Configuring The Dhcp Server Security Functions; Enabling Unauthorized Dhcp Server Detection - H3C S7500E Series Operation Manual
S7500e series
Hide thumbs
Also See for H3C S7500E Series:
- Command manual (1565 pages) ,
- Command reference manual (368 pages) ,
- Installation manual (182 pages)
Table of Contents
Advertisement
Operation Manual – DHCP
H3C S7500E Series Ethernet Switches
Option
58
59
66
67
43
Caution:
Be cautious when configuring self-defined DHCP options because such
configuration may affect the DHCP operation process.
When you use self-defined option (Option 51) to configure the IP address lease
duration, convert the lease duration into seconds in hexadecimal notation.
2.6 Configuring the DHCP Server Security Functions
This configuration is necessary to secure DHCP services on the DHCP server.
2.6.1 Configuration Prerequisites
Before performing this configuration, complete the following configuration on the DHCP
server:
Enable DHCP
Configure the DHCP address pool
2.6.2 Enabling Unauthorized DHCP Server Detection
There are unauthorized DHCP servers on networks, which reply DHCP clients with
wrong IP addresses.
With this feature enabled, when receiving a DHCP message with the siaddr field not
being 0 from a client, the DHCP server will record the value of the siaddr field in the
message and the receiving interface. The administrator can use this information to
check out any DHCP unauthorized servers.
Follow these steps to enable unauthorized DHCP server detection:
Option name
Renewal (T1) Time
Value
Rebinding (T2) Time
Value
TFTP server name
Bootfile name
Vendor Specific
Information
2-14
Chapter 2 DHCP Server Configuration
Corresponding
command
expired
expired
tftp-server
bootfile-name
—
Command
parameter
hex
hex
ascii
ascii
hex
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
