UMN:CLI

User Manual

 

SURPASS hiD 6615 S223/S323 R1.5

 

 

 

To select a recognition method of DHCP clients, use the following command.

Command

Mode

Description

 

 

 

ip dhcp database-key {client-id

Global

Selects a recognition method of DHCP clients

hardware-address}

 

 

 

 

 

8.8.1.12IP Address Validation

Before assigning an IP address to a DHCP client, a DHCP server will validate if the IP address is used by another DHCP client with a ping or ARP. If the IP address does not re- spond to a requested ping or ARP, the DHCP server will realize that the IP address is not used then will assign the IP address to the DHCP client.

To select an IP address validation method, use the following command.

Command

Mode

Description

 

 

 

ip dhcp validate {arp ping}

Global

Selects an IP address validation method.

 

 

 

You can also set a validation value of how many responses and how long waiting (time- out) for the responses from an IP address for a requested ping or ARP when a DHCP server validates an IP address.

To set a validation value of how many responses from an IP address for a requested ping or ARP, use the following command.

Command

Mode

Description

 

 

 

ip dhcp {arp ping} packet <0-

Global

Sets a validation value of how many responses.

20>

0-20: response value (default: 2)

 

 

 

 

To set a validation value of timeout for the responses from an IP address for a requested ping or ARP, use the following command.

Command

Mode

Description

 

 

 

ip dhcp {arp ping} timeout

 

Sets a validation value of timeout for the responses in

Global

the unit of millisecond.

<100-5000>

 

100-5000: timeout value (default: 500)

 

 

 

 

 

8.8.1.13Authorized ARP

The authorized ARP is to limit the leasing of IP addresses to authorized users. This func- tion strengthens security by blocking ARP responses from unauthorized users at the DHCP server.

To disacrd an ARP response from unauthorized user, use the following command.

Command

Mode

Description

 

 

 

ip dhcp authorized-arp <120-

 

Discards an ARP response from unauthorized user.

2147483637>

Global

120-2147483637: starting time (multiples of 30)

 

 

 

no ip dhcp authorized-arp

 

Disables the authorized ARP function.

 

 

 

244

A50010-Y3-C150-2-7619

Page 244
Image 244
Siemens S323, S223 user manual IP Address Validation, Authorized ARP, 244 A50010-Y3-C150-2-7619