Alcatel OS6400-24 Guía de usuario Pagina 17
- Pagina / 55
- Tabla de contenidos
- MARCADORES
Valorado. / 5. Basado en revisión del cliente
August 2008
OmniSwitch 6400 ------ Release 6.3.3.R01 Page 17 of 55
may identify one or more server IP addresses to which DHCP packets will be sent from the specified
VLAN. Both standard and per VLAN modes are supported.
DHCP Relay Agent Information Option
The DHCP Option-82 feature enables the relay agent to insert identifying information into client-originated
DHCP packets before the packets are forwarded to the DHCP server. The implementation of this feature is
based on the functionality defined in RFC 3046.
When DHCP Option-82 is enabled, communications between a DHCP client and a DHCP server are
authenticated by the relay agent . To accomplish this task, the agent adds Option-82 data to the end of the
options field in DHCP packets sent from a client to a DHCP server.
If the relay agent receives a DHCP packet from a client that already contains Option-82 data, the packet is
dropped by default. However, it is possible to configure a DHCP Option-82 policy that directs the relay
agent to drop, keep, or replace the existing Option-82 data and then forward the packet to the server.
DHCP Snooping
DHCP Snooping improves network security by filtering DHCP packets received from devices outside the
network and building and maintaining a binding table (database) to log DHCP client access information.
There are two levels of operation available for the DHCP Snooping feature: switch level or VLAN level.
To identify DHCP traffic that originates from outside the network, DHCP Snooping categorizes ports as
either trusted or untrusted. A port is trusted if it is connected to a device inside the network, such as a
DHCP server. A port is untrusted if it is connected to a device outside the network, such as a customer
switch or workstation. The port trust mode is also configurable through the CLI.
Additional DHCP Snooping functionality includes the following:
• IP Source Filtering—Restricts DHCP Snooping port traffic to only packets that contain the client
source MAC address and IP address obtained from the DHCP lease information. The DHCP Snooping
binding table is used to verify the client lease information for the port that is enabled for IP source
filtering.
• Rate Limiting—Limits the number of DHCP packets on a port. This functionality is provided using
the QoS application to configure ACLs for the port.
• User-configurable Option 82 Suboption Format—Allows the user to specify the type of information
(switch base MAC address, system name, or user-defined string) that is inserted into the Circuit ID and
Remote ID suboptions of the Option-82 field. This functionality only applies when DHCP Snooping
Option-82 Data Insertion is enabled.
DHCP Snooping – Layer 2
By default, DHCP broadcasts are flooded on the default VLAN for the client/server port. If the DHCP
client and server are both members of the same VLAN domain, the broadcast packets from these sources
are bridged as Layer 2 traffic and not processed by the relay agent.
The Omnswitch provides enhancements to DHCP Snooping to allow application of DHCP Snooping
functionality to bridged DHCP client/server broadcasts without using the relay agent or requiring an IP
interface on the client/server VLAN.
- Release Notes 1
- Contents 2
- System Requirements 4
- August 2008 10
- Feature Descriptions 12
- Access Control Lists (ACLs) 13
- ACL & Layer 3 Security 14
- ACL Manager 14
- ARP Defense Optimization 15
- ARP Poisoning Detection 15
- Authenticated Switch Access 15
- Authenticated VLANs 16
- Command Line Interface (CLI) 16
- DHCP Relay 16
- DHCP Snooping 17
- DHCP Snooping – Layer 2 17
- IP/IP Tunneling 20
- IP Multicast VLAN 20
- Interswitch Protocol (AMAP) 20
- IPv4 Support 21
- IPv6 Support 21
- IP DoS Filtering 22
- NTP Client 25
- Policy Server Management 25
- Port Mapping (Private VLANs) 25
- Port Mirroring 25
- Port Monitoring 26
- Power over Ethernet (PoE) 26
- Quality of Service (QoS) 26
- Routing Protocol Preference 30
- Secure Copy (SCP) 30
- Secure Shell (SSH) 30
- Server Load Balancing (SLB) 31
- Source Learning 32
- Software Rollback 32
- Spanning Tree 33
- Unsupported MIBs 44
- Ethernet 50
- VLAN Stacking 52
- General 52
- UDP/TCP 52
- Technical Support 55
Relacionado con productos y manuales para Redes Alcatel OS6400-24
Redes Alcatel OS-6124 Manual de usuario
(8 paginas)
(8 paginas)
Redes Alcatel One Touch X200S Manual de usuario
(20 paginas)
(20 paginas)
Redes Alcatel SpeedTouch Speed Touch Home Asymmetric Digital Subscriber Line (ADSL) Modem Guía de usuario
(34 paginas)
(34 paginas)
Redes Alcatel One Touch X200S Guía de usuario
(21 paginas)
(21 paginas)
Redes Alcatel OS6855-24 Manual de usuario
(9 paginas)
(9 paginas)
Redes Alcatel OS6850-48 Manual de usuario
(9 paginas)
(9 paginas)
Redes Alcatel OS6850-48 Manual de usuario
(20 paginas)
(20 paginas)
Redes Alcatel Router Manual de usuario
(7 paginas)
(7 paginas)
Redes Alcatel Modem Manual de usuario
(2 paginas)
(2 paginas)
Redes Alcatel OmniSwitch/Router Guía de usuario
(346 paginas)
(346 paginas)
Redes Alcatel OS6400-48 Manual de usuario
(8 paginas)
(8 paginas)
© 2020, manymanuals.es. Todos los derechos reservados | 0.089 s |
Manymanuals.com
Manymanuals.de
Manymanuals.fr
Manymanuals.it
Manymanuals.pl
Manymanuals.cz
Manymanuals.es
Manymanuals-pt.com
Comentarios a estos manuales