Orion A10E DHCP Snooping, ARP Inspection

[subsidii2000]

Добрый день!

Проблема с настройкой DAI, DHCP Snooping.
 

На коммутаторе включен DHCP Server. Клиентам раздаются адреса из пула.

При попытке включить DHCP Snooping получаю ошибку:

#ip dhcp snooping
Enable DHCP Snooping unsuccessfully. Other DHCP service is enabled !

 

Я так понимаю из-за того, что включен DHCP Server.

 

Вопрос: как тогда настроить arp inspection и привязку ip адреса к mac адресу и порту на коммутаторе?

 

 

=====================================
Alpha-A10E#sh ver

Network Operating System
 Copyright (c) 2006-2015 Orion Networks International, Inc.

Product name: Alpha-A10E
 NOS Version: NOS_4.15.1359_20171213(Compiled Dec 13 2017, 12:10:23)
 Bootstrap Version: Bootstrap_3.1.7.Alpha-A10E.0.20160922

==============================
 Alpha-A10E#sh run
 System current configuration:
!NOS  Version NOS_4.15.1359_20171213
!command in view_mode
!
!command in config_mode first-step
create vlan 134 active
!
!command in aclmap_mode
!
!command in ipv6 aclmap_mode
!
!command in enable_mode
terminal time-out 900
hostname A10E
clock timezone + 5 0
!
!command in region_mode
!
!command in ip igmp profile mode
!
!command in service_mode
!
!command in port_mode
!
interface port 1
description to_PC
switchport access vlan 134
flowcontrol on
spanning-tree edged-port force-true
switchport port-security
switchport port-security violation shutdown
switchport port-security trap enable
switchport port-security mac-address sticky
switchport port-security cpu-protect enable
!
interface port 2
description to_PC
switchport access vlan 134
flowcontrol on
spanning-tree edged-port force-true
switchport port-security
switchport port-security violation shutdown
switchport port-security trap enable
switchport port-security mac-address sticky
switchport port-security cpu-protect enable
switchport port-security mac-address sticky 0018.f304.b8f2 vlan 134
!
interface port 9
switchport mode trunk
!
interface port 10
switchport mode trunk
!
!command in vlan configuration mode
vlan 134
name Lan
!
!command in ip interface mode
interface ip 0
ip address 192.168.134.2 255.255.255.240 134
ip dhcp server
!
!command in cmap_mode
!
!command in pmap_mode
!
!command in aclgroup_mode
!
!command in config_mode
ip default-gateway 192.168.134.1
ip forwarding
storm-control multicast enable port 1-10
storm-control dlf enable port 1-10
dlf-forwarding disable
storm-control broadcast bps 128 8 port 9
storm-control multicast bps 128 8 port 9
storm-control dlf bps 128 8 port 9
storm-control detection enable
uplink port-list 9,10
arp 192.168.134.1 b838.6121.12af
ip dhcp server
ip dhcp server ip-pool net134 192.168.134.7 192.168.134.14 255.255.255.240 ip 0 gateway 192.168.134.2 dns 192.168.130.1
no logging console
loopback-detection enable port-list 1-10
loopback-detection error-device discarding port-list 1-10
loopback-detection down-time 300
loopback-detection vlan 134
ntp server 192.168.134.1
no auto_config enable
no auto_save enable
!

[Victor Tkachenko]

@subsidii2000, добрый!

Функционал DHCP-сервера на Orion A10E вспомогательный, связка с DAI не реализована.

При необходимости осуществлять привзяку имеет смысл вынести DHCP-сервер на другое устройство и воспользоваться DHCP snooping/relay.