EasyManua.ls Logo

Cisco WS-C6506 - Page 883

Cisco WS-C6506
1488 pages
Save Page as PDF
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
33-9
Catalyst 6500 Series Switch Software Configuration Guide—Release 8.7
OL-8978-04
Chapter 33 Configuring DHCP Snooping and IP Source Guard
Configuring DHCP Snooping on a VLAN
Enter the show command to display the security-acl mode:
Console> (enable) show port security-acl 1/2
Port Interface Type Interface Type Interface Merge Status
config runtime runtime
----- -------------- -------------- ----------------------
1/2 port-based port-based not applicable
Config:
Port ACL name Type
----- -------------------------------- ----
1/2 dhcp IP
Runtime:
Port ACL name Type
----- -------------------------------- ----
1/2 dhcp IP
dhcp-snooping:
Port Trust Source-Guard Source-Guarded IP Addresses
----- ----------- ------------ ---------------------------
1/2 untrusted disabled
Port Binding Limit No. of Existing Bindings
----- ------------------ ------------------------
1/2 32 0
Enter the show command to verify the mapping:
Console> (enable) show security acl map config all
ACL Name Type Ports/Vlans
-------------------------------- ---- ----------------
dhcp IP 16
dhcp IP 1/2
The following example shows how to enable DHCP snooping in port-based mode with an external router
configuration. DHCP snooping ACL is mapped to the host and the DHCP server port.
Note Both the host and server ports are in port-based security ACL mode.
Console> (enable) set port security-acl 1/2 port-based
Warning: Vlan-based ACL features will be disabled on ports 1/2
ACL interface is set to port-based mode for port(s) 1/2.
Console> (enable) set port security-acl 5/2 port-based
Warning: Vlan-based ACL features will be disabled on ports 5/2
ACL interface is set to port-based mode for port(s) 5/2.
Console> (enable) set security acl map dhcp 1/2
Mapping in progress.
ACL dhcp successfully mapped to port(s) 1/2
Console> (enable) set security acl map dhcp 5/2
Mapping in progress.
ACL dhcp successfully mapped to port(s) 5/2
Enter the show command to display the security ACL mode:
Console> (enable) show port security-acl 1/2
Port Interface Type Interface Type Interface Merge Status
config runtime runtime
----- -------------- -------------- ----------------------
1/2 port-based port-based not applicable

Table of Contents

Related product manuals