Scribd Logo
Upload

Welcome to Scribd!

  • 91 views

    5 - DHCP Snooping Concepts

    Uploaded by

    نكت مضحكة
    DHCP snooping is a feature on switches that labels ports as trusted or untrusted and prevents DHCP messages from entering the switch on untrusted ports, except for the port connected to the DHCP server, which is configured as trusted. This helps prevent rogue DHCP servers from being attached to the network by blocking DHCP offers from unknown sources. The document then provides configuration examples for setting up a DHCP server on a trusted port and defining the DHCP pool details.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd

    5 - DHCP Snooping Concepts

    Uploaded by

    نكت مضحكة
    91 views1 page
    DHCP snooping is a feature on switches that labels ports as trusted or untrusted and prevents DHCP messages from entering the switch on untrusted ports, except for the port connected to the DHCP server, which is configured as trusted. This helps prevent rogue DHCP servers from being attached to the network by blocking DHCP offers from unknown sources. The document then provides configuration examples for setting up a DHCP server on a trusted port and defining the DHCP pool details.

    Copyright

    © © All Rights Reserved

    Available Formats

    DOCX, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    DHCP snooping is a feature on switches that labels ports as trusted or untrusted and prevents DHCP messages from entering the switch on untrusted ports, except for the port connected to the DHCP server, which is configured as trusted. This helps prevent rogue DHCP servers from being attached to the network by blocking DHCP offers from unknown sources. The document then provides configuration examples for setting up a DHCP server on a trusted port and defining the DHCP pool details.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Download as docx, pdf, or txt
    91 views1 page

    5 - DHCP Snooping Concepts

    Uploaded by

    نكت مضحكة
    DHCP snooping is a feature on switches that labels ports as trusted or untrusted and prevents DHCP messages from entering the switch on untrusted ports, except for the port connected to the DHCP server, which is configured as trusted. This helps prevent rogue DHCP servers from being attached to the network by blocking DHCP offers from unknown sources. The document then provides configuration examples for setting up a DHCP server on a trusted port and defining the DHCP pool details.

    Copyright:

    © All Rights Reserved
    Download as DOCX, PDF, TXT or read online from Scribd
    Download as docx, pdf, or txt
    of 1

    Why DHCP snooping?

    DHCP snooping is enabled on the VLAN level on a switch.

    DHCP snooping is a feature that exists on a switch.

    It creates two types of ports: trusted and untrusted. When DHCP


    snooping is enabled on a switch, all ports are labeled as untrusted, and this
    prevents any DHCP Offer and DHCP ACK messages from entering the switch.
    However, the port that is connected to the DHCP server should be
    configured manually as a trusted port. The trusted port allows the DHCP Offer
    and DHCP ACK messages to enter the switch.

    The DHCP snooping feature is a countermeasure against any rogue DHCP


    server that may be attached to the network infrastructure.

    Setting The LAB


    DHCP SERVER TRUSTED
    IOU2#configure terminal
    Enter configuration commands, one per line. End with CNTL/Z.

    ip dhcp excluded-address 10.123.0.50 10.123.0.253

    IOU2(config)#ip dhcp pool CLIENT_LAN


    IOU2(dhcp-config)#network 10.123.0.0 255.255.255.0
    IOU2(dhcp-config)#dns-server 8.8.8.8
    IOU2(dhcp-config)#default-router 10.123.0.1

    You might also like