dhcp-filter-show
DHCP snooping is a security feature which allows the network to avoid denial-of-service attacks from rogue DHCP servers. Trusted ports are defined to connect to the known DHCP servers. DHCP snooping also maintains a mapping table for current assignments.
In a DHCP packet flow, there are the following packet types:
- DHCPDISCOVER/DHCPREQUEST — Packets from the DHCP client to server (UDP dest-port = 67)
- DHCPOFFER/DHCPACK — Packets from the DHCP Server to client (UDP dest-port = 68)
This command is used to display DHCP filter information.
Syntax dhcp-filter-show
|
name name-string |
Name of the filter. |
|
trusted-ports port-list |
A list of trusted ports. |
|
vlan vlan-list |
A list of VLANs. |
History
|
Version 2.6.0 |
Command introduced. |
Usage Use this command to display information about a DHCP filter configuration.
Examples To display DHCP filter information, use the following syntax:
CLI (network-admin@switch) > dhcp-filter-show trusted-ports 1
name trusted-ports
----------- -------------
dhcp-filter 0-2,5,12