C
HAPTER
25
| General Security Measures
DHCP Snooping
– 660 –
show web-auth
summary
This command displays a summary of web authentication port parameters
and statistics.
COMMAND MODE
Privileged Exec
EXAMPLE
Console#show web-auth summary
Global Web-Auth Parameters
System Auth Control : Enabled
Port Status Authenticated Host Count
---- ------ ------------------------
1/ 1 Disabled 0
1/ 2 Enabled 8
1/ 3 Disabled 0
1/ 4 Disabled 0
1/ 5 Disabled 0
.
.
.
DHCP SNOOPING
DHCP snooping allows a switch to protect a network from rogue DHCP
servers or other devices which send port-related information to a DHCP
server. This information can be useful in tracking an IP address back to a
physical port. This section describes commands used to configure DHCP
snooping.
Table 78: DHCP Snooping Commands
Command Function Mode
ip dhcp snooping Enables DHCP snooping globally GC
ip dhcp snooping database
flash
Writes all dynamically learned snooping entries to
flash memory
GC
ip dhcp snooping
information option
Enables or disables DHCP Option 82 information
relay
GC
ip dhcp snooping
information policy
Sets the information option policy for DHCP client
packets that include Option 82 information
GC
ip dhcp snooping verify
mac-address
Verifies the client’s hardware address stored in the
DHCP packet against the source MAC address in the
Ethernet header
GC
ip dhcp snooping vlan Enables DHCP snooping on the specified VLAN GC
ip dhcp snooping trust Configures the specified interface as trusted IC
clear ip dhcp snooping
database flash
Removes all dynamically learned snooping entries
from flash memory.
PE
show ip dhcp snooping Shows the DHCP snooping configuration settings PE
show ip dhcp snooping
binding
Shows the DHCP snooping binding table entries PE
To Next Page
Loading...
Need help?
General