Feature Requirements |
Series |
Models |
|---|---|---|
After binding a BD to a VSI, DHCP snooping in the BD does not support client access from the network side (the PW side),and users accessing network from the PW side fail to go online. You are advised to plan the network properly. Do not deploy DHCP Snooping when clients access network from the PW side. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
After binding a BD to a VSI, the VBDIF interface is configured and the DHCP relay function is applied on the VBDIF interface. In this case, if the clients access from the network side (the PW side), the DHCP snooping function cannot be configured, and users accessing network from the PW side fail to go online. You are advised to plan the network properly. Do not deploy DHCP Snooping when clients access network from the PW side. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
ARP aging detection for DHCP snooping entries applies only to Layer 3 networking. The binding table generated in Layer 2 networking does not support ARP aging detection. DHCP Snooping entries in layer 2 networking go offline only after the leases expires, and entries going offline through ARP aging detection is not supported. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
The function of filtering DHCP packets based on the whitelist does not support multiple VSs. You are advised to configure the whitelist function only in Admin VS. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
After strict MAC check is enabled for DHCP snooping, one IP address in a broadcast domain can be bound to only one unique MAC address. If different MAC addresses have applied for the same IP address in sequence, the latter ones are considered invalid, and corresponding users are not allowed to go online.When the STB functions as an access DHCP client, after the DHCP client applies to the DHCP server for an IP address, the MAC address of the client may change during an STB replacement. If strict MAC check is enabled for DHCP snooping in this case, the new client (new MAC) cannot go online before the old MAC ages. You are advised to properly plan the network |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
In VPLS scenarios, DHCP snooping does not support user access from the network (PW) side. As a result, users connected to the PW side fail to go online. Properly plan the network. Do not deploy DHCP snooping when a client accesses the network through a PW. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
Among global VE sub-interfaces and VE sub-interfaces, only sub-interfaces with the l3-access attribute support DHCP snooping, which is used together with DHCP relay. Enable both DHCP relay and DHCP snooping on sub-interfaces configured with the l3-access attribute. You are advised to properly plan the networking to prevent service interruption and traffic interruption. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
DHCP snooping can be configured in either of the following VPLS scenarios: 1. Both the DHCP client and DHCP server connect to the local AC. Enable DHCP snooping on the AC sub-interface connected to the DHCP client. Enable DHCP snooping on the AC sub-interface connected to the DHCP server, and configure the AC sub-interface as a trusted interface. 2. The DHCP client is connected to the local AC, and the DHCP server is deployed on the remote end through the VPLS tunnel. Enable DHCP snooping on the AC sub-interface connected to the DHCP client, enable DHCP snooping on the public network interface of the VPLS tunnel, and configure the interface as a trusted interface. Alternatively, enable DHCP snooping on the AC sub-interface connected to the DHCP client and enable the network-side interface to send DHCP reply packets in the VSI to which the AC sub-interface belongs. You are advised to properly plan the networking to prevent service interruption and traffic interruption. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
On a Layer 3 network, DHCP snooping can be deployed only together with DHCP relay. DHCP snooping must be enabled on the interface enabled with DHCP relay. You are advised to plan the network properly to prevent service interruption and traffic interruption. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
After strict MAC check is enabled, only one IP address can be bound to a unique MAC address in a broadcast domain. If different MAC addresses have applied for the same IP address in sequence, the latter ones are considered invalid, and corresponding users are not allowed to go online. When the STB functions as an access DHCP client, after the DHCP client applies to the DHCP server for an IP address, the MAC address of the STB may change during an STB replacement. If strict MAC check is enabled for DHCP snooping in this case, the new client (new MAC) cannot go online before the old MAC ages. You are advised to plan the network properly. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
DHCP snooping can be configured in either of the following VPLS scenarios: 1. Both the DHCP client and DHCP server connect to the local AC. Enable DHCP snooping on the AC sub-interface connected to the DHCP client. Enable DHCP snooping on the AC sub-interface connected to the DHCP server, and configure the AC sub-interface as a trusted interface. 2. The DHCP client is connected to the local AC, and the DHCP server is deployed on the remote end through the VPLS tunnel. Enable DHCP snooping on the AC sub-interface connected to the DHCP client, enable DHCP snooping on the public network interface of the VPLS tunnel, and configure the interface as a trusted interface. Alternatively, enable DHCP snooping on the AC sub-interface connected to the DHCP client and enable the network-side interface to send DHCP reply packets in the VSI to which the AC sub-interface belongs. You are advised to properly plan the networking to prevent service interruption and traffic interruption. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
DHCP snooping is supported only on global-VE sub-interfaces and VE sub-interfaces configured with the l3-access attribute and must work with DHCP relay. Enable both DHCP relay and DHCP snooping on sub-interfaces configured with the l3-access attribute. You are advised to properly plan the networking to prevent service interruption and traffic interruption. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
In a scenario where a BD is bound to a VSI, a VBDIF interface is configured, and the DHCP relay function is enabled on the VBDIF interface. In this case, if a client accesses the network side (PW side), DHCP snooping cannot be configured together with the VBDIF interface. As a result, the user who accesses the network side (PW side) fails to go online. Properly plan the network. Do not deploy DHCP snooping when a client accesses the network through a PW. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
When a BD is bound to a VSI, DHCP snooping in the BD does not support user access from the network side (PW side). As a result, users fail to go online from the PW side. Properly plan the network. Do not deploy DHCP snooping when a client accesses the network through a PW. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
On a Layer 2 network, DHCP snooping must be deployed between the DHCP client and DHCP relay agent, but not between the DHCP relay agent and DHCP server. You are advised to plan the network properly to prevent service interruption and traffic interruption. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
DHCP snooping does not support the function of filtering DHCP packets based on the whitelist in multiple VSs. The whitelist function is configured only in the Admin-VS. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |
The ARP probe aging function of DHCP snooping entries applies only to Layer 3 networking. In Layer 2 networking, the binding entries generated do not support ARP probe aging. In Layer 2 scenarios, DHCP snooping entries go offline only after the lease expires, and ARP aging probe is not supported. |
NetEngine 8000 F |
NetEngine 8000 F2A/NetEngine 8000 F1A |