Hi all -
Quick question about dhcp snooping. I find lots of info on the web about this - but I can't quite figure out how to set it up for my needs.
I'm on a college campus and we have multiple residence halls. We've had a lot of issues with students bringing in routers and setting them up incorrectly and screwing up many other students in the same building. So we want to be able to have those bogus DHCP packets ignored (or dropped or whatever). I think this is where dhcp-snooping would come into play.
From what I understand we can put in an authorized server and trusted/untrusted ports and we can put in a policy to drop unauthorized dhcp responses. Is this true?
So I would put our DHCP server as the only authorized server? And I would put the only trusted port as the gig port since this is where DHCP would be coming from?
Hopefully this makes sense....
Quick question about dhcp snooping. I find lots of info on the web about this - but I can't quite figure out how to set it up for my needs.
I'm on a college campus and we have multiple residence halls. We've had a lot of issues with students bringing in routers and setting them up incorrectly and screwing up many other students in the same building. So we want to be able to have those bogus DHCP packets ignored (or dropped or whatever). I think this is where dhcp-snooping would come into play.
From what I understand we can put in an authorized server and trusted/untrusted ports and we can put in a policy to drop unauthorized dhcp responses. Is this true?
So I would put our DHCP server as the only authorized server? And I would put the only trusted port as the gig port since this is where DHCP would be coming from?
Hopefully this makes sense....