Dhcp Snooping; Figure 3-79. Mac Based Acl Page - Alcatel OS-LS-6224 User Manual
User guide
Hide thumbs
Also See for OS-LS-6224:
- Getting started manual (60 pages) ,
- User manual (762 pages) ,
- Getting started manual (52 pages)
Table of Contents
Advertisement
CLI – The following is an example of the MAC Based ACL CLI commands:
Console(config)# mac access-list macl-acl1
Console(config-mac-al)# permit 6:6:6:6:6:6 0:0:0:0:0:0 any vlan 6
Console (config-mac-acl)# deny 66:66:66:66:66:66
DHCP Snooping
DHCP Snooping expands network security by providing an extra layer of security
between untrusted interfaces and DHCP servers. By enabling DHCP Snooping
network administrators can identify between trusted interfaces connected to
end-users or DHCP Servers, and untrusted interface located beyond the network
firewall.
DHCP Snooping filters untrusted messages. DHCP Snooping creates and maintains
a DHCP Snooping Table which contains information received from untrusted
packets. Interfaces are untrusted if the packet is received from an interface from
outside the network or from a interface beyond the network firewall. Trusted
interfaces receive packets only from within the network or the network firewall.
The DHCP Snooping Table contains the untrusted interfaces MAC address, IP
address, Lease Time, VLAN ID, and interface information.
The DHCP section contains the following topics:
•
DHCP Snooping Properties
•
Defining DHCP Snooping on VLANs
•
Defining Trusted Interfaces
•
Binding Addresses to the DHCP Snooping Database
Figure 3-79. MAC Based ACL Page
3
DHCP Snooping
4-311
4-312
4-313
171
- Quick Links:
- Chapter 2: Initial Configuration
Hide quick links:
Advertisement
Table of Contents
