In the PROFILE DHCP_RA, you can configure the DHCP relay agent profile parameters. After configuration, the DHCP relay agent profile can be assigned to a specific PLC8 module with the slot <id> profile dhcp-ra command in the CONFIG command mode.
This command allows you to create a new DHCP relay agent profile and switch to its configuration mode.
The use of a negative form (no) of the command removes the profile.
[no] profile dhcp-ra [<NAME>]
<NAME> – profile name, case sensitive.
CONFIG
ma4000(config)# profile dhcp-ra test ma4000(config-dhcp-ra)("test")# |
The command changes the name of the configured profile.
The use of a negative form (no) of the command removes a name.
[no] name <STRING>
<STRING> – profile name.
PROFILE DHCP_RA
ma4000(config-dhcp-ra)("test")# name EL |
The command allows you to add a description for the configured DHCP relay agent profile.
The use of a negative form (no) of the command removes description.
[no] description <STRING>
<STRING> – text description.
PROFILE DHCP_RA
ma4000(config-dhcp-ra)("test")# description TEST |
This command enables DHCP relay (Option 82).
The use of a negative form (no) of the command disables this feature.
[no] enable
The command contains no arguments.
PROFILE DHCP_RA
ma4000(config-dhcp-ra)("TEST")# enable |
This command enables DoS attack prevention.
The use of a negative form (no) of the command disables this feature.
[no] set dos-block [packet-limit <LIMIT>|block-time <TIME>]
packet-limit <LIMIT> – the command sets the DoS attack threshold (number of packets per second), where <LIMIT> – number of packets per second, my take values [10 .. 1000];
block-time <TIME> – the command sets the time to block the port when a DoS attack is detected, where <TIME> – blocking time, may take values [30 .. 3600] in seconds.
PROFILE DHCP_RA
ma4000(config-dhcp-ra)("TEST")# dos-block packet-limit 13 block-time 222 |
This command sets the formats of CircuitID and RemouteID fields for Option82.
Circuit ID – contains information about the port from which the request came to the DHCP repeater;
Remote ID – identifier of the DHCP repeater itself.
The use of a negative form (no) of the command removes a specified value.
[no] overwrite-option82 <FORMAT> <STRING> <TEXT FORMAT>
<FORMAT> – configured field:
<STRING> – string up to 240 characters. Has the following form: PARAM_name1=PARAM_1... PARAM_name2=PARAM_2... PARAM_nameN= PARAM_N, where parameters (PARAM_1.. PARAM_N) are the following formats:
%HOSTNAME% – LTP device name;
%SLOTID% – MA4000 slot number;
%MNGIP% – management interface IP address;
%GPON-PORT% – optical channel identifier;
%ONTID% – ONT identifier, assigned by administrator;
%PONSERIAL% – ONT device serial number;
%GEMID% – GEM port identifier;
%VLAN0% – VLAN external identifier;
%VLAN1% – VLAN internal identifier;
%MAC% – subscriber device MAC address;
%OPT60% – string is extracted from DHCP option 60 of the incoming packet;
%OPT82_CID% – DHCP option82 Circuit ID string is extracted from the incoming packet;
%OPT82_RID% – DHCP option82 Remote ID string is extracted from the incoming packet;
%DESCR% – first 20 characters of ONT configuration description.
The separators between parameters may be any characters, but each parameter FORMAT must be enclosed in '%'.
<TEXT FORMAT> – option presentation type:
PROFILE DHCP_RA
ma4000(config-dhcp-ra)("test")# circuit_id_format host=%HOSTNAME%,ont=%ONTID%, slot=%SLOTID%' |
This command sets the IP addresses of the primary and secondary DHCP server.
The use of a negative form (no) of the command removes a specified value.
[no] trusted primary <IP>
[no] trusted secondary <IP>
trusted primary <IP> – the command sets primary DHCP server IP address;
trusted secondary <IP> – the command sets secondary DHCP server IP address;
<IP> – IP address, defined as AAA.BBB.CCC.DDD where each part takes values of [0..255].
PROFILE DHCP_RA
ma4000(config-dhcp-ra)("test")# trusted primary 192.168.52.2 |
This command sets the time of waiting for the response from the DHCP server.
The use of a negative form (no) of the command removes a specified value.
[no] trusted timeout <VALUE>
<VALUE> – time period in seconds [200..1500].
PROFILE DHCP_RA
ma4000(config-dhcp-ra)("test")# trusted timeout 1000 |
This command enables the use of trusted DHCP servers.
The use of a negative form (no) of the command disables this feature.
[no] trusted server
The command contains no arguments.
PROFILE DHCP_RA
ma4000(config-dhcp-ra)("TEST")# trusted server |
This command is used to view the created DHCPRA profiles.
When you specify a profile name, you will see the settings of the configured profile:
show profile dhcp-ra [<NAME>]
<NAME> – profile name, optional parameter.
ROOT
ma4000# show profile dhcp-ra dhcp-ra-00 Description: 'OLT Profile DHCP Relay Agent 0' Relay agent: disabled Circuit id format: '' Remote id format: '' Overwrite client option82: false Dos block enabled: false Bc packet per second: 128 Port block time: 600 Trusted server: disabled Trusted primary: 0.0.0.0 Trusted secondary: 0.0.0.0 Trusted server timeout: 1000 |
ma4000# show profile dhcp-ra ## Name Description 1 dhcp-ra-00 OLT Profile DHCP Relay Agent 0 |
This command allows you to view currently active DHCP-sessions on PLC8 line cards.
DHCP Relay Agent should be enabled.
show interface gpon-port <GPON-PORT> pppoe sessions
<GPON-PORT> - gpon-port number in format of <SLOT>/<port>
<SLOT> – PLC8 module number, may take values (0..15). You may specify the list of numbers using comma ( , ) or specify the range using hyphen ( - );
<port> – GPON port number of PLC8 module.
ROOT
ma4000# show interface gpon-port 1/0 dhcp sessions No active DHCP sessions |