OLT3610 Series DHCP-Snooping Configuration Commands

OLT3610-08GP4S DHCP-SNOOPING CONFIGURATION COMMANDS

OLT3610 Series DHCP-Snooping

Models: OLT3610-08GP4S OLT3610-16GP4S

www.fs.com
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Contents

Chapter 1 DHCP-Relay Snooping Configuration Commands .............................................................................................................................1

1.1.1 ip dhcp-relay snooping .........................................................................................................................................................................................1

1.1.2 ip dhcp-relay snooping vlan ................................................................................................................................................................................2

1.1.3 ip dhcp-relay snooping vlan vlan_id max-client .......................................................................................................................................... 3

1.1.4 ip dhcp-relay snooping database-agent .........................................................................................................................................................3

1.1.5 ip dhcp-relay snooping db-file........................................................................................................................................................................... 4

1.1.6 ip dhcp-relay snooping write-time ................................................................................................................................................................... 4

1.1.7 ip dhcp-relay snooping write-immediately ....................................................................................................................................................5

1.1.8 ip dhcp-relay snooping log ..................................................................................................................................................................................5

1.1.9 ip dhcp-relay snooping rapid-refresh-bind .................................................................................................................................................... 6

1.1.10 ip dhcp-relay snooping information option ................................................................................................................................................ 7

1.1.11 ip dhcp-relay snooping upper_filter .............................................................................................................................................................. 7

1.1.12 ip verify source vlan ............................................................................................................................................................................................. 8

1.1.13 ip arp inspection vlan..........................................................................................................................................................................................9

1.1.14 ip source binding ..................................................................................................................................................................................................9

1.1.15 arp inspection trust........................................................................................................................................................................................... 10

1.1.16 dhcp snooping trust ..........................................................................................................................................................................................10

1.1.17 dhcp snooping deny ......................................................................................................................................................................................... 11

1.1.18 dhcp snooping information circuit-id ......................................................................................................................................................... 11

1.1.19 dhcp snooping information remote-id .......................................................................................................................................................12

1.1.20 dhcp snooping information vendor-specific ............................................................................................................................................ 13

1.1.21 dhcp snooping information append ........................................................................................................................................................... 14

1.1.22 dhcp snooping information drop ................................................................................................................................................................. 15

1.1.23 dhcp snooping information replace ............................................................................................................................................................ 15

1.1.24 dhcp snooping information transmit .......................................................................................................................................................... 16

1.1.25 ip-source trust ..................................................................................................................................................................................................... 16

1.1.26 show ip dhcp-relay snooping .........................................................................................................................................................................17

1.1.27 show ip dhcp-relay snooping binding ........................................................................................................................................................ 17

1.1.28 show ip dhcp-relay snooping statistics.......................................................................................................................................................18

1.1.29 debug ip dhcp-relay snooping ...................................................................................................................................................................... 19

1.1.30 debug ip dhcp-relay event..............................................................................................................................................................................19

1.1.31 debug ip dhcp-relay binding ......................................................................................................................................................................... 20

www.fs.com
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

1.1.32 debug ip dhcp-relay all .................................................................................................................................................................................... 20

www.fs.com
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

chapter1 DHCP-Relay Snooping Configuration Commands

 ip dhcp-relay snooping

 ip dhcp-relay snooping vlan

 ip dhcp-relay snooping vlan vlan_id max-client

 ip dhcp-relay snooping database-agent

 ip dhcp-relay snooping db-file

 ip dhcp-relay snooping write-time

 ip dhcp-relay snooping write-immediately

 ip dhcp-relay snooping log

 ip dhcp-relay snooping rapid-refresh-bind

 ip dhcp-relay snooping information option

 ip dhcp-relay snooping upper_filter

 ip verify source vlan

 ip arp inspection vlan

 ip source binding

 arp inspection trust

 dhcp snooping trust

 dhcp snooping deny

 dhcp snooping information circuit-id

 dhcp snooping information remote-id

 dhcp snooping information vendor-specific

 dhcp snooping information append

 dhcp snooping information drop

 dhcp snooping information replace

 dhcp snooping information transmit

 ip-source trust

 show ip dhcp-relay snooping

 show ip dhcp-relay snooping binding

 show ip dhcp-relay snooping statistics

 debug ip dhcp-relay snooping

 debug ip dhcp-relay event

 debug ip dhcp-relay binding

 debug ip dhcp-relay all

1.1.1 Ip dhcp-relay snooping

www.fs.com 11
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Syntax

ip dhcp-relay snooping

no ip dhcp-relay snooping

To enable or disable the DHCP-relay snooping function in a VLAN, run ip dhcp-relay snooping. To resume the corresponding default

settings, run no dhcp-relay snooping.

Parameter None

Default The dhcp-relay snooping function is disabled by default.

Usage Guidelines None

Command Mode Global Configuration Mode

Example The following example shows how to enable the DHCP-relay snooping function:

Switch_config# ip dhcp-relay snooping

1.1.2 Ip dhcp-relay snooping vlan

Syntax

ip dhcp-relay snooping vlan vlan_id

no ip dhcp-relay snooping vlan vlan_id

Parameter

Parameter Description

vlan id ID of a VLAN Range: 1-4094

Default None

Command Mode Global Configuration Mode

Usage Guidelines This command is used to configure the VLAN of DHCP snooping.

Example The following example shows how to conduct the snooping inspection to the DHCP packets in VLAN2.

Switch_config# ip dhcp-relay snooping vlan 2

www.fs.com 21
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

1.1.3 Ip dhcp-relay snooping vlan vlan_id max-client

Syntax

ip dhcp-relay snooping vlan vlan_id max-client number

no ip dhcp-relay snooping vlan vlan_id max-client

Parameter

Parameter Description

vlan_id VLAN id. The value ranges from 1 to 4094.

number The max user number: 0~65535

Default The max user number is 65535 by default.

Command Mode Global Configuration Mode

Usage Guidelines You can use this command to set the maximum users in a VLAN of DHCP snooping. During this settings, the principle

“first come and first be distributed” will be followed. When the number of users in the VLAN reaches the maximum value, new clients are

then forbidden to distribute.

Example The following example shows how to set snooping detection for DHCP packets on VLAN 2 and the number of maximum users

is 3.

Switch_config# ip dhcp-relay snooping vlan 2 max-client 3

1.1.4 Ip dhcp-relay snooping database-agent

Syntax

ip dhcp-relay snooping database-agent A.B.C.D

no ip dhcp-relay snooping database-agent A.B.C.D

To configure the TFTP server for backing up DHCP-snooping binding, run ip dhcp-relay snooping database-agent A.B.C.D.

Parameter

Parameter Description

A.B.C.D Stands for the IP address of the TFTP server.

Default There is no standby servers by default.

www.fs.com 31
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Command Mode Global Configuration Mode

Usage Guidelines If the address of the TFTP server is not configured, the binding backup is not conducted.

Example The following example shows how to set the address of a server of backing up DHCP snooping binding to 192.168.1.1.

Switch_config# ip dhcp-relay snooping database-agent 192.168.1.1

1.1.5 Ip dhcp-relay snooping db-file

Syntax

ip dhcp-relay snooping db-file name [timestamp]

no ip dhcp-relay snooping db-file [timestamp]

Parameter

Parameter Description

Name File name which is saved during DHCP snooping binding backup.

timestamp File name which is saved with timesatmp.

Default There is no file.

Command Mode Global Configuration Mode

Usage Guidelines If the file name is not configured, the binding backup is not conducted.

Example The following example shows how to set the file name of binding backup to dhcp_binding.txt.

Switch_config# ip dhcp-relay snooping db-file dhcp_binding.txt

1.1.6 Ip dhcp-relay snooping write-time

Syntax

ip dhcp-relay snooping write-time num

no ip dhcp-relay snooping write-time

Parameter

Parameter Description

www.fs.com 41
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Num Stands for the interval of backing up the DHCP snooping binding

(2-1440).

Default The Default of the interval is 30 minutes.

Command Mode Global Configuration Mode

Usage Guidelines The binding update will be checked during interval configuration. If the binding is updated, the binding information

need be backed up.

Example The following example shows how to set the interval of backing up the binding to 60 minutes.

Switch_config# ip dhcp-relay snooping write-time 60

1.1.7 Ip dhcp-relay snooping write-immediately

Syntax

ip dhcp-relay snooping write-immediately

no ip dhcp-relay snooping write-immediately

Parameter None

Default None

Command Mode Global Configuration Mode

Usage Guidelines The command enables the item update is immediately written into the binding item database. It is recommended that

do not enable the function when there are many items.

Example The following example shows how to back up the binding item immediately after its configuration item is updated.

Switch_config# ip dhcp-relay snooping write-immediately

1.1.8 Ip dhcp-relay snooping log

Syntax

ip dhcp-relay snooping log

www.fs.com 51
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

no ip dhcp-relay snooping log

Parameter None

Command Mode Global Configuration Mode

Default None

Usage Guidelines After this function is enabled, if there are any packet of dhcp server in the untrust port, the syslog indicates that there

is an illegal dhcp server.

Example The following example shows how to enable the log function of dhcp snooping.

Switch_config# ip dhcp-relay snooping log

1.1.9 Ip dhcp-relay snooping rapid-refresh-bind

Syntax

ip dhcp-relay snooping rapid-refresh-bind

no ip dhcp-relay snooping rapid-refresh-bind

To enable dhcp snooping rapid refresh item function, run the first one of the above commands. To return to the default setting, use the no

form of this command.

Parameter None

Default None

Command Mode Global Configuration Mode

Usage Guidelines After this function is enabled, the DHCP attack of fake MAC will be closed; when the client is allowed to change the

access port, the IP address can be directly acquired without waiting for the expiration of the IP lease. After this function is enabled, if the

client changes its access port, the device with snooping enabled will take it as the dhcp packet attack of the fake mac and drop the dhcp

packets.

Example The following command shows how to enable dhcp snooping rapid refresh item function:

Switch_config# ip dhcp-relay snooping rapid-refresh-bind

www.fs.com 61
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

1.1.10 Ip dhcp-relay snooping information option

Syntax

ip dhcp-relay snooping information option [format { snmp-ifindex | manual | hn-type [host] | cm-type } ]

no ip dhcp-relay snooping information option [format { snmp-ifindex | manual | hn-type [host] | cm-type } ]

Parameter

Parameter Description

format snmp-ifindex Fills in option 82 in SNMP ifindex mode (optional).

format manual Fills in option 82 manually (optional).

Format hn-type [host] Fills in option 82 in cisco mode (optional).

Host stands for the switch device.

format cm-type Fills in option 82 in cm-type mode (optional).

Default Option 82 will not be added to or removed from the report by default.

Command Mode Global Configuration Mode

Usage Guidelines This command is used to set whether DHCP option82 can be handled when a device is conducting DHCP snooping. If

format snmp-ifindex is designated, use SNMP ifindex to fill in option82; if format manual is designated, use the string configured with the

command "dhcp snooping information circuit-id string" on each port to fill in the circuit-id option of option82; if format cm-type is

designated, use cm-type to fill in option82; otherwise, fill in option82 according to RFC3046.

Example The following example shows how to fill in option 82 in SNMP ifindex mode:

Switch_config# ip dhcp-relay snooping

Switch_config# ip dhcp-relay snooping information option format snmp-ifindex

The following example shows how to fill in option 82 in manual mode:

Switch_config# ip dhcp-relay snooping

Switch_config# ip dhcp-relay snooping vlan [WORD] //[WORD] is the vlan name that means need for enable snooping function

Switch_config# ip dhcp-relay snooping information option format manual

1.1.11 Ip dhcp-relay snooping upper_filter

Syntax

ip dhcp-relay snooping upper_filter

Configure the function of detecting the port validity of uplink packets and whether the source port of thepacket is 67

no ip dhcp-relay snooping upper_filter

www.fs.com 71
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Disable the function of detecting the port validity of uplink packets

Parameter None

Default Disable

Command Mode Global Configuration Mode

Usage Guidelines This command works on dhcp relay packet, but has no effect on snooping packet from server.

Example Configure the function of detecting the port validity of uplink packets:

Switch_config# ip dhcp-relay snooping upper_filter

1.1.12 Ip verify source vlan

Syntax

ip verify source vlan vlanid

no ip verify source vlan vlanid

Parameter

Parameter Description

vlan id ID of a VLAN Range: 1-4094

Default None

Command Mode Global Configuration Mode

Usage Guidelines This command is used to configure a VLAN for monitoring the source IP address. The “no” form of this command is

used to cancel this VLAN. If the source IP and source MAC of the IP packet are not the legal client address assigned by the dhcp server

monitored by dhcp snooping, then such a packet is regarded as an illegal packet in the vlan with IP source address monitoring enabled,

and the packet is discarded Text.

Example The following example shows how to conduct source IP address monitoring to the packets from all physical interfaces (except

trusted interfaces) in VLAN2.

Switch_config# ip verify source vlan 2

www.fs.com 81
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

1.1.13 Ip arp inspection vlan

Syntax

ip arp inspection vlan vlanid

no ip arp inspection vlan vlanid

Parameter

Parameter Description

vlan id Queries the time of the timer. Range: 1-4094

Default None

Command Mode Global Configuration Mode

Usage Guidelines This command is used to configure a VLAN for monitoring the source address of the ARP packet. The “no” form of this

command is used to cancel this VLAN. Under the VLAN that enables ARP packet source address monitoring, ARP packets with SIP and

SMAC corresponding to the IP address and mac address assigned by the dhcp server to the client are discarded.

Example The following example shows how to conduct source address monitoring to the ARP packets from all physical interfaces

(except trusted interfaces) in VLAN2.

Switch_config# ip arp inspection vlan 2

1.1.14 Ip source binding

Syntax

ip source binding xx:xx:xx:xx:xx:xx A.B.C.D interface name vlan vlan-id

no ip source binding xx:xx:xx:xx:xx:xx A.B.C.D vlan vlan_id

To add MAC-to-IP binding to an interface, run ip source binding xx:xx:xx:xx:xx:xx A.B.C.D interface name vlan vlan-id.

Parameter

Parameter Description

xx:xx:xx:xx:xx:xx MAC address.

A.B.C.D IP address

Name Name of the interface

vlan-id vlan id nunber

www.fs.com 91
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Default None

Command Mode Global Configuration Mode

Usage Guidelines None

Example The following example shows how to bind MAC address 08:00:3e:00:00:01 and IP address 192.168.1.2 on interface tg0/1.

Switch_config# ip source binding 08:00:3e:00:00:01 192.168.1.2 interface tg0/1

1.1.15 Arp inspection trust

Syntax

arp inspection trust

no arp inspection trust

Parameter None

Default The interfaces are distrusted ones by default.

Command Mode Interface Configuration Mode

Usage Guidelines The ARP monitoring is not conducted to the ARP-trusted interface. The “no” form of this command is used to configure

the Default of this interface.

Example The following example shows how to set interface tg0/1 to an ARP-trusted interface.

Switch_config_tg0/1# arp inspection trust

1.1.16 Dhcp snooping trust

Syntax

dhcp snooping trust

no dhcp snooping trust

Parameter None

www.fs.com 101
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Default The default interface is a distrusted one.

Command Mode Interface Configuration Mode

Usage Guidelines DHCP snooping is not conducted to the DHCP-trusted interface. The “no” form of this command is used to resume the

Default of this interface.

Example The following example shows how to set interface tg0/1 to a DHCP-trusted interface.

Switch_config_tg0/1# dhcp snooping trust

1.1.17 Dhcp snooping deny

Syntax

dhcp snooping deny

no dhcp snooping deny

Parameter None

Default DHCP snooping is allowed on the default interface.

Command Mode Interface Configuration Mode

Usage Guidelines After this command is configured, DHCP snooping trust, IP-sourcetrust and ARP inspection trust are automatically

enabled. The “no” form of this command is used to configure the Default of this interface.

Example The following example shows how to disable DHCP snooping on interface tg0/1.

Switch_config_tg0/1# dhcp snooping den

1.1.18 Dhcp snooping information circuit-id

Syntax

dhcp snooping information circuit-id {string [STRING] | hex xx-xx-xx-xx-xx-xx}

no dhcp snooping information circuit-id

www.fs.com 111
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Parameter

Parameter Description

string STRING Stands for the character string carried by the sub-option of

option82 circuit-id.

hex [xx-xx-xx-xx-xx-xx] Stands for the Hex system carried by option82 circuit-id.

Default None

Command Mode Interface Configuration Mode

Usage Guidelines This command can be set on each port that connects the client. This command is used to configure option82 of the

DHCP packet, which is sent by DHCP client to DHCP server and monitored by DHCP snooping. (The switch of manually set option82 need

be enabled. See the command, ip dhcp-relay snooping information option format manual)

Example The following example shows how to set option82 to group1 manually on interface tg1/3, which belongs to interface vlan 1.

Switch_config# ip dhcp-relay snooping

Switch_config# ip dhcp-relay snooping vlan 1

Switch_config# ip dhcp-relay snooping information option format manual

Switch_config# interface tg1/3

Switch_config_tg1/3# dhcp snooping information circuit-id string group1

1.1.19 Dhcp snooping information remote-id

Syntax

dhcp snooping information remote-id {string [STRING] | hex xx-xx-xx-xx-xx-xx}

no dhcp snooping information remote-id

Parameter

Parameter Description

string STRING Stands for the character string carried by the sub-option of option82

remote-id.

xx-xx-xx-xx-xx-xx Stands for the Hex system carried by option82 remote-id.

Default None

www.fs.com 121
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Command Mode Interface Configuration Mode

Usage Guidelines This command can be set on each port that connects the client. This command is used to configure option82 of the

DHCP packet, which is sent by DHCP client to DHCP server and monitored by DHCP snooping. (The switch of manually set option82 need

be enabled. See the command, ip dhcp-relay snooping information option format manual)

Example The following example shows how to set option82 to group1 manually on interface tg1/3, which belongs to interface vlan 1.

Switch_config# ip dhcp-relay snooping

Switch_config# ip dhcp-relay snooping vlan 1

Switch_config# ip dhcp-relay snooping information option format manual

Switch_config# interface tg1/3

Switch_config_tg1/3# dhcp snooping information remote-id string group1

1.1.20 Dhcp snooping information vendor-specific

Syntax

dhcp snooping information vendor-specific {string [STRING] | hex xx-xx-xx-xx-xx-xx}

no dhcp snooping information vendor-specific

Parameter

Parameter Description

STRING Stands for the character string carried by the sub-option of option82

verdor-specific.

xx-xx-xx-xx-xx-xx Stands for the Hex system carried by option82 verdor-specific.

Default None

Command Mode Interface Configuration Mode

Usage Guidelines This command can be set on each port that connects the client. This command is used to configure option82 of the

DHCP packet, which is sent by DHCP client to DHCP server and monitored by DHCP snooping. (The switch of manually set option82 need

be enabled. See the command, ip dhcp-relay snooping information option format manual)

www.fs.com 131
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Example The following example shows how to set vendor-specific (suboption 9) of option 82 by the hex system

(00-00-00-09-0d-01-0b-78-69-61-6f-6d-69-6e-37-31-31-34) on interface tg1/3.

Switch_config# ip dhcp-relay snooping

Switch_config# ip dhcp-relay snooping vlan 1

Switch_config# ip dhcp-relay snooping information option format manual

Switch_config# interface tg1/3

Switch_config_tg1/3# dhcp snooping information vendor-specific hex 00-00-00-09-0d-01-0b-78-69-61-6f-6d-69-6e-37-31-31-34

1.1.21 Dhcp snooping information append

Syntax

dhcp snooping information append

dhcp snooping information append first-subop9-param { hex xx-xx-xx-xx-xx-xx | hostname | vlanip }

dhcp snooping information append second-subop9-param { hex xx-xx-xx-xx-xx-xx | hostname | vlanip }

no dhcp snooping information append

no dhcp snooping information append first-subop9-param

no dhcp snooping information append second-subop9-param

Parameter

Parameter Description

first-subop9-param hex Stands for the Hex system of the first parameter carried by option82

[xx-xx-xx-xx-xx-xx] vendor-specific (suboption9).

second-subop9-param Stands for the Hex system of the second parameter carried by

hex [xx-xx-xx-xx-xx-xx] option82 vendor-specific (suboption9).

hostname Stands for the host name carried by option82 vendor-specific

(suboption9).

vlanip Stands for the IP address of the interface vlan carried by option82

vendor-specific (suboption9).

Default None

Command Mode Interface Configuration Mode

Usage Guidelines This command can be set on each port that connects the client. This command is used to configure option82 of the

DHCP packet, which is sent by DHCP client to DHCP server and monitored by DHCP snooping. This command without parameters acts as a

www.fs.com 141
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

switch command. When append is enabled, the information of this command will be added to suboption9 of option82. The added

information is first-subop9-param and second-subop9-param.

Example The following example shows how to expand the packet with option82 on interface tg1/3 and add parameter 1 for suboption9

with the hex system 61-62-63-61-62-63.

Switch_config_tg1/3# dhcp snooping information append

Switch_config_tg1/3# dhcp snooping information append first-subop9-param hex 61-62-63-61-62-63

61-62-63-61-62-63 is the hex system for the added parameter.

1.1.22 Dhcp snooping information drop

Syntax

dhcp snooping information drop

no dhcp snooping information drop

Parameter None

Default None

Command Mode Interface Configuration Mode

Usage Guidelines This command can be set on each port that connects the client. After this command is set, the request packets that

contain option82 will be dropped on the stipulated port.

Example The following example shows how to drop the dhcp packet with option82 on interface tg1/3.

Switch_config_tg1/3# dhcp snooping information drop

1.1.23 Dhcp snooping information replace

Syntax

dhcp snooping information replace

Replace the option82 field of dhcp request packets.

no dhcp snooping information replace

Disable to replace the option82 field of dhcp request packets.

www.fs.com 151
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Parameter None

Default None

Usage Guidelines This command can be configured on each port connected to the client. After this command is configured, the

option82 field of the dhcp request packet will be replaced on the specified port.

Example The following example shows how to replace the dhcp packet with option82 on interface tg1/3.

Switch_config_tg1/3# dhcp snooping information replace

1.1.24 Dhcp snooping information transmit

Syntax

dhcp snooping information transmit

Enable the port to transparently transmit DHCP messages with option 82 from the relay.

no dhcp snooping information transmit

Disable the port to transparently transmit DHCP messages with option 82 from the relay.

Parameter None

Default None

Usage Guidelines This command can be configured on each port connected to the client. After this command is configured, the DHCP

message with option 82 from the relay will be transparently transmitted on the designated port.

Example The following example shows how to configure transparent transmission of dhcp packets with option 82 from the relay on port

tg1/3:

Switch_config_tg1/3# dhcp snooping information transmit

1.1.25 Ip-source trust

Syntax

ip-source trust

no ip-source trust

www.fs.com 161
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Parameter None

Default The default interface is a distrusted one.

Command Mode Interface Configuration Mode

Usage Guidelines Source IP address snooping is not conducted to the source-IP-trusted interface. The “no” form of this command is used

to resume the Default of this interface.

Example The following example shows how to set interface tg0/1 to a source-ip-trusted interface.

Switch_config_tg0/1# ip-source trust

1.1.26 Show ip dhcp-relay snooping

Syntax

show ip dhcp-relay snooping

Parameter None

Default None

Command Mode Any Modes

Usage Guidelines This command is used to display the information about DHCP-relay snooping configuration.

Example The following example shows how to display the information about DHCP-relay snooping configuration.

Switch_config# show ip dhcp-relay snooping

DHCP Snooping trust interface:

ARP Inspect trust interface:

IP source guard trust interface:

tg0/1

DHCP Snooping deny interface:

ip dhcp-relay snooping db-file /dhcpr-database

1.1.27 Show ip dhcp-relay snooping binding

www.fs.com 171
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Syntax

show ip dhcp-relay snooping binding [all]

Parameter None

Default None

Command Mode Any Modes

Usage Guidelines This command is used to display the binding information about DHCP-relay snooping. If the all parameter is in the

command sentence, all binding information about DHCP-relay snooping will be displayed.

Example The following example shows how to display the binding information about DHCP-relay snooping.

Switch_config# show ip dhcp-relay snooping binding

1.1.28 Show ip dhcp-relay snooping statistics

Syntax

show ip dhcp-relay snooping statistics [all]

Parameter None

Default None

Command Mode Any Modes

Usage Guidelines This command is used to display the dhcp-relay snooping statistics information. If the all parameter is in the command

sentence, all binding information about Dhcp-relay snooping will be displayed.

Example The following example shows how to display the dhcp-relay snooping statistics information:

Switch_config_tg0/1# show ip dhcp-relay snooping statistics

server forward from trusted port: 0

client forward to trusted port: 0

server drop received on untrusted port: 0

www.fs.com 181
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

client drop destination on untrusted port: 0

client drop untrusted option 82 field: 0

client drop bad DHCP release request: 0

client drop failed verify MAC check: 0

client drop max client check: 0

1.1.29 Debug ip dhcp-relay snooping

Syntax

debug ip dhcp-relay snooping

no debug ip dhcp-relay snooping

Parameter None

Default None

Command Mode Privileged Mode

Usage Guidelines This command is used to enable or disable the debugging switch of DHCP-relay snooping.

Example The following example shows how to enable the debugging switch of DHCP-relay snooping.

Switch# debug ip dhcp-relay snooping

1.1.30 Debug ip dhcp-relay event

Syntax

debug ip dhcp-relay eventr

no debug ip dhcp-relay event

Parameter None

Default None

Command Mode Privileged Mode

www.fs.com 191
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Usage Guidelines This command is used to enable or disable the event debugging switch of DHCP-relay.

Example The following example shows how to enable the event debugging switch of DHCP-relay.

Switch# debug ip dhcp-relay event

1.1.31 Debug ip dhcp-relay binding

Syntax

debug ip dhcp-relay binding

no debug ip dhcp-relay binding

Parameter None

Default None

Command Mode Privileged Mode

Usage Guidelines This command is used to enable or disable the binding debugging switch of DHCP-relay snooping.

Example The following example shows how to enable the binding debugging switch of DHCP-relay snooping.

Switch# debug ip dhcp-relay binding

1.1.32 Debug ip dhcp-relay all

Syntax

debug ip dhcp-relay all

no debug ip dhcp-relay all

Parameter None

Default None

Command Mode Privileged Mode

www.fs.com 201
OLT3610 Series DHCP-SNOOPING CONFIGURATION COMMANDS

Usage Guidelines Turn on/off all Dhcp-relay debugging switches.

Example The following example shows how to turn on all Dhcp-relay debugging switches.

Switch# debug ip dhcp-relay all

www.fs.com 211