Table Of Contents
DHCP Option 82 Configurable Circuit ID and Remote ID
Restrictions for DHCP Option 82 Configurable Circuit ID and Remote ID
Information About DHCP Option 82 Configurable Circuit ID and Remote ID
How to Configure DHCP Option 82 Configurable Circuit ID and Remote ID
Configuring DHCP Snooping on Private VLANs
Configuration Example for DHCP Option 82 Configurable Circuit ID and Remote ID
Mapping Private-VLAN Associations: Example
Feature Information for DHCP Option 82 Configurable Circuit ID and Remote ID
DHCP Option 82 Configurable Circuit ID and Remote ID
First Published: February 26, 2009Last Updated: February 26, 2009The Cisco DHCP Option 82 Configurable Circuit ID and Remote ID provides more naming choices in the Option 82 Remote ID and Option 82 Circuit ID suboptions. For example, you can use a switch-configured hostname or specify an ASCII text string for the remote ID, and you can configure an ASCII text string to override the circuit ID.
Note
Refer to the configuration guide for your platform for information about configuring Dynamic Host Configuration Protocol (DHCP). See the "Configuring DHCP Snooping" section of the Cisco 7600 Series Cisco IOS Software Configuration Guide, Release 12.2SR, for information about configuring DHCP on Cisco 7600 series routers. See the "Related Documents" section for sources of information about configuring DHCP on other Cisco platforms.
Finding Feature Information
For the latest feature information and caveats, see the release notes for your platform and software release. To find information about the features documented in this module, and to see a list of the releases in which each feature is supported, see the "Feature Information for DHCP Option 82 Configurable Circuit ID and Remote ID" section.
Use Cisco Feature Navigator to find information about platform support and Cisco IOS and Catalyst OS software image support. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.
Contents
•
•
•
•
•
Restrictions for DHCP Option 82 Configurable Circuit ID and Remote ID
When DHCP snooping is configured on a primary VLAN, you cannot configure snooping with different settings on any of its secondary VLANs. You must configure DHCP snooping for all associated VLANs on the primary VLAN. If DHCP snooping is not configured on the primary VLAN and you try to configure it on the secondary VLAN, for example, VLAN 200, this message appears:
2w5d:%DHCP_SNOOPING-4-DHCP_SNOOPING_PVLAN_WARNING:DHCP Snooping configuration may not take effect on secondary vlan 200. DHCP Snooping configuration on secondary vlan is derived from its primary vlan.You can use the show ip dhcp snooping command to display all VLANs, both primary and secondary, that have DHCP snooping enabled.
Information About DHCP Option 82 Configurable Circuit ID and Remote ID
The DHCP Option 82 Configurable Circuit ID and Remote ID feature enhances validation security by allowing you to determine what information is provided in the Option 82 Remote ID and Option 82 Circuit ID suboptions.
You can enable DHCP snooping on private VLANs. When DHCP snooping is enabled, the configuration is propagated to both a primary VLAN and its associated secondary VLANs. When DHCP snooping is enabled on a primary VLAN, it is also enabled on its secondary VLANs.
See the "DHCP Snooping Option-82 Data Insertion" section of the Cisco 7600 Series Cisco IOS Software Configuration Guide for information about using DHCP to centrally manage the IP address assignments for a large number of subscribers in residential, metropolitan Ethernet-access environments.
Figure 1 shows the packet format used when DHCP snooping is globally enabled and the ip dhcp snooping information option global configuration command is entered with the Circuit ID suboption.
Figure 1 Suboption Packet Formats, Circuit ID Specified
Figure 2 shows the packet format used when DHCP snooping is globally enabled and the ip dhcp snooping information option global configuration command is entered with the Remote ID suboption.
Figure 2 Suboption Packet Formats, Remote ID Specified
How to Configure DHCP Option 82 Configurable Circuit ID and Remote ID
This section contains the following task:
•
Configuring DHCP Snooping on Private VLANs
Perform these tasks to configure DHCP snooping on private primary and secondary VLANs:
•
•
•
•
Note
SUMMARY STEPS
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
DETAILED STEPS
Configuration Example for DHCP Option 82 Configurable Circuit ID and Remote ID
This section provides the following configuration example:
•
Mapping Private-VLAN Associations: Example
The following interface configuration example shows how to map the private-VLAN associations. The user-configurable circuit ID "aabb11" is inserted on the secondary VLAN, vlan 7.
interface GigabitEthernet9/0/1switchportswitchport private-vlan host-association 70 7switchport mode private-vlan hostno mls qos trustspanning-tree portfastip dhcp snooping vlan 7 information option format-type circuit-id string aabb11The following example shows how to define a DHCP class "C1" and specify the hex string of the corresponding class at the server by using the hex string that matches the circuit-ID value entered in the interface configuration example. That is, the hex string 00000000000000000000000000000006616162623131 mask fffffffffffffffffffffffffffffff0000000000000 matches the circuit ID aabb11.
ip dhcp class C1relay agent informationrelay-information hex 00000000000000000000000000000006616162623131 mask fffffffffffffffffffffffffffffff0000000000000Additional References
The following sections provide references related to the DHCP Option 82 Configurable Circuit ID and Remote ID feature.
Related Documents
Configuring DHCP on the Cisco 7600 series router
"Configuring DHCP Snooping" section of the Cisco 7600 Series Cisco IOS Software Configuration Guide
Configuring DHCP on the Cisco Catalyst 3550 multilayer switch
"Configuring DHCP Features" section of the Catalyst 3550 Multilayer Switch Software Configuration Guide
Configuring DHCP on the Cisco Catalyst 2970 switch
"Configuring DHCP Features" section of the Catalyst 2970 Switch Software Configuration Guide
Configuring DHCP on the Cisco Catalyst 3560 switch
"Configuring DHCP Features and IP Source Guard" section of the Catalyst 3560 Switch Software Configuration Guide
Configuring DHCP on the Cisco Catalyst 3750 switch
"Configuring DHCP Features and IP Source Guard" section of the Catalyst 3750 Switch Software Configuration Guide
DHCP commands: complete command syntax, command mode command history, defaults, usage guidelines, and examples
Standards
No new or modified standards are supported by this feature, and support for existing standards has not been modified by this feature.
—
MIBs
•
To locate and download MIBs for selected platforms, Cisco IOS releases, and feature sets, use Cisco MIB Locator found at the following URL:
RFCs
No new or modified RFCs are supported by this feature, and support for existing RFCs has not been modified by this feature.
—
Technical Assistance
Command Reference
The following commands are introduced or modified in the feature or features documented in this module. For information about these commands, see the Cisco IOS IP Addressing Services Command Reference at http://www.cisco.com/en/US/docs/ios/ipaddr/command/reference/
iad_book.html. For information about all Cisco IOS commands, use the Command Lookup Tool at http://tools.cisco.com/Support/CLILookup or the Cisco IOS Master Command List, All Releases, at http://www.cisco.com/en/US/docs/ios/mcl/allreleasemcl/all_book.html.•
Feature Information for DHCP Option 82 Configurable Circuit ID and Remote ID
Table 1 lists the release history for this feature.
Not all commands may be available in your Cisco IOS software release. For release information about a specific command, see the command reference documentation.
Use Cisco Feature Navigator to find information about platform support and software image support. Cisco Feature Navigator enables you to determine which Cisco IOS and Catalyst OS software images support a specific software release, feature set, or platform. To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not required.
Note
CCDE, CCENT, Cisco Eos, Cisco HealthPresence, the Cisco logo, Cisco Lumin, Cisco Nexus, Cisco StadiumVision, Cisco TelePresence, Cisco WebEx, DCE, and Welcome to the Human Network are trademarks; Changing the Way We Work, Live, Play, and Learn and Cisco Store are service marks; and Access Registrar, Aironet, AsyncOS, Bringing the Meeting To You, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, CCVP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Collaboration Without Limitation, EtherFast, EtherSwitch, Event Center, Fast Step, Follow Me Browsing, FormShare, GigaDrive, HomeLink, Internet Quotient, IOS, iPhone, iQuick Study, IronPort, the IronPort logo, LightStream, Linksys, MediaTone, MeetingPlace, MeetingPlace Chime Sound, MGX, Networkers, Networking Academy, Network Registrar, PCNow, PIX, PowerPanels, ProConnect, ScriptShare, SenderBase, SMARTnet, Spectrum Expert, StackWise, The Fastest Way to Increase Your Internet Quotient, TransPath, WebEx, and the WebEx logo are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
All other trademarks mentioned in this document or website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0812R)
Any Internet Protocol (IP) addresses used in this document are not intended to be actual addresses. Any examples, command display output, and figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses in illustrative content is unintentional and coincidental.
© 2009 Cisco Systems, Inc. All rights reserved.
Guest
