beautypg.com

Ip dhcp snooping vlan, Ip dhcp snooping trust, Ip dhcp snooping vlan (952) – LevelOne GTL-2691 User Manual

Page 952: Ip dhcp snooping trust (952)

background image

C

HAPTER

29

| General Security Measures

DHCP Snooping

– 952 –

ip dhcp snooping

vlan

This command enables DHCP snooping on the specified VLAN. Use the no

form to restore the default setting.

S

YNTAX

[no] ip dhcp snooping vlan vlan-id

vlan-id - ID of a configured VLAN (Range: 1-4093)

D

EFAULT

S

ETTING

Disabled

C

OMMAND

M

ODE

Global Configuration

C

OMMAND

U

SAGE

When DHCP snooping enabled globally using the

ip dhcp snooping

command, and enabled on a VLAN with this command, DHCP packet

filtering will be performed on any untrusted ports within the VLAN as

specified by the

ip dhcp snooping trust

command.

When the DHCP snooping is globally disabled, DHCP snooping can still

be configured for specific VLANs, but the changes will not take effect

until DHCP snooping is globally re-enabled.

When DHCP snooping is globally enabled, configuration changes for

specific VLANs have the following effects:

If DHCP snooping is disabled on a VLAN, all dynamic bindings

learned for this VLAN are removed from the binding table.

E

XAMPLE

This example enables DHCP snooping for VLAN 1.

Console(config)#ip dhcp snooping vlan 1

Console(config)#

R

ELATED

C

OMMANDS

ip dhcp snooping (947)

ip dhcp snooping trust (952)

ip dhcp snooping

trust

This command configures the specified interface as trusted. Use the no

form to restore the default setting.

S

YNTAX

[no] ip dhcp snooping trust

D

EFAULT

S

ETTING

All interfaces are untrusted

See also other documents in the category LevelOne Routers: