beautypg.com

Allied Telesis AT-8100 Series User Manual

Page 667

background image

AT-8100 Switch Command Line User’s Guide

667

The DHCP snooping service cannot be enabled on a switch that is
configured with any of the following features:

Web authentication (using the AUTH-WEB ENABLE command)

Guest VLAN authentication (using the AUTH GUEST-VLAN
command)

DHCP relay agent option (using the IP DHCP-RELAY AGENT-
OPTION command)

In addition, you cannot enable any of the above features if you have
DHCP snooping enabled on the switch.

Any ACLs on a port that permit traffic matching DHCP snooping entries
and block other traffic, will block all traffic if DHCP snooping is disabled on
a port. If you disable DHCP snooping on the switch using this command,
you must also remove any DHCP snooping ACLs from the ports to
maintain connectivity using the NO ACCESS-GROUP command. See “NO
ACCESS-GROUP” on page 1635.

Use the no version of the NO SERVICE DHCP SNOOPING command to
disable the DHCP snooping service on the switch. This command
removes all of the DHCP snooping configuration from the running
configuration except for any DHCP snooping maximum bindings settings
(set with “IP DHCP SNOOPING MAX-BINDINGS” on page 655) and any
DHCP snooping-based Access Control Lists (ACLs) which are retained
when the service is disabled.

Confirmation Command

“SHOW RUNNING-CONFIG” on page 170

Example

This example enables DHCP snooping on a switch:

awplus> enable
awplus# configure terminal
awplus(config)# service dhcp snooping

See also other documents in the category Allied Telesis Computer hardware: