Allied Telesis AT-8600 Series, Rapier i Series Completely removing the Dhcp snooping database

Page 7

DHCP snooping

Completely removing the DHCP snooping database

To completely remove the database, it is necessary to delete the file nvs:bindings.dsn.

Manager > delete fi=nvs:bindings.dsn nvs:bindings.dsn successfully deleted 1 file deleted.

Info (1056003): Operation successful.

Manager > enable dhcpsnooping

DHCPSN_DB: Reloading static entries...

Info (1137057): DHCPSNOOPING has been enabled.

Manager > DHCPSN_DB: Reading entries from file...

DHCPSN_DB: Full file name is: (nvs:bindings.dsn)

DHCPSN_DB: File nvs:bindings.dsn not present on device, nothing to load.

So the database is empty:

Manager > show dhcpsnooping database

DHCP Snooping Binding Database

-----------------------------------------------------------------------------

Database Version ..... 1

Full Leases/Max Leases ... 0/151

 

 

 

Check Interval

60 seconds

 

 

Database Listeners

....... CLASSIFR

 

 

 

Current valid entries

 

 

 

MAC Address

IP Address

Expires(s) VLAN Port

ID

Source

-----------------------------------------------------------------------------

None...

-----------------------------------------------------------------------------

Entries with client lease but no listeners

 

 

MAC Address

IP Address

Expires(s) VLAN Port

ID

Source

-----------------------------------------------------------------------------

None...

-----------------------------------------------------------------------------

Entries with no client lease and no listeners

MAC Address IP Address Expires(s) VLAN Port ID Source

-----------------------------------------------------------------------------

None...

-----------------------------------------------------------------------------

Page 7 AlliedWare™ OS How To Note: DHCP Snooping on Rapier-style switches

Image 7
Contents Introduction AlliedWareTM OSThis document contains the following contents Minimum configuration Related How To NotesDhcp snooping Verifying the status of snooped users Database survival across rebootsDatabase Dhcp snooping database time-outARP Security List of termsEnabling Dhcp snooping Trusted and non-trusted portsStatic binding So the database is empty Completely removing the Dhcp snooping databaseDhcp Option Example Packet Protocol detailsDhcp Message Type = Dhcp Request Analysis Configuring OptionDhcp filtering Configuring filteringResource considerations To enable Dhcp snooping ARP securityDhcp snooping filter show command ARP securityOr if ARP security is enabled, is If ARP security is enabled, addExample on a Rapier Configure a private Vlan for customers Configuration examplesDefine the Dhcp snooping trusted ports Enable Dhcp snooping and Option 82 supportAdd the tagged uplink ports to the Vlan Add the untagged ports for the customersDefine the upstream QoS flow groups Create a set of QoS classifiersCreate a traffic class for all upstream flow groups Add ports to the VLANs Configure two VLANs for layer 3 access to the Dhcp serverDefine the Dhcp snooping trusted port For layer 3 support, enable the Bootp RelayCreate a set of QoS classifiers DHCPSNProcess 0b4333cc TaggedNone UntaggedNone TroubleshootingNo trusted ports configured DHCPSNProcess 0b4333cc Dhcp Snooping pkt for Vlan From portMaximum number of leases is exceeded Dhcp client continually sends requests instead of a discoverManager set dhcpsnooping port=3 maxleases=2 Switch is dropping ARPsDhcpsnarp 01a6f5ec ARP to be forwarded, sender validated Trusted ports Dhcpsnarp 02680e6c ARP to be forwarded, sender validatedDisplaying log entries Show log command is also very usefulAppendix 1 ISC Dhcp server C613-16086-00 REV B