Displaying And Maintaining Dhcp Snooping - HP 830 Series Configuration Manual

Poe+ unified wired-wlan switch switching engine

Hide thumbs Also See for 830 Series:

Configuration manual (530 pages)

Command reference manual (136 pages)

Installation manual (58 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

Table of Contents

To prevent such attacks, you can enable DHCP-REQUEST message check on DHCP snooping devices.

This feature uses DHCP snooping entries to check incoming DHCP-REQUEST messages.

If a matching entry is found for a message, the DHCP snooping device compares the entry with the

•

message information. If they are consistent, the DHCP-REQUEST message is considered a valid

lease renewal request and forwarded to the DHCP server. If they are not consistent, the message is

considered as a forged lease renewal request and discarded.

If no matching entry is found, the message is considered valid and forwarded to the DHCP server.

•

To enable DHCP-REQUEST message check:

Step

Enter system view.

Enter interface view.

Enable

DHCP-REQUEST

check.

Displaying and maintaining DHCP snooping

Task

Display DHCP snooping entries.

Display Option 82 configuration

information on the DHCP snooping

device.

Display DHCP packet statistics on the

DHCP snooping device.

Display information about trusted ports.

Display the information about DHCP

snooping entry file.

Clear DHCP snooping entries.

Clear DHCP packet statistics on the

DHCP snooping device.

Command

system-view

interface interface-type

interface-number

dhcp-snooping check

request-message

Command

display dhcp-snooping [ ip ip-address ]

[ | { begin | exclude | include }

regular-expression ]

display dhcp-snooping information { all |

interface interface-type

interface-number } [ | { begin | exclude |

include } regular-expression ]

display dhcp-snooping packet statistics

[ slot slot-number ] [ | { begin | exclude |

include } regular-expression ]

display dhcp-snooping trust [ | { begin |

exclude | include } regular-expression ]

display dhcp-snooping binding database

[ | { begin | exclude | include }

regular-expression ]

reset dhcp-snooping { all | ip ip-address }

reset dhcp-snooping packet statistics

[ slot slot-number ]

Remarks

N/A

Disabled by default.

You can enable DHCP-REQUEST check

only on Layer 2 Ethernet interfaces and

Layer 2 aggregate interfaces.

Remarks

Available in any view.

Available in user

view.

Available in user

view.

Table of Contents

Displaying And Maintaining Dhcp Snooping - HP 830 Series Configuration Manual

Displaying and maintaining DHCP snooping

Troubleshooting

Related Manuals for HP 830 Series

Related Content for HP 830 Series

Table of Contents