Show ip dhcp snooping binding, Ip source guard, Table 90: ip source guard commands – LevelOne GTL-2691 User Manual
Page 955: Show ip dhcp snooping, Binding, Ip s
C
HAPTER
29
| General Security Measures
IP Source Guard
– 955 –
show ip dhcp
snooping binding
This command shows the DHCP snooping binding table entries.
C
OMMAND
M
ODE
Privileged Exec
E
XAMPLE
Console#show ip dhcp snooping binding
MacAddress IpAddress Lease(sec) Type VLAN Interface
----------------- --------------- ---------- -------------------- ---- ------
11-22-33-44-55-66 192.168.0.99 0 Dynamic-DHCPSNP 1 Eth 1/5
Console#
IP S
OURCE
G
UARD
IP Source Guard is a security feature that filters IP traffic on network
interfaces based on manually configured entries in the IP Source Guard
table, or dynamic entries in the DHCP Snooping table when enabled (see
). IP source guard can be used to prevent
traffic attacks caused when a host tries to use the IP address of a neighbor
to access the network. This section describes commands used to configure
IP Source Guard.
Table 90: IP Source Guard Commands
Command
Function
Mode
Adds a static address to the source-guard binding
table
GC
Configures the switch to filter inbound traffic based
on source IP address, or source IP address and
corresponding MAC address
IC
Sets the maximum number of entries that can be
bound to an interface
IC
Shows whether source guard is enabled or disabled
on each interface
PE
Shows the source guard binding table
PE