Operation Manual – DHCPH3C S3100 Series Ethernet Switches Chapter 2 DHCP Snooping Configuration2-8Note:z Only the S3100-EI series among S3100 series switches support the configuration ofDHCP snooping trusted ports.S3100-SI series Ethernet switches do not support theconfiguration of DHCP snooping trusted ports. That is, after DHCP snooping isenabled, all ports of the S3100-SI series Ethernet switches are trusted ports.z After DHCP snooping is enabled, all ports of an S3100-EI switch are untrusted ports.You need to specify the port of the S3100-EI switch connected to the valid DHCPserver as trusted to ensure that DHCP clients can obtain valid IP addresses. Thetrusted port and the port connected to the DHCP clients must be in the same VLAN.2.3 Configuring Unauthorized DHCP Server DetectionNote:Only the S3100-SI series among S3100 series switches support the unauthorizedDHCP server detection.Table 2-5 Configure unauthorized DHCP server detectionOperation Command DescriptionEnter system view system-view —Enter Ethernet port view interface interface-typeinterface-number —Enable unauthorizedDHCP server detectiondhcp-snoopingserver-guard enableRequiredDisabled by default.Specify the method forhandling unauthorizedDHCP serversdhcp-snoopingserver-guard method{ trap | shutdown }OptionalBy default, the handlingmethod is trap.Return to system view quit —Specify a source MACaddress forDHCP-DISCOVERmessages sent by thesnooping devicedhcp-snoopingserver-guardsource-macmac-addressOptionalBy default, the sourceMAC address ofDHCP-DISCOVERmessages is the bridgeMAC address of theswitch.