OmniSwitch OS6860/OS6900/OS10K Troubleshooting Guide Part No.032996-00 Rev.A
AOS Release 7.X and 8.X January 2015
Alcatel-Lucent Page 60 of 148
-> no ip helper statistics vlan <vlan id> address <ipv4addr>
Generic UDP Relay Service
Use the "show ip udp relay [service <name>| port [<number>]" command to display UDP Relay
configuration:
-> show ip udp relay
Service Name Port Vlans
---------------------+-----+-----------------------------
DNS port 53
Use the "show ip udp relay statistics [service <name>| port [<number>]" command to display UDP Relay
statistics:
-> show ip udp relay statistics
Port Service Pkts Recvd Pkts Sent Dst Vlan
-----+--------------+----------+----------+--------
53 DNS port 2
2 10
Resetting statistics:
-> ip udp relay no statistics
DHCP Snooping Traffic Violation Statistics
DHCP Snooping traffic filtering/blocking statistics are kept per port. There are five counters:
MAC Address violation counter. This counter is incremented when an DHCP packet is received on an
untrusted interface, and the Ethernet source MAC address and the DHCP client hardware address do not
match.
DHCP Server packets violation counter. This counter is incremented when a DHCP packet from a DHCP
server, such as a DHCPOFFER, DHCPACK, DHCPNAK, or DHCPLEASEQUERY packet, is received on
an untrusted port.
DHCP binding violation counter. This counter is incremented when the switch receives a DHCPRELEASE
or DHCPDECLINE broadcast message that contains a MAC address in the DHCP snooping binding table,
but the interface information in the binding table does not match the interface on which the message was
received.
DHCP Option 82 violation counter. This counter is incremented when a relay agent forwards a packet that
includes option-82 information to an untrusted port.
DHCP Relay Agent counter. This counter is incremented when a DHCP relay agent forwards a DHCP
packet that includes a relay-agent IP address that is not 0.0.0.0.
The above statistics violation counters are applicable for both switch-level and vlan-level DHCP Snooping.
And they are only applicable when the port is in the "Client-Only" trust mode. When the port mode is change
from "Client-Only" to "Blocked/Trusted", the counters are reset to 0
Logging to SWLOG
Following appids may be used for monitorig UDP Relay:
-> show configuration snapshot system
! System Service:
swlog appid udpRelay subapp all level debug3
swlog appid ipni subapp 15 level debug3
An example of UDP Relay related logs:
-> show log swlog | grep -E "udpRelay|udprelay"
<snap> swlogd: ipni udprelay debug2(7) port-chk: udp-dport 53
To Next Page
Loading...
