Ip Source Guard - Dell PowerConnect B-FCXs Configuration Manual
Powerconnect b-series fcx
Hide thumbs
Also See for PowerConnect B-FCXs:
- Hardware installation manual (86 pages) ,
- User manual (152 pages) ,
- Getting started manual (260 pages)
Table of Contents
Advertisement
39
IP source guard
Viewing the status of DHCP option 82 and the subscriber id
Use the show interfaces ethernet command to obtain information about the status of DHCP option
82 and the configured subscriber ID, if applicable. In the example below, the text in bold type
displays the information specific to DHCP option 82.
PowerConnect#show interfaces ethernet 3
GigabitEthernet3 is up, line protocol is up
Hardware is GigabitEthernet, address is 00e0.5200.0002 (bia 00e0.5200.0002)
Configured speed auto, actual 1Gbit, configured duplex fdx, actual fdx
Configured mdi mode AUTO, actual MDI
Member of L2 VLAN ID 1, port is untagged, port state is FORWARDING
BPDU guard is Disabled, ROOT protect is Disabled
Link Error Dampening is Disabled
STP configured to ON, priority is level0
Flow Control is config enabled, oper enabled, negotiation disabled
mirror disabled, monitor disabled
Not member of any active trunks
Not member of any configured trunks
No port name
IPG MII 96 bits-time, IPG GMII 96 bits-time
IP MTU 1500 bytes
300 second input rate: 0 bits/sec, 0 packets/sec, 0.00% utilization
300 second output rate: 264 bits/sec, 0 packets/sec, 0.00% utilization
0 packets input, 0 bytes, 0 no buffer
Received 0 broadcasts, 0 multicasts, 0 unicasts
0 input errors, 0 CRC, 0 frame, 0 ignored
0 runts, 0 giants
0 packets output, 0 bytes, 0 underruns
Transmitted 0 broadcasts, 0 multicasts, 0 unicasts
0 output errors, 0 collisions
The above output shows that DHCP option 82 is Enabled on the device and the configured
subscriber ID is Brocade001.
Syntax: show interfaces ethernet <port>
Specify the <port> variable in the following formats:
•
IP source guard
You can use IP Source Guard together with Dynamic ARP Inspection on untrusted ports. Refer to
"DHCP snooping"
The Dell implementation of the IP Source Guard feature supports configuration on a port, on
specific VLAN memberships on a port (Layer 2 devices only), and on specific ports on a virtual
interface (VE) (Layer 3 devices only).
When IP Source Guard is first enabled, only DHCP packets are allowed and all other IP traffic is
blocked. When the system learns a valid IP address, IP Source Guard then allows IP traffic. Only
the traffic with valid source IP addresses are permitted. The system learns of a valid IP address
from DHCP Snooping. When it learns a valid IP address, the system permits the learned source IP
address.
1360
Relay Agent Information option: Enabled, Subscriber-ID: Brocade001
PowerConnect B-Series FCX stackable switches – <stack-unit/slotnum/portnum>
on page 1349 and
"Dynamic ARP inspection"
PowerConnect B-Series FCX Configuration Guide
on page 1345.
53-1002266-01
Advertisement
Table of Contents
Troubleshooting
