Switch security: dhcp snooping

Switch security: dhcp snooping by Cyrus Lok on Sunday, June 20, 2010 at 4:50am 2950-1(config)#ip dhcp snooping 2950-1(config)#ip dhcp snooping vlan 101 2950-1(config)#int fa0/21 2950-1(config-if)#switchport access vlan 101 2950-1(config-if)#ip dhcp snooping trust when ip dhcp snooping is turned on globally, all ports are set to untrusted ports. fa0/21 is the port that should be trusted … Continue reading Switch security: dhcp snooping


Private-vlan and protected ports

Private-vlan and protected ports by Cyrus Lok on Wednesday, August 18, 2010 at 11:32am Private vlan introduction If you want to limit the communication among devices under the same subnet you can configure private vlan to achieve this objective. One private vlan primary can service only one isolated vlan and many community vlans. There are … Continue reading Private-vlan and protected ports