SlideShare une entreprise Scribd logo

Dhcp snooping option 82 configuration

Télécharger en tant que DOCX, PDF
IT Tech
IT Tech

Dhcp snooping option 82 configuration examples

Technologie
1  sur  6
DHCP Snooping Option 82 Configuration Examples This document describes the typical application environment and configuration examples for DHCP snooping Option 82. Acronyms: Acronym Full spelling DHCP Dynamic Host Configuration Protocol DNS Domain Name System giaddr Gateway IP address WINS Windows Internet Naming Service 1 Feature Overview Option 82 is the relay agent option which records the location information of the DHCP client. When a DHCP snooping device receives a client’s request, it adds Option 82 to the request message and sends it to the server. Then, the DHCP server can assign a proper IP address and other parameters for the client. The administrator can also use Option 82 to implement security control and accounting. 2 Application Scenarios Figure 1 Option 82 application Typically, a DHCP server assigns an IP address based on the giaddr filed of the client’s request or the IP address of the interface that received the client’s request. In Figure 1, the DHCP server assign IP addresses to Host A and Host B from the network segment where the clients belong. http://blog.router-switch.com/
Traditionally, the DHCP server cannot assign to Host A an IP address that is in a different network segment from the IP address assigned to Host B. However, this can be achieved through Option 82, with which, the DHCP server can assign IP addresses based on the DHCP snooping interface connected to the clients and the giaddr filed in DHCP requests. A client’s ID can be recognized by Option 82. Therefore, the DHCP server can assign a unique IP address to each client, to further implement QoS, security and accounting management. 3 Configuration Guidelines  The DHCP snooping Option 82 function can take effect only after you enable DHCP snooping.  DHCP snooping does not support link aggregation. If a Layer 2 Ethernet interface is added into an aggregation group, DHCP snooping configuration on it will not take effect. When the interface is removed from the group, DHCP snooping can take effect.  The DHCP snooping enabled device does not work if it resides between a DHCP relay agent and DHCP server, and it can work when it resides between a DHCP client and relay agent or between a DHCP client and server.  You are recommended to enable the DHCP snooping Option 82 function on the DHCP snooping device closest to the DHCP client for locating the client accurately.  The DHCP snooping enabled device cannot act as a DHCP server or DHCP relay agent.  You are not recommended to enable the DHCP client, BOOTP client, and DHCP snooping on the same device. Otherwise, DHCP snooping entries may fail to be generated, or the BOOTP client/DHCP client may fail to obtain an IP address. 4 Configuration Examples 4.1 Network Requirements The work area of an enterprise is divided into three groups, group 1, group 2, and group 3, which are located in three rooms. A DHCP server is deployed to assign IP addresses of different segments to the three groups. It is required that: The DHCP server assigns IP addresses on the network segment 192.168.10.0/24 to devices in the work area. The lease time is 12 hours, and the DNS and WINS server addresses are 192.168.100.2 and 192.168.100.3 respectively. Group 1, group 2 and group 3 are connected to the DHCP snooping device through Ethernet1/1, Ethernet1/2 and Ethernet1/3 respectively to communicate with the DHCP server. The DHCP server assigns IP addresses ranging from 192.168.10.2 to 192.168.10.25 to clients in group 1, assigns IP addresses ranging from 192.168.10.100 to 192.168.10.150 to clients in group 2, and assigns IP addresses http://blog.router-switch.com/
ranging from 192.168.10.151 to 192.168.10.200 to clients in group 3. Figure 2 Network diagram for DHCP snooping 4.2 Configuration Considerations  Enable Option 82 support on the DHCP snooping device.  Configure the Option 82 sub-option, so that the clients in different groups can send packets carrying different Option 82 information. To do so, you can manually specify the circuit ID sub-option.  Configure IP address assignment policy on the DHCP server, so that the DHCP server can assign proper IP addresses to the DHCP clients according to Option 82. 4.3 Software Version Used This example is configured and verified on Comware V500R002B42D001. 4.4 Configuration Procedures Note:The following configurations are made on devices that are using default settings and verified in a lab environment. When using the following configurations on your devices in a live network, make sure they do not conflict with your current configurations to prevent potential negative impact on your network. 4.4.1 Configuration on the DHCP Snooping Device I. Configuration steps # Enable DHCP snooping. <Switch> system-view [Switch] dhcp-snooping # Configure Ethernet 1/4 as a DHCP snooping trusted port. [Switch] interface ethernet 1/4 http://blog.router-switch.com/
[Switch-Ethernet1/4] dhcp-snooping trust [Switch-Ethernet1/4] quit # Enable Ethernet 1/1 to support Option 82. [Switch] interface ethernet 1/1 [Switch-Ethernet1/1] dhcp-snooping information enable # Pad the Option 82 circuit ID sub-option with group 1. [Switch-Ethernet1/1] dhcp-snooping information circuit-id string group1 [Switch-Ethernet1/1] quit # Enable Ethernet 1/2 to support Option 82. [Switch] interface ethernet 1/2 [Switch-Ethernet1/2] dhcp-snooping information enable # Pad the Option 82 circuit ID sub-option with group 2. [Switch-Ethernet1/2] dhcp-snooping information circuit-id string group2 [Switch-Ethernet1/2] quit # Enable Ethernet 1/3 to support Option 82. [Switch] interface ethernet 1/3 [Switch-Ethernet1/3] dhcp-snooping information enable [Switch-Ethernet1/3] quit # Pad the Option 82 circuit ID sub-option with group 3. [Switch-Ethernet1/3] dhcp-snooping information circuit-id string group3 [Switch-Ethernet1/3] quit II. Configuration file <Switch> display current-configuration # interface Ethernet1/1 port link-mode bridge dhcp-snooping information enable dhcp-snooping information circuit-id string group1 # interface Ethernet1/2 port link-mode bridge dhcp-snooping information enable dhcp-snooping information circuit-id string group2 # interface Ethernet1/3 port link-mode bridge dhcp-snooping information enable dhcp-snooping information circuit-id string group3 # interface Ethernet1/4 port link-mode bridge dhcp-snooping trust # http://blog.router-switch.com/
4.4.2 Configuration on the DHCP Server I. Configuration steps You can use the following two methods to configure Option 82: 1. User-defined method: Manually specify the content of Option 82. 2. Non-user-defined method: Pad Option 82 in the default normal or verbose format. For the second method, the circuit ID sub-option format is as shown in Figure 3 . Figure 3 Circuit ID sub-option format For example, for clients connected to Ethernet 1/1, the circuit ID sub-option is padded with group 1. The circuit ID sub-option in DHCP packets should contain the following information: 0x010667726F757031, in which 0106 refers to the number and length of the circuit ID sub-option, and 67726F757031 refers to the hexadecimal value of the character string group 1. In this example, IP addresses are assigned according to the group number; therefore, the DHCP server only needs to assign IP addresses based on the group number padded in the circuit ID sub-option. Note:The DHCP server is configured on a Cisco Catalyst 3745 switch with software version IOS 12.3(11)T2. To configure a device of another type or version as the DHCP server, refer to the related user manual. # Configure the server interface IP address as 192.168.10.1/24. Server> enable Server# configure terminal Server(config)# interface fastethernet 0/0 Server(config-if)# ip address 192.168.10.1 255.255.255.0 Server(config-if)# exit # Enable DHCP server, and configure the DHCP server to assign IP addresses based on Option 82. Server(config)# service dhcp Server(config)# ipdhcp use class # Create a DHCP class for clients in group 1, and specify the corresponding circuit ID sub-option for matching. For the content not to be matched, enter the wildcard ”*”. Server(config)# ipdhcp class group1 Server(dhcp-class)# relay agent information Server(dhcp-class-relayinfo)# relay-information hex 010667726F757031* Server(dhcp-class-relayinfo)# exit http://blog.router-switch.com/
# Create a DHCP class for clients in group 2, and specify the corresponding circuit ID sub-option for matching. Server(config)# ipdhcp class group2 Server(dhcp-class)# relay agent information Server(dhcp-class-relayinfo)# relay-information hex 010667726F757032* Server(dhcp-class-relayinfo)# exit # Create a DHCP class for clients in group 3 and specify the corresponding circuit ID sub-option for matching. Server(config)# ipdhcp class group3 Server(dhcp-class)# relay agent information Server(dhcp-class-relayinfo)# relay-information hex 010667726F757033* Server(dhcp-class-relayinfo)# exit # Create a DHCP address pool named office, and specify the lease time, gateway address, DNS server address, and WINS server address for clients. Server(config)# ipdhcp pool office Server(dhcp-config)# network 192.168.10.0 Server(dhcp-config)# lease 0 12 Server(dhcp-config)# default-router 192.168.10.1 Server(dhcp-config)# dns-server 192.168.100.2 Server(dhcp-config)# netbios-name-server 192.168.100.3 # Specify address ranges for the three DHCP classes respectively. Server(dhcp-config)# class group1 Server(dhcp-pool-class)# address range 192.168.10.2 192.168.10.25 Server(dhcp-pool-class)# class group2 Server(dhcp-pool-class)# address range 192.168.10.100 192.168.10.150 Server(dhcp-pool-class)# class group3 Server(dhcp-pool-class)# address range 192.168.10.151 192.168.10.200 4.4.3 Verification After completing the above configurations, the DHCP server can automatically assign IP addresses of the specified range, gateway address, DNS server address, and WINS server address for clients of each group in the work area. More Related DHCP Snooping Tips: How to Configure DHCP Snooping? http://blog.router-switch.com/

Recommandé

Investigation of dhcp packets using wireshark
Investigation of dhcp packets using wiresharkInvestigation of dhcp packets using wireshark
Investigation of dhcp packets using wiresharkjpratt59
 
Dhcp Snooping
Dhcp SnoopingDhcp Snooping
Dhcp SnoopingPrateek Baharani
 
versa router teletronics
versa router teletronicsversa router teletronics
versa router teletronicsguestd33e17a
 
A1803020108
A1803020108A1803020108
A1803020108IOSR Journals
 
Vpn addind technique
Vpn addind techniqueVpn addind technique
Vpn addind techniquekamarasan karthik
 
Customized Dynamic Host Configuration Protocol
Customized Dynamic Host Configuration ProtocolCustomized Dynamic Host Configuration Protocol
Customized Dynamic Host Configuration ProtocolIDES Editor
 
Configuration DHCP
Configuration DHCPConfiguration DHCP
Configuration DHCPTan Huynh Cong
 
Basics about IP address, DNS and DHCP.
Basics about IP address, DNS and DHCP.Basics about IP address, DNS and DHCP.
Basics about IP address, DNS and DHCP.abhishek bhandare
 

Recommandé

Investigation of dhcp packets using wireshark
Investigation of dhcp packets using wiresharkInvestigation of dhcp packets using wireshark
Investigation of dhcp packets using wiresharkjpratt59
 
Dhcp Snooping
Dhcp SnoopingDhcp Snooping
Dhcp SnoopingPrateek Baharani
 
versa router teletronics
versa router teletronicsversa router teletronics
versa router teletronicsguestd33e17a
 
A1803020108
A1803020108A1803020108
A1803020108IOSR Journals
 
Vpn addind technique
Vpn addind techniqueVpn addind technique
Vpn addind techniquekamarasan karthik
 
Customized Dynamic Host Configuration Protocol
Customized Dynamic Host Configuration ProtocolCustomized Dynamic Host Configuration Protocol
Customized Dynamic Host Configuration ProtocolIDES Editor
 
Configuration DHCP
Configuration DHCPConfiguration DHCP
Configuration DHCPTan Huynh Cong
 
Basics about IP address, DNS and DHCP.
Basics about IP address, DNS and DHCP.Basics about IP address, DNS and DHCP.
Basics about IP address, DNS and DHCP.abhishek bhandare
 
Networking For Application Developers by Roy Kim
Networking For Application Developers by Roy KimNetworking For Application Developers by Roy Kim
Networking For Application Developers by Roy KimRoy Kim
 
Manual wireless router cnet cwr 854
Manual wireless router cnet cwr 854Manual wireless router cnet cwr 854
Manual wireless router cnet cwr 854fgonzalez2005
 
Tutorial on dhcp
Tutorial on dhcp Tutorial on dhcp
Tutorial on dhcp Salah Amean
 
Ir.67 v8.0- enum dns guidelines
Ir.67 v8.0- enum dns guidelinesIr.67 v8.0- enum dns guidelines
Ir.67 v8.0- enum dns guidelinesuwb_group
 
Multicast IP addresses Part 1
Multicast IP addresses Part 1Multicast IP addresses Part 1
Multicast IP addresses Part 1Mohmed Abou Elenein Attia
 
DCHP,NAT,forwarding of ip packets
DCHP,NAT,forwarding of ip packetsDCHP,NAT,forwarding of ip packets
DCHP,NAT,forwarding of ip packetsrajshreemuthiah
 
Ccnp3 lab 3_4_en
Ccnp3 lab 3_4_enCcnp3 lab 3_4_en
Ccnp3 lab 3_4_enOmar Herrera
 
CCNA Network Services
CCNA Network ServicesCCNA Network Services
CCNA Network ServicesDsunte Wilson
 
Dhcp 11
Dhcp 11Dhcp 11
Dhcp 11Jainul Musani
 
Dhcp pd in brief
Dhcp pd in briefDhcp pd in brief
Dhcp pd in briefFred Bovy
 
Ccna 1 final
Ccna 1 finalCcna 1 final
Ccna 1 finalVahdet Shehu
 
CCNP Security SIMOS 300-209=vpn 642-648
CCNP Security SIMOS 300-209=vpn 642-648CCNP Security SIMOS 300-209=vpn 642-648
CCNP Security SIMOS 300-209=vpn 642-648Mohmed Abou Elenein Attia
 
Zdalna komunikacja sieciowa - zagadnienia sieciowe
Zdalna komunikacja sieciowa - zagadnienia sieciowe Zdalna komunikacja sieciowa - zagadnienia sieciowe
Zdalna komunikacja sieciowa - zagadnienia sieciowe Agnieszka Kuba
 
VoiceBootcamp Ccnp collaboration lab guide v1.0 sample
VoiceBootcamp Ccnp collaboration lab guide v1.0 sampleVoiceBootcamp Ccnp collaboration lab guide v1.0 sample
VoiceBootcamp Ccnp collaboration lab guide v1.0 sampleFaisal Khan
 
CCNA 200-120 Exam Questions
CCNA 200-120 Exam QuestionsCCNA 200-120 Exam Questions
CCNA 200-120 Exam QuestionsEng. Emad Al-Atoum
 
CCNA 1
CCNA 1CCNA 1
CCNA 1Asish Verma
 
Configuring a cisco 2901 router
Configuring a cisco 2901 routerConfiguring a cisco 2901 router
Configuring a cisco 2901 routerIT Tech
 
WIRELESS NETWORK
WIRELESS NETWORKWIRELESS NETWORK
WIRELESS NETWORKprakash m
 
QSpiders - Variable Length-Subnet-Masks
QSpiders - Variable Length-Subnet-MasksQSpiders - Variable Length-Subnet-Masks
QSpiders - Variable Length-Subnet-MasksQspiders - Software Testing Training Institute
 
Drx
DrxDrx
DrxMuhammad Shehzad Ashraf
 
Lession4 Dhcp
Lession4 DhcpLession4 Dhcp
Lession4 Dhcpleminhvuong
 
Dhcp
DhcpDhcp
DhcpTapan Khilar
 

Contenu connexe

Tendances

Networking For Application Developers by Roy Kim
Networking For Application Developers by Roy KimNetworking For Application Developers by Roy Kim
Networking For Application Developers by Roy KimRoy Kim
 
Manual wireless router cnet cwr 854
Manual wireless router cnet cwr 854Manual wireless router cnet cwr 854
Manual wireless router cnet cwr 854fgonzalez2005
 
Tutorial on dhcp
Tutorial on dhcp Tutorial on dhcp
Tutorial on dhcp Salah Amean
 
Ir.67 v8.0- enum dns guidelines
Ir.67 v8.0- enum dns guidelinesIr.67 v8.0- enum dns guidelines
Ir.67 v8.0- enum dns guidelinesuwb_group
 
DCHP,NAT,forwarding of ip packets
DCHP,NAT,forwarding of ip packetsDCHP,NAT,forwarding of ip packets
DCHP,NAT,forwarding of ip packetsrajshreemuthiah
 
CCNA Network Services
CCNA Network ServicesCCNA Network Services
CCNA Network ServicesDsunte Wilson
 
Dhcp pd in brief
Dhcp pd in briefDhcp pd in brief
Dhcp pd in briefFred Bovy
 
Zdalna komunikacja sieciowa - zagadnienia sieciowe
Zdalna komunikacja sieciowa - zagadnienia sieciowe Zdalna komunikacja sieciowa - zagadnienia sieciowe
Zdalna komunikacja sieciowa - zagadnienia sieciowe Agnieszka Kuba
 
VoiceBootcamp Ccnp collaboration lab guide v1.0 sample
VoiceBootcamp Ccnp collaboration lab guide v1.0 sampleVoiceBootcamp Ccnp collaboration lab guide v1.0 sample
VoiceBootcamp Ccnp collaboration lab guide v1.0 sampleFaisal Khan
 
Configuring a cisco 2901 router
Configuring a cisco 2901 routerConfiguring a cisco 2901 router
Configuring a cisco 2901 routerIT Tech
 
WIRELESS NETWORK
WIRELESS NETWORKWIRELESS NETWORK
WIRELESS NETWORKprakash m
 

Tendances (20)

Networking For Application Developers by Roy Kim
Networking For Application Developers by Roy KimNetworking For Application Developers by Roy Kim
Networking For Application Developers by Roy Kim
 
Manual wireless router cnet cwr 854
Manual wireless router cnet cwr 854Manual wireless router cnet cwr 854
Manual wireless router cnet cwr 854
 
Tutorial on dhcp
Tutorial on dhcp Tutorial on dhcp
Tutorial on dhcp
 
Ir.67 v8.0- enum dns guidelines
Ir.67 v8.0- enum dns guidelinesIr.67 v8.0- enum dns guidelines
Ir.67 v8.0- enum dns guidelines
 
Multicast IP addresses Part 1
Multicast IP addresses Part 1Multicast IP addresses Part 1
Multicast IP addresses Part 1
 
DCHP,NAT,forwarding of ip packets
DCHP,NAT,forwarding of ip packetsDCHP,NAT,forwarding of ip packets
DCHP,NAT,forwarding of ip packets
 
Ccnp3 lab 3_4_en
Ccnp3 lab 3_4_enCcnp3 lab 3_4_en
Ccnp3 lab 3_4_en
 
CCNA Network Services
CCNA Network ServicesCCNA Network Services
CCNA Network Services
 
Dhcp 11
Dhcp 11Dhcp 11
Dhcp 11
 
Dhcp pd in brief
Dhcp pd in briefDhcp pd in brief
Dhcp pd in brief
 
Ccna 1 final
Ccna 1 finalCcna 1 final
Ccna 1 final
 
CCNP Security SIMOS 300-209=vpn 642-648
CCNP Security SIMOS 300-209=vpn 642-648CCNP Security SIMOS 300-209=vpn 642-648
CCNP Security SIMOS 300-209=vpn 642-648
 
Zdalna komunikacja sieciowa - zagadnienia sieciowe
Zdalna komunikacja sieciowa - zagadnienia sieciowe Zdalna komunikacja sieciowa - zagadnienia sieciowe
Zdalna komunikacja sieciowa - zagadnienia sieciowe
 
VoiceBootcamp Ccnp collaboration lab guide v1.0 sample
VoiceBootcamp Ccnp collaboration lab guide v1.0 sampleVoiceBootcamp Ccnp collaboration lab guide v1.0 sample
VoiceBootcamp Ccnp collaboration lab guide v1.0 sample
 
CCNA 200-120 Exam Questions
CCNA 200-120 Exam QuestionsCCNA 200-120 Exam Questions
CCNA 200-120 Exam Questions
 
CCNA 1
CCNA 1CCNA 1
CCNA 1
 
Configuring a cisco 2901 router
Configuring a cisco 2901 routerConfiguring a cisco 2901 router
Configuring a cisco 2901 router
 
WIRELESS NETWORK
WIRELESS NETWORKWIRELESS NETWORK
WIRELESS NETWORK
 
QSpiders - Variable Length-Subnet-Masks
QSpiders - Variable Length-Subnet-MasksQSpiders - Variable Length-Subnet-Masks
QSpiders - Variable Length-Subnet-Masks
 
Drx
DrxDrx
Drx
 

Similaire à Dhcp snooping option 82 configuration

DYNAMIC HOST CONFIGURATION PROTOCOL
DYNAMIC HOST CONFIGURATION PROTOCOLDYNAMIC HOST CONFIGURATION PROTOCOL
DYNAMIC HOST CONFIGURATION PROTOCOLVENKATESHAN A S
 
6 understanding DHCP
6 understanding DHCP6 understanding DHCP
6 understanding DHCPHameda Hurmat
 
Dhcp presentation
Dhcp presentationDhcp presentation
Dhcp presentationSaqib Malik
 
DHCP (dynamic host configuration protocol)
DHCP (dynamic host configuration protocol)DHCP (dynamic host configuration protocol)
DHCP (dynamic host configuration protocol)Netwax Lab
 
Networking DHCP server Setup Reports
Networking DHCP server Setup ReportsNetworking DHCP server Setup Reports
Networking DHCP server Setup ReportsJiaul Hasan Jony
 
dhcp (dynamic host configuration protocol) very Cleare Explanation, Interview...
dhcp (dynamic host configuration protocol) very Cleare Explanation, Interview...dhcp (dynamic host configuration protocol) very Cleare Explanation, Interview...
dhcp (dynamic host configuration protocol) very Cleare Explanation, Interview...Vignesh kumar
 
Configurar dhcp en router cisco
Configurar dhcp en router ciscoConfigurar dhcp en router cisco
Configurar dhcp en router ciscoGuiro Lin
 

Similaire à Dhcp snooping option 82 configuration (20)

Lession4 Dhcp
Lession4 DhcpLession4 Dhcp
Lession4 Dhcp
 
Dhcp
DhcpDhcp
Dhcp
 
DYNAMIC HOST CONFIGURATION PROTOCOL
DYNAMIC HOST CONFIGURATION PROTOCOLDYNAMIC HOST CONFIGURATION PROTOCOL
DYNAMIC HOST CONFIGURATION PROTOCOL
 
14047721
1404772114047721
14047721
 
6 understanding DHCP
6 understanding DHCP6 understanding DHCP
6 understanding DHCP
 
Dhcp presentation
Dhcp presentationDhcp presentation
Dhcp presentation
 
unit 2
unit 2unit 2
unit 2
 
DHCP (dynamic host configuration protocol)
DHCP (dynamic host configuration protocol)DHCP (dynamic host configuration protocol)
DHCP (dynamic host configuration protocol)
 
Networking DHCP server Setup Reports
Networking DHCP server Setup ReportsNetworking DHCP server Setup Reports
Networking DHCP server Setup Reports
 
dhcp (dynamic host configuration protocol) very Cleare Explanation, Interview...
dhcp (dynamic host configuration protocol) very Cleare Explanation, Interview...dhcp (dynamic host configuration protocol) very Cleare Explanation, Interview...
dhcp (dynamic host configuration protocol) very Cleare Explanation, Interview...
 
Wintel ppt for dhcp
Wintel ppt for dhcpWintel ppt for dhcp
Wintel ppt for dhcp
 
Dhcp confg
Dhcp confgDhcp confg
Dhcp confg
 
DHCP.pptx
DHCP.pptxDHCP.pptx
DHCP.pptx
 
Configurar dhcp en router cisco
Configurar dhcp en router ciscoConfigurar dhcp en router cisco
Configurar dhcp en router cisco
 
Dhcp with cisco
Dhcp with ciscoDhcp with cisco
Dhcp with cisco
 
DHCP Server Guaidlines using CISCO PACKET TRACER
DHCP Server Guaidlines using CISCO PACKET TRACERDHCP Server Guaidlines using CISCO PACKET TRACER
DHCP Server Guaidlines using CISCO PACKET TRACER
 
zuiqui_DHC.ppt
zuiqui_DHC.pptzuiqui_DHC.ppt
zuiqui_DHC.ppt
 
DHCP
DHCPDHCP
DHCP
 
DHCP(In_Linux).pptx
DHCP(In_Linux).pptxDHCP(In_Linux).pptx
DHCP(In_Linux).pptx
 
dhcp.pdf
dhcp.pdfdhcp.pdf
dhcp.pdf
 

Plus de IT Tech

Cisco ip phone key expansion module setup
Cisco ip phone key expansion module setupCisco ip phone key expansion module setup
Cisco ip phone key expansion module setupIT Tech
 
Cisco catalyst 9200 series platform spec, licenses, transition guide
Cisco catalyst 9200 series platform spec, licenses, transition guideCisco catalyst 9200 series platform spec, licenses, transition guide
Cisco catalyst 9200 series platform spec, licenses, transition guideIT Tech
 
Cisco isr 900 series highlights, platform specs, licenses, transition guide
Cisco isr 900 series highlights, platform specs, licenses, transition guideCisco isr 900 series highlights, platform specs, licenses, transition guide
Cisco isr 900 series highlights, platform specs, licenses, transition guideIT Tech
 
Hpe pro liant gen9 to gen10 server transition guide
Hpe pro liant gen9 to gen10 server transition guideHpe pro liant gen9 to gen10 server transition guide
Hpe pro liant gen9 to gen10 server transition guideIT Tech
 
The new cisco isr 4461 faq
The new cisco isr 4461 faqThe new cisco isr 4461 faq
The new cisco isr 4461 faqIT Tech
 
New nexus 400 gigabit ethernet (400 g) switches
New nexus 400 gigabit ethernet (400 g) switchesNew nexus 400 gigabit ethernet (400 g) switches
New nexus 400 gigabit ethernet (400 g) switchesIT Tech
 
Tested cisco isr 1100 delivers the richest set of wi-fi features
Tested cisco isr 1100 delivers the richest set of wi-fi featuresTested cisco isr 1100 delivers the richest set of wi-fi features
Tested cisco isr 1100 delivers the richest set of wi-fi featuresIT Tech
 
Aruba campus and branch switching solution
Aruba campus and branch switching solutionAruba campus and branch switching solution
Aruba campus and branch switching solutionIT Tech
 
Cisco transceiver module for compatible catalyst switches
Cisco transceiver module for compatible catalyst switchesCisco transceiver module for compatible catalyst switches
Cisco transceiver module for compatible catalyst switchesIT Tech
 
Cisco ios on cisco catalyst switches
Cisco ios on cisco catalyst switchesCisco ios on cisco catalyst switches
Cisco ios on cisco catalyst switchesIT Tech
 
Cisco's wireless solutions deployment modes
Cisco's wireless solutions deployment modesCisco's wireless solutions deployment modes
Cisco's wireless solutions deployment modesIT Tech
 
Competitive switching comparison cisco vs. hpe aruba vs. huawei vs. dell
Competitive switching comparison cisco vs. hpe aruba vs. huawei vs. dellCompetitive switching comparison cisco vs. hpe aruba vs. huawei vs. dell
Competitive switching comparison cisco vs. hpe aruba vs. huawei vs. dellIT Tech
 
Four reasons to consider the all in-one isr 1000
Four reasons to consider the all in-one isr 1000Four reasons to consider the all in-one isr 1000
Four reasons to consider the all in-one isr 1000IT Tech
 
The difference between yellow and white labeled ports on a nexus 2300 series fex
The difference between yellow and white labeled ports on a nexus 2300 series fexThe difference between yellow and white labeled ports on a nexus 2300 series fex
The difference between yellow and white labeled ports on a nexus 2300 series fexIT Tech
 
Cisco transceiver modules for compatible cisco switches series
Cisco transceiver modules for compatible cisco switches seriesCisco transceiver modules for compatible cisco switches series
Cisco transceiver modules for compatible cisco switches seriesIT Tech
 
Guide to the new cisco firepower 2100 series
Guide to the new cisco firepower 2100 seriesGuide to the new cisco firepower 2100 series
Guide to the new cisco firepower 2100 seriesIT Tech
 
892 f sfp configuration example
892 f sfp configuration example892 f sfp configuration example
892 f sfp configuration exampleIT Tech
 
Cisco nexus 7000 and nexus 7700
Cisco nexus 7000 and nexus 7700Cisco nexus 7000 and nexus 7700
Cisco nexus 7000 and nexus 7700IT Tech
 
Cisco firepower ngips series migration options
Cisco firepower ngips series migration optionsCisco firepower ngips series migration options
Cisco firepower ngips series migration optionsIT Tech
 
Eol transceiver to replacement model
Eol transceiver to replacement modelEol transceiver to replacement model
Eol transceiver to replacement modelIT Tech
 

Plus de IT Tech (20)

Cisco ip phone key expansion module setup
Cisco ip phone key expansion module setupCisco ip phone key expansion module setup
Cisco ip phone key expansion module setup
 
Cisco catalyst 9200 series platform spec, licenses, transition guide
Cisco catalyst 9200 series platform spec, licenses, transition guideCisco catalyst 9200 series platform spec, licenses, transition guide
Cisco catalyst 9200 series platform spec, licenses, transition guide
 
Cisco isr 900 series highlights, platform specs, licenses, transition guide
Cisco isr 900 series highlights, platform specs, licenses, transition guideCisco isr 900 series highlights, platform specs, licenses, transition guide
Cisco isr 900 series highlights, platform specs, licenses, transition guide
 
Hpe pro liant gen9 to gen10 server transition guide
Hpe pro liant gen9 to gen10 server transition guideHpe pro liant gen9 to gen10 server transition guide
Hpe pro liant gen9 to gen10 server transition guide
 
The new cisco isr 4461 faq
The new cisco isr 4461 faqThe new cisco isr 4461 faq
The new cisco isr 4461 faq
 
New nexus 400 gigabit ethernet (400 g) switches
New nexus 400 gigabit ethernet (400 g) switchesNew nexus 400 gigabit ethernet (400 g) switches
New nexus 400 gigabit ethernet (400 g) switches
 
Tested cisco isr 1100 delivers the richest set of wi-fi features
Tested cisco isr 1100 delivers the richest set of wi-fi featuresTested cisco isr 1100 delivers the richest set of wi-fi features
Tested cisco isr 1100 delivers the richest set of wi-fi features
 
Aruba campus and branch switching solution
Aruba campus and branch switching solutionAruba campus and branch switching solution
Aruba campus and branch switching solution
 
Cisco transceiver module for compatible catalyst switches
Cisco transceiver module for compatible catalyst switchesCisco transceiver module for compatible catalyst switches
Cisco transceiver module for compatible catalyst switches
 
Cisco ios on cisco catalyst switches
Cisco ios on cisco catalyst switchesCisco ios on cisco catalyst switches
Cisco ios on cisco catalyst switches
 
Cisco's wireless solutions deployment modes
Cisco's wireless solutions deployment modesCisco's wireless solutions deployment modes
Cisco's wireless solutions deployment modes
 
Competitive switching comparison cisco vs. hpe aruba vs. huawei vs. dell
Competitive switching comparison cisco vs. hpe aruba vs. huawei vs. dellCompetitive switching comparison cisco vs. hpe aruba vs. huawei vs. dell
Competitive switching comparison cisco vs. hpe aruba vs. huawei vs. dell
 
Four reasons to consider the all in-one isr 1000
Four reasons to consider the all in-one isr 1000Four reasons to consider the all in-one isr 1000
Four reasons to consider the all in-one isr 1000
 
The difference between yellow and white labeled ports on a nexus 2300 series fex
The difference between yellow and white labeled ports on a nexus 2300 series fexThe difference between yellow and white labeled ports on a nexus 2300 series fex
The difference between yellow and white labeled ports on a nexus 2300 series fex
 
Cisco transceiver modules for compatible cisco switches series
Cisco transceiver modules for compatible cisco switches seriesCisco transceiver modules for compatible cisco switches series
Cisco transceiver modules for compatible cisco switches series
 
Guide to the new cisco firepower 2100 series
Guide to the new cisco firepower 2100 seriesGuide to the new cisco firepower 2100 series
Guide to the new cisco firepower 2100 series
 
892 f sfp configuration example
892 f sfp configuration example892 f sfp configuration example
892 f sfp configuration example
 
Cisco nexus 7000 and nexus 7700
Cisco nexus 7000 and nexus 7700Cisco nexus 7000 and nexus 7700
Cisco nexus 7000 and nexus 7700
 
Cisco firepower ngips series migration options
Cisco firepower ngips series migration optionsCisco firepower ngips series migration options
Cisco firepower ngips series migration options
 
Eol transceiver to replacement model
Eol transceiver to replacement modelEol transceiver to replacement model
Eol transceiver to replacement model
 

Dernier

[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdfhans926745
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxMalak Abu Hammad
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure servicePooja Nehwal
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?XfilesPro
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slidespraypatel2
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxOnBoard
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxLBM Solutions
 
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphSIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphNeo4j
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAndikSusilo4
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 

Dernier (20)

[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
The Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptxThe Codex of Business Writing Software for Real-World Solutions 2.pptx
The Codex of Business Writing Software for Real-World Solutions 2.pptx
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure serviceWhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
WhatsApp 9892124323 ✓Call Girls In Kalyan ( Mumbai ) secure service
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?How to Remove Document Management Hurdles with X-Docs?
How to Remove Document Management Hurdles with X-Docs?
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Pigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food ManufacturingPigging Solutions in Pet Food Manufacturing
Pigging Solutions in Pet Food Manufacturing
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
Slack Application Development 101 Slides
Slack Application Development 101 SlidesSlack Application Development 101 Slides
Slack Application Development 101 Slides
 
Maximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptxMaximizing Board Effectiveness 2024 Webinar.pptx
Maximizing Board Effectiveness 2024 Webinar.pptx
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Pigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping ElbowsPigging Solutions Piggable Sweeping Elbows
Pigging Solutions Piggable Sweeping Elbows
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptx
 
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphSIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Azure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & ApplicationAzure Monitor & Application Insight to monitor Infrastructure & Application
Azure Monitor & Application Insight to monitor Infrastructure & Application
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 

Dhcp snooping option 82 configuration

  • 1. DHCP Snooping Option 82 Configuration Examples This document describes the typical application environment and configuration examples for DHCP snooping Option 82. Acronyms: Acronym Full spelling DHCP Dynamic Host Configuration Protocol DNS Domain Name System giaddr Gateway IP address WINS Windows Internet Naming Service 1 Feature Overview Option 82 is the relay agent option which records the location information of the DHCP client. When a DHCP snooping device receives a client’s request, it adds Option 82 to the request message and sends it to the server. Then, the DHCP server can assign a proper IP address and other parameters for the client. The administrator can also use Option 82 to implement security control and accounting. 2 Application Scenarios Figure 1 Option 82 application Typically, a DHCP server assigns an IP address based on the giaddr filed of the client’s request or the IP address of the interface that received the client’s request. In Figure 1, the DHCP server assign IP addresses to Host A and Host B from the network segment where the clients belong. http://blog.router-switch.com/
  • 2. Traditionally, the DHCP server cannot assign to Host A an IP address that is in a different network segment from the IP address assigned to Host B. However, this can be achieved through Option 82, with which, the DHCP server can assign IP addresses based on the DHCP snooping interface connected to the clients and the giaddr filed in DHCP requests. A client’s ID can be recognized by Option 82. Therefore, the DHCP server can assign a unique IP address to each client, to further implement QoS, security and accounting management. 3 Configuration Guidelines  The DHCP snooping Option 82 function can take effect only after you enable DHCP snooping.  DHCP snooping does not support link aggregation. If a Layer 2 Ethernet interface is added into an aggregation group, DHCP snooping configuration on it will not take effect. When the interface is removed from the group, DHCP snooping can take effect.  The DHCP snooping enabled device does not work if it resides between a DHCP relay agent and DHCP server, and it can work when it resides between a DHCP client and relay agent or between a DHCP client and server.  You are recommended to enable the DHCP snooping Option 82 function on the DHCP snooping device closest to the DHCP client for locating the client accurately.  The DHCP snooping enabled device cannot act as a DHCP server or DHCP relay agent.  You are not recommended to enable the DHCP client, BOOTP client, and DHCP snooping on the same device. Otherwise, DHCP snooping entries may fail to be generated, or the BOOTP client/DHCP client may fail to obtain an IP address. 4 Configuration Examples 4.1 Network Requirements The work area of an enterprise is divided into three groups, group 1, group 2, and group 3, which are located in three rooms. A DHCP server is deployed to assign IP addresses of different segments to the three groups. It is required that: The DHCP server assigns IP addresses on the network segment 192.168.10.0/24 to devices in the work area. The lease time is 12 hours, and the DNS and WINS server addresses are 192.168.100.2 and 192.168.100.3 respectively. Group 1, group 2 and group 3 are connected to the DHCP snooping device through Ethernet1/1, Ethernet1/2 and Ethernet1/3 respectively to communicate with the DHCP server. The DHCP server assigns IP addresses ranging from 192.168.10.2 to 192.168.10.25 to clients in group 1, assigns IP addresses ranging from 192.168.10.100 to 192.168.10.150 to clients in group 2, and assigns IP addresses http://blog.router-switch.com/
  • 3. ranging from 192.168.10.151 to 192.168.10.200 to clients in group 3. Figure 2 Network diagram for DHCP snooping 4.2 Configuration Considerations  Enable Option 82 support on the DHCP snooping device.  Configure the Option 82 sub-option, so that the clients in different groups can send packets carrying different Option 82 information. To do so, you can manually specify the circuit ID sub-option.  Configure IP address assignment policy on the DHCP server, so that the DHCP server can assign proper IP addresses to the DHCP clients according to Option 82. 4.3 Software Version Used This example is configured and verified on Comware V500R002B42D001. 4.4 Configuration Procedures Note:The following configurations are made on devices that are using default settings and verified in a lab environment. When using the following configurations on your devices in a live network, make sure they do not conflict with your current configurations to prevent potential negative impact on your network. 4.4.1 Configuration on the DHCP Snooping Device I. Configuration steps # Enable DHCP snooping. <Switch> system-view [Switch] dhcp-snooping # Configure Ethernet 1/4 as a DHCP snooping trusted port. [Switch] interface ethernet 1/4 http://blog.router-switch.com/
  • 4. [Switch-Ethernet1/4] dhcp-snooping trust [Switch-Ethernet1/4] quit # Enable Ethernet 1/1 to support Option 82. [Switch] interface ethernet 1/1 [Switch-Ethernet1/1] dhcp-snooping information enable # Pad the Option 82 circuit ID sub-option with group 1. [Switch-Ethernet1/1] dhcp-snooping information circuit-id string group1 [Switch-Ethernet1/1] quit # Enable Ethernet 1/2 to support Option 82. [Switch] interface ethernet 1/2 [Switch-Ethernet1/2] dhcp-snooping information enable # Pad the Option 82 circuit ID sub-option with group 2. [Switch-Ethernet1/2] dhcp-snooping information circuit-id string group2 [Switch-Ethernet1/2] quit # Enable Ethernet 1/3 to support Option 82. [Switch] interface ethernet 1/3 [Switch-Ethernet1/3] dhcp-snooping information enable [Switch-Ethernet1/3] quit # Pad the Option 82 circuit ID sub-option with group 3. [Switch-Ethernet1/3] dhcp-snooping information circuit-id string group3 [Switch-Ethernet1/3] quit II. Configuration file <Switch> display current-configuration # interface Ethernet1/1 port link-mode bridge dhcp-snooping information enable dhcp-snooping information circuit-id string group1 # interface Ethernet1/2 port link-mode bridge dhcp-snooping information enable dhcp-snooping information circuit-id string group2 # interface Ethernet1/3 port link-mode bridge dhcp-snooping information enable dhcp-snooping information circuit-id string group3 # interface Ethernet1/4 port link-mode bridge dhcp-snooping trust # http://blog.router-switch.com/
  • 5. 4.4.2 Configuration on the DHCP Server I. Configuration steps You can use the following two methods to configure Option 82: 1. User-defined method: Manually specify the content of Option 82. 2. Non-user-defined method: Pad Option 82 in the default normal or verbose format. For the second method, the circuit ID sub-option format is as shown in Figure 3 . Figure 3 Circuit ID sub-option format For example, for clients connected to Ethernet 1/1, the circuit ID sub-option is padded with group 1. The circuit ID sub-option in DHCP packets should contain the following information: 0x010667726F757031, in which 0106 refers to the number and length of the circuit ID sub-option, and 67726F757031 refers to the hexadecimal value of the character string group 1. In this example, IP addresses are assigned according to the group number; therefore, the DHCP server only needs to assign IP addresses based on the group number padded in the circuit ID sub-option. Note:The DHCP server is configured on a Cisco Catalyst 3745 switch with software version IOS 12.3(11)T2. To configure a device of another type or version as the DHCP server, refer to the related user manual. # Configure the server interface IP address as 192.168.10.1/24. Server> enable Server# configure terminal Server(config)# interface fastethernet 0/0 Server(config-if)# ip address 192.168.10.1 255.255.255.0 Server(config-if)# exit # Enable DHCP server, and configure the DHCP server to assign IP addresses based on Option 82. Server(config)# service dhcp Server(config)# ipdhcp use class # Create a DHCP class for clients in group 1, and specify the corresponding circuit ID sub-option for matching. For the content not to be matched, enter the wildcard ”*”. Server(config)# ipdhcp class group1 Server(dhcp-class)# relay agent information Server(dhcp-class-relayinfo)# relay-information hex 010667726F757031* Server(dhcp-class-relayinfo)# exit http://blog.router-switch.com/
  • 6. # Create a DHCP class for clients in group 2, and specify the corresponding circuit ID sub-option for matching. Server(config)# ipdhcp class group2 Server(dhcp-class)# relay agent information Server(dhcp-class-relayinfo)# relay-information hex 010667726F757032* Server(dhcp-class-relayinfo)# exit # Create a DHCP class for clients in group 3 and specify the corresponding circuit ID sub-option for matching. Server(config)# ipdhcp class group3 Server(dhcp-class)# relay agent information Server(dhcp-class-relayinfo)# relay-information hex 010667726F757033* Server(dhcp-class-relayinfo)# exit # Create a DHCP address pool named office, and specify the lease time, gateway address, DNS server address, and WINS server address for clients. Server(config)# ipdhcp pool office Server(dhcp-config)# network 192.168.10.0 Server(dhcp-config)# lease 0 12 Server(dhcp-config)# default-router 192.168.10.1 Server(dhcp-config)# dns-server 192.168.100.2 Server(dhcp-config)# netbios-name-server 192.168.100.3 # Specify address ranges for the three DHCP classes respectively. Server(dhcp-config)# class group1 Server(dhcp-pool-class)# address range 192.168.10.2 192.168.10.25 Server(dhcp-pool-class)# class group2 Server(dhcp-pool-class)# address range 192.168.10.100 192.168.10.150 Server(dhcp-pool-class)# class group3 Server(dhcp-pool-class)# address range 192.168.10.151 192.168.10.200 4.4.3 Verification After completing the above configurations, the DHCP server can automatically assign IP addresses of the specified range, gateway address, DNS server address, and WINS server address for clients of each group in the work area. More Related DHCP Snooping Tips: How to Configure DHCP Snooping? http://blog.router-switch.com/