Dynamic Host Configuration Protocol (DHCP) allocates IP addresses dynamically, “leasing” addresses to devices so that the addresses can be reused when no longer needed. DHCP snooping database is often referred by many security features in EX switches, such as port security, DHCP, DAI and MAC limiting. The information below explains the content of the table and the CLI command to display the table content.
DHCP snooping reads the lease information from the switch (which is a DHCP client) and from this information creates the DHCP snooping database. This database is a mapping between IP address and VLAN-MAC pair. For each VLAN-MAC address pair, the database stores the corresponding IP address.
The JUNOS software creates a DHCP snooping information table that displays the content of the DHCP snooping database. The table shows current MAC address-IP address bindings, as well as lease time, type of binding, names of associated VLANs, and associated interface. To view the table, use the command 'show dhcp snooping binding' at the operational mode prompt.
The example below shows a table with 3 entries with corresponding MAC address and IP address, the leasing time in seconds, type of binding (dynamic), the associated VLAN (employee—vlan) and associated interface.
user@switch> show dhcp snooping binding
DHCP Snooping Information:
MAC Address IP Address Lease Type VLAN Interface
----------------- ---------- ----- ---- ---- ---------
00:05:85:3A:82:77 192.0.2.17 600 dynamic employee—vlan ge-0/0/1.0
00:05:85:3A:82:79 192.0.2.18 653 dynamic employee—vlan ge-0/0/1.0
00:05:85:3A:82:80 192.0.2.19 720 dynamic employee—vlan ge-0/0/2.0