No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

FAQ-The command replacing dhcp server detect in V1R5

Publication Date:  2012-12-06 Views:  53 Downloads:  0
Issue Description
Some site USG5100 BSR(V1R3)failure, it need to replace, the spare part version is V1R5,add one item in original configuration:dhcp server detect ,but there is not this command on V1R5 version.
Alarm Information
NULL
Handling Process
Open dhcp snooping enable for global

Open dhcp snooping enable on interface

The interface connecting dhcp server configured as dhcp snooping trust

dhcp snooping trusted

Root Cause
Dhcp server detect command in V1R3 is used for identify "false DHCP server", the function in V1R5 consolidate to dhcp snooping function.
Suggestions
(1)V1R5 version configuration command is different from the former version.
(2)DHCP Snooping is one kind of DHCP safe feature, by MAC address limit,DHCP Snooping safe bonding, IP + MAC bonding, Option82 feature function can fiitrate the DHCP information untrust,it solves the problem that DHCP Server false attack, arp middleman attack, IP/MAC Spoofing attack  and DHCP DoS attack when the device apply, the function of DHCP Snooping is that establish one firewall between client and dhcp server.

END