Switch security: dhcp snooping

cyruslab Route, Security September 12, 2010 1 Minute

Switch security: dhcp snooping

by Cyrus Lok on Sunday, June 20, 2010 at 4:50am

2950-1(config)#ip dhcp snooping
2950-1(config)#ip dhcp snooping vlan 101
2950-1(config)#int fa0/21
2950-1(config-if)#switchport access vlan 101
2950-1(config-if)#ip dhcp snooping trust

when ip dhcp snooping is turned on globally, all ports are set to untrusted ports. fa0/21 is the port that should be trusted as dhcp server is located here.

2950-1#sh ip dhcp snooping
Switch DHCP snooping is enabled
DHCP snooping is configured on following VLANs:
101
Insertion of option 82 is enabled
Interface Trusted Rate limit (pps)
———————— ——- —————-
FastEthernet0/21 yes unlimited

Published by cyruslab

View all posts by cyruslab

Published September 12, 2010

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Cancel

Connecting to %s

%d bloggers like this:

Switch security: dhcp snooping

Share this:

Like this:

Related

Published by cyruslab

Leave a Reply Cancel reply