Which technology intercepts ARP requests and compares them to MAC-IP bindings in a trusted table?

Dynamic ARP Inspection (DAI) is the correct answer because it is a security feature that helps prevent ARP spoofing attacks by intercepting ARP requests on the network and comparing them against a trusted database of MAC-IP bindings. This database is established through DHCP Snooping, which verifies that the MAC addresses correspond to the correct IP addresses as they were assigned.

When a device on the network sends an ARP request, DAI checks the request against this trusted table. If there is a match, the ARP request is allowed to continue. If there is no match or if the request appears to be malicious (for example, if it is trying to redirect traffic to an unauthorized device), DAI can drop the ARP request, thereby protecting the network from potential interception or man-in-the-middle attacks. This mechanism ensures that only legitimate IP-to-MAC address mappings are used within the network, enhancing overall security against ARP spoofing risks.