cancel
Showing results for 
Search instead for 
Did you mean: 

dhcp-snooping, switch don't insert option 82 information

dhcp-snooping, switch don't insert option 82 information

Alexandr_P
Valued Contributor
Hello, colleagues!

I need to insert option 82 information in dhcp-packets.
Try bootprelay - all work fine.

Trying dhcp-snooping - switch don't insert option 82 information.

My config:
enable ip-security dhcp-snooping vlan v74_Users port 16 violation-action none
enable ip-security dhcp-snooping vlan v74_Users port 20 violation-action none
enable ip-security dhcp-snooping vlan v74_Users port 21 violation-action none
enable ip-security dhcp-snooping vlan v74_Users port 26 violation-action none
enable ip-security dhcp-snooping vlan v74_Users port 27 violation-action none
configure trusted-ports 26 trust-for dhcp-server
configure ip-security dhcp-snooping information option
configure ip-security dhcp-snooping information check
configure ip-security dhcp-snooping information circuit-id vlan-information v74 vlan v74_Users
configure ip-security dhcp-snooping information circuit-id vlan-information v75 vlan v75_Users2
configure ip-security dhcp-bindings storage write-interval 1440
configure ip-security dhcp-bindings storage filename bind.txt.xsf
enable ip-security dhcp-bindings restoration

User_Guide say:
When DHCP relay is configured in a DHCP snooping environment, the relay agent IP address should be configured as the trusted server.

“configure trusted-servers {vlan} add server trust-for dhcp-server”

Should I add IP-address of DHCP-server or/and configure Extreme's switch as trusted-server? But I have "configure trusted-ports 26 trust-for dhcp-server"

Any ideas?

Thank you!

21 REPLIES 21

Drew_C
Valued Contributor III
Hi Alexandr, Can we consider this one solved?

Jarek
New Contributor II
Hi,

all information was sent to DHCP server in Discover packet + data in option 82, why should the relay add the same information twice to the DHCP server ?

--
Jarek

Jarek
New Contributor II
Maybe we should update the RFC  ?

--
Jarek

Alexandr_P
Valued Contributor
I agree with you, but it only says that RFC does not give specifics (concretic).

BrandonC
Extreme Employee
Hi Alexandr,

I agree, logically it makes sense that this is only needed in the DHCP discover. However, after reading the RFC, it seems that this should be inserted in any packets relayed from the client.

Let us know what you hear from your case.

-Brandon
GTM-P2G8KFN