237
22.18 ip dhcp snooping option82 enable
Command: ip dhcp snooping option82 enable
no ip dhcp snooping option82 enable
Function: To enable DHCP option82 of dot1x in access switch. After DHCP Snooping
monitored DHCP requires packets, add the option82 which can indicate user
authentication state to the back of requires packet, and then deliver to DHCP relay.
Parameter: None.
Command Mode: Global Mode.
Default: The DHCP option82 of dot1x is disabled by default.
Usage Guide: This command configures the DHCP snooping to append the option82
information for DHCP requests when dot1x dhcpoption82based authentication is applied.
By default, for un-authenticated users, the switch appends to the option 82 field of the
DHCP requests with the remote-id field as unauth, and the circuit-id field as the MAC
address of the CPU port of the switch. The DHCP server allocates addresses based on
the information provided by the option82 field. And users can retrieve different IP
addresses before and after authentication. When this command is applied, DHCP relay
should not be configured on the truck switch which is connected to the local access
switch.
Example: Enable option82 function of DHCP Snooping.
switch(Config)#ip dhcp snooping option82 enable
Relative Command: dot1x port-method dhcpoption82based
22.19 enable trustview key
Command: enable trustview key {0 | 7} <password>
no enable trustview key
Function: To configure DES encrypted key for private packets, this command is also the
switch for the private packets encrypt and hash function enabled or not.
Parameter: <password> is character string length less than 16, which use as encrypted
key. 0 for un-encrypted text for the password, while 7 for encrypted.
Command Mode: Global Mode.
Default: Disabled.
Usage Guide: The switch communicates with the TrustView management system
through private protocols. By default these packets are not encrypted. In order to prevent
spoofing, it can be configured to encrypt these packets. And at the same time, the same
To Next Page
Loading...
