Ip dhcp snooping violation – Allied Telesis AT-FS970M Series User Manual

Chapter 42: DHCP Snooping Commands

640

IP DHCP SNOOPING VIOLATION

Syntax

ip dhcp snooping violation

log

|

trap

|

link-down

Parameters

log

Generates a log message. Use the SHOW LOG command to
display these messages. See “NO LOG BUFFERED” on page 677.

trap

Generates an SNMP notification or trap. To make this parameter
active, configure SNMP and enable DHCP snooping notifications
with the SNMP-SERVER ENABLE TRAP command. See “SNMP-
SERVER ENABLE TRAP” on page 1150. Notifications are limited
to one per second and to one per source MAC and violation.

link-down

Disables the port.

Mode

Port Interface mode

Description

Use this command to specify the action the switch takes when it detects
an DHCP snooping violation by an DHCP packet on a port (or ports). You
can set a switch to respond with more than one action. By default, DHCP
packets that violate DHCP snooping are dropped, but no other violation
action is taken.

If a port has been shut down in response to a violation, to bring it back up
again after any issues have been resolved, use the NO SHUTDOWN
command. See “NO SHUTDOWN” on page 219.

IP packets dropped by DHCP snooping filters do not result in other DHCP
snooping violation actions.

Use the no version of the command, NO IP DHCP SNOOPING
VIOLATION command, to disable the specified violation actions or all
violation actions.