Management Guide
TigerAccess™ EE
8.6.6.4
i
8.6.7
SMC7824M/VSW
Option 82 Trust Policy
Default Trust Policy
To specify the default trust policy for DHCP packets, use the following command.
Command
trust default { deny | permit }
If you specify the default trust policy as deny, the DHCP packet that carries the informa-
tion you specifies below will be permitted, and vice versa.
Trusted Remote ID
To specify a trusted remote ID, use the following command.
Command
trust remote-id hex HEXSTRING
trust remote-id ip A.B.C.D
trust remote-id text STRING
To delete a specified trusted remote ID, use the following command.
Command
no trust remote-id hex HEXSTRING
no trust remote-id ip A.B.C.D
no trust remote-id text STRING
Trusted Physical Port
To specify a trusted physical port, use the following command.
Command
trust port PORTS { normal |
option82 | all }
no trust port { all | PORTS} { nor-
mal | option82 | all }
DHCP Snooping
For enhanced security, the switch provides the DHCP snooping feature. The DHCP
snooping filters untrusted DHCP messages and builds/maintains a DHCP snooping bind-
ing table. The untrusted DHCP message is a message received from outside the network,
and an untrusted interface is an interface configured to receive DHCP messages from
outside the network.
Mode
Option 82
Specifies the default trust policy for a DHCP packet.
Mode
Option 82
Mode
Option 82
Mode
Specifies a trusted physical port.
normal: DHCP packet
option82: DHCP option 82 packet
Option 82
all: DHCP + option 82 packet
Deletes a specified trusted port.
Description
Description
Specifies a trusted remote ID.
Description
Deletes a specified trusted remote ID.
Description
CLI
323