Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document.
Note: Even the most advanced machine translation cannot match the quality of professional translators.
Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
DHCP_1.3.6.1.4.1.2011.5.25.112.2.4 hwUntrustedReplyPktAlarm
Description
DHCP/1/REPLYTRAP:OID [OID] The number of the discarded DHCP reply packets on the untrusted interface exceeds the threshold. (IfIndex=[INTEGER], VlanIndex=[INTEGER], Interface=[OCTET], VlanID=[INTEGER], DiscardedNumber=[INTEGER])
The number of DHCP Reply packets discarded on the untrusted interface exceeded the threshold.
Attribute
| Alarm ID | Alarm Severity | Alarm Type |
|---|---|---|
| 1.3.6.1.4.1.2011.5.25.112.2.4 | Critical | equipmentAlarm(5) |
Parameters
| Name | Meaning |
|---|---|
| OID | Indicates the MIB object ID of the alarm. |
| IfIndex | Indicates the interface index. |
| VlanIndex | Indicates the VLAN index. |
| Interface | Indicates the interface name. |
| VlanID | Indicates the VLAN ID. |
| DiscardedNumber | Indicates the number of discarded packets. |
Procedure
- Capture packets on the interface to check whether a bogus DHCP server attack occurs on this interface.
- Check whether the DHCP server address in the received DHCP Reply packet is the specified server address. If not, the DHCP server is a bogus server. Because the invalid DHCP packets have been discarded, no action is required.
- If the DHCP server is a valid server and needs to be used, run the dhcp snooping trusted command on the interface to configure it as a trusted interface.
Previous
