Checking The Chaddr Field In Dhcp Request Messages; Checking The Configuration - Huawei Quidway S9300 Configuration Manual
Terabit routing switch
Hide thumbs
Also See for Quidway S9300:
- Configuration manual - network management (630 pages) ,
- Configuration manual (603 pages) ,
- Configuration manual - multicast (262 pages)
Table of Contents
Advertisement
3 DHCP Snooping Configuration
----End
3.4.3 Checking the CHADDR Field in DHCP Request Messages
Context
If the CHADDR field in DHCP Request messages matches the source MAC address in the
Ethernet frame header, the messages are forwarded. Otherwise, the messages are discarded.
Procedure
Step 1 Run:
system-view
The system view is displayed.
Step 2 Run:
interface interface-type interface-number
The interface view is displayed.
The interface is the user-side interface.
Or, run:
vlan vlan-id
The VLAN view is displayed.
Step 3 Run:
dhcp snooping check mac-address enable
The interface or the interface in a VLANis configured to check the CHADDR field in DHCP
Request messages.
By default, an interface or the interface in a VLANdoes not check the CHADDR field in DHCP
Request messages on the S9300.
----End
3.4.4 Checking the Configuration
Prerequisite
The configurations of preventing the DoS attack by changing the CHADDR field are complete.
Procedure
l
3-12
NOTE
The master physical interfaces of the S9300 do not support DHCP snooping over VPLS.
Run the display dhcp snooping global command to check information about global DHCP
snooping.
Huawei Proprietary and Confidential
Copyright © Huawei Technologies Co., Ltd.
Quidway S9300 Terabit Routing Switch
Configuration Guide - Security
Issue 06 (2010–01–08)
Advertisement
Chapters
Table of Contents
