Specifications
Management Guide CLI
TigerAccess™ EE
SMC7824M/VSW 323
8.6.6.4 Option 82 Trust Policy
Default Trust Policy
To specify the default trust policy for DHCP packets, use the following command.
Command Mode Description
trust default {deny | permit} Option 82 Specifies the default trust policy for a DHCP packet.
If you specify the default trust policy as deny, the DHCP packet that carries the informa-
tion you specifies below will be permitted, and vice versa.
Trusted Remote ID
To specify a trusted remote ID, use the following command.
Command Mode Description
trust remote-id hex HEXSTRING
trust remote-id ip A.B.C.D
trust remote-id text STRING
Option 82 Specifies a trusted remote ID.
To delete a specified trusted remote ID, use the following command.
Command Mode Description
no trust remote-id hex HEXSTRING
no trust remote-id ip A.B.C.D
no trust remote-id text STRING
Option 82 Deletes a specified trusted remote ID.
Trusted Physical Port
To specify a trusted physical port, use the following command.
Command Mode Description
trust port PORTS {normal |
option82 | all}
Specifies a trusted physical port.
normal: DHCP packet
option82: DHCP option 82 packet
all: DHCP + option 82 packet
no trust port {all | PORTS} {nor-
mal
| option82 | all}
Option 82
Deletes a specified trusted port.
8.6.7 DHCP Snooping
For enhanced security, the switch provides the DHCP snooping feature. The DHCP
snooping filters untrusted DHCP messages and builds/maintains a DHCP snooping bind-
ing table. The untrusted DHCP message is a message received from outside the network,
and an untrusted interface is an interface configured to receive DHCP messages from
outside the network.
i