Posted on June 22, 2021 1:28 pm
 |  Asked by Andrey Ulyakin
 |  223 views
RESOLVED
0
0
Print Friendly, PDF & Email
We have a switch

Arista DCS-7050SX3-48C8-F
Hardware version: 12.05

You need to configure dhcp-snooping on it.

Question:

Is it possible to configure trusted ports? (in Cisco, the analogy of the "ip dhcp snooping port trust" command)
0
Answered on June 23, 2021 2:35 am

Hi Andrey,

Thanks for reaching out.

DHCP snooping is disabled by default:
switch(conf)#show ip dhcp snooping
DHCP Snooping is disabled

To enable DHCP snooping globally, you need to issue 'ip dhcp snooping' command:
switch(config)#ip dhcp snooping

To enable DHCP snooping on specific Vlans, you can utilize the 'ip dhcp snooping vlan 10, 20' command:
switch(config)#ip dhcp snooping vlan 10, 20
switch(config)#sh ip dhcp snooping
DHCP Snooping is enabled
DHCP Snooping is not operational
DHCP Snooping is configured on following VLANs:
10,20
DHCP Snooping is operational on following VLANs:
None
Insertion of Option-82 is disabled

 

Currently, we do not have support to configure DHCP snooping port trust feature. We have an existing RFE tracking this feature.

 

Thanks,

Bhavana.

0
Posted by Cosmin
Answered on June 25, 2021 12:28 pm

Hi Andrey

Perhaps the IP locking feature may be something worth looking into. It does require support for leasequery (rfc4388).
Here is a reference about the feature:

https://eos.arista.com/eos-4-23-2f/ip-locking-release-updates/

Take care

Post your Answer

You must be logged in to post an answer.