Configures and enables a trusted DHCP server on the switch.
vlan_name | Specifies the VLAN name. |
dynamic | Configuration options for dynamically created VLANs. |
vlan_id | VLAN ID tag between 1 and 4,094. |
ip_address | Specifies the IP address of the trusted DHCP server. |
N/A.
If you configured trusted DHCP server, the switch forwards only DHCP packets from the trusted servers. The switch drops DHCP packets from other DHCP snooping-enabled ports.
You can configure a maximum of eight trusted DHCP servers on the switch.
If you configure a port as a trusted port, the switch assumes that all DHCP server packets on that port are valid.
To display the DHCP snooping configuration settings, including DHCP trusted servers if configured, use the following command:
show ip-security dhcp-snooping {vlan} vlan_nameTo display any violations that occur, including those on the DHCP trusted servers if configured, use the following command:
show ip-security dhcp-snooping violations {vlan} vlan_nameThe following command configures a trusted DHCP server on the switch:
configure trusted-servers vlan purple add server 10.10.10.10 trust-for dhcp-server
This command was first available in ExtremeXOS 11.6.
Dynamic VLAN and VLAN ID options added in ExtremeXOS 30.2.
This command is available on ExtremeSwitching 5320, 5420, 5520, and 5720 series switches.