Dasan V5808 - Option 82 Trust Policy; Default Trust Policy; Trusted Remote ID; Trusted Physical Port

To Next Page

To Previous Page

UMN:CLI User Manual

V5808

346

8.5.6.4 Option 82 Trust Policy

Default Trust Policy

To specify the default trust policy for DHCP packets, use the following command.

Command

Mode

Description

trust default {deny | permit}

Option 82

Specifies the default trust policy for a DHCP packet.

If you specify the default trust policy as deny, the DHCP packet that carries the

information you specifies below will be permitted, and vice versa.

Trusted Remote ID

To specify a trusted remote ID, use the following command.

Command

Mode

Description

trust remote-id hex HEXSTRING

Option 82

Specifies a trusted remote ID.

trust remote-id ip A.B.C.D

trust remote-id text STRING

To delete a specified trusted remote ID, use the following command.

Command

Mode

Description

no trust remote-id hex HEXSTRING

Option 82

Deletes a specified trusted remote ID.

no trust remote-id ip A.B.C.D

no trust remote-id text STRING

Trusted Physical Port

To specify a trusted physical port, use the following command.

Command

Mode

Description

trust port PORTS {normal |

option82 | all}

Option 82

Specifies a trusted physical port.

normal: DHCP packet

option82: DHCP option 82 packet

all: DHCP + option 82 packet

no trust port {all | PORTS}

{normal | option82 | all}

Deletes a specified trusted port.

8.5.7 DHCP Snooping

For enhanced security, the V5808 provides the DHCP snooping feature. The DHCP

snooping filters untrusted DHCP messages and builds/maintains a DHCP snooping

binding table. The untrusted DHCP message is a message received from outside the

network, and an untrusted interface is an interface configured to receive DHCP messages

Main Page

Dasan V5808 - Option 82 Trust Policy; Default Trust Policy; Trusted Remote ID; Trusted Physical Port

Table of Contents