, ensuring that only legitimate ARP messages are allowed through the network.

The other commands do not specifically relate to the DAI status. For instance, "show ip inspect" provides details about IP inspection, which is distinct from ARP inspection, while "show ip arp status" and "show arp details" do not provide the detailed operational status specific to DAI, making them less relevant for this scenario.