The pppoe uplink-port trusted command configures an interface as a trusted interface.
The undo pppoe uplink-port trusted command restores an interface to be untrusted.
By default, all interfaces are untrusted interfaces.
Ethernet interface view, GE interface view, XGE interface view, 25GE interface view, MultiGE interface view, 40GE interface view, 100GE interface view, Eth-Trunk interface view
Usage Scenario
To prevent bogus PPPoE servers and the security risk caused by PPPoE packets forwarded to non-PPPoE service interfaces, the interface connecting the device and the PPPoE server must be configured as the trusted interface. Then PPPoE protocol packets are forwarded to the PPPoE server through the trusted interface only. In addition, only the PPPoE protocol packets received on the trusted interface can be forwarded to the PPPoE client.
Prerequisites
PPPoE+ has been enabled globally by running the pppoe intermediate-agent information enable command.
Precautions
The trusted interface controls PPPoE protocol packets at the PPPoE discovery stage only. PPPoE service packets at the PPPoE session stage are not controlled.
If the trusted interface is configured on the device that has no ACL resources, the system displays the following message "Warning: Allocate acl resources failed." In this case, the trusted interface fails to be configured.