beautypg.com

Ip bootp-use-intf-ip, Whitelist, Ip bootp-use-intf-ip whitelist – Brocade FastIron Ethernet Switch Security Configuration Guide User Manual

Page 382

background image

ip bootp-use-intf-ip

Configures the source IP address of a DHCP-client packet in a DHCP relay agent.

Configures a DHCP relay agent to set the source IP address of a DHCP-client packet with the IP
address of the interface in which the DHCP-client packet is received. The no form of the command
reverts the FastIron device to the default behaviour where the DHCP relay agent sets the source IP
address of a DHCP-client packet with the IP address of the outgoing interface to the DHCP server.

Syntax

ip bootp-use-intf-ip

no ip bootp-use-intf-ip

Command Default

The DHCP relay agent sets the source IP address of a DHCP-client packet with the IP address of the
outgoing interface to the DHCP server.

Modes

Global configuration mode

Usage Guidelines

You can configure ACLs on a DHCP server to permit or block access to the DHCP server from
particular subnets or networks. You can then use this command on the DHCP relay agent to reveal the
source subnet or network of a DHCP packet to the DHCP server, which enables the DHCP server to
process or discard the DHCP traffic according to the configured ACLs.

Examples

The following example shows a FastIron DHCP relay agent set to configure the source IP address of a
DHCP-client packet with the IP address of the interface on which the DHCP-client packet is received.

Brocade (config)# ip bootp-use-intf-ip

History

Release version

Command history

Pre-07.3.00

This command was introduced.

whitelist

Configures an RA guard whitelist to be used with the RA guard policy. The no form of the command
removes the whitelist from the RA guard policy.

Syntax

whitelist number

no whitelist number

Parameters

number

ID number of the RA guard whitelist to be associated with the RA guard policy. Valid range
is from 1 to 64.

Modes

RA guard policy configuration

Usage Guidelines

You must specify an RA guard whitelist ID number configured using the ipv6 raguard whitelist
command. The RA guard policy uses the given RA guard whitelist for allowing RAs. Only RAs from
sources whose IP addresses are added to the RA guard whitelist are forwarded. You can configure only
one RA guard whitelist with an RA guard policy. The latest RA guard whitelist association always takes
precedence as the one associated with the RA guard policy.

ip bootp-use-intf-ip

382

FastIron Ethernet Switch Security Configuration Guide

53-1003088-03

See also other documents in the category Brocade Computer Accessories: