Host with same IP of default gateway. How to prevent?

Answered Question
Nov 11th, 2008

Hi,


I had a problem this week in the network. A host was plugged in the network with the same IP address of the default gateway of that Vlan.


Is there someway to prevent it? I know with 802.11x I could know who is doing that, but it would not avoid the problem to occur.


Is there anyway to force the hosts to use DHCP or something?

Correct Answer by darrenj about 8 years 3 months ago

It will also prevent an unauthorised DHCP server on an untrusted interface. It ensures (on an untrusted interface) only DHCP client messages such as DHCP requests (denies DHCP server messages such as DHCP replies) and only allows source IP addresses from packets that it knows have been assigned by DHCP. Does that make sense?


Darren

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
darrenj Tue, 11/11/2008 - 12:59

Hey there. You want to look at DHCP snooping ;-) Make sure you have a DHCP server configured, and DHCP snooping enabled on your switch. If a device tries to use any static assigned IP addresses, the switch interface will block it (it must be DHCP assigned). For your router interface, make sure you trust the interface (as you will have a static IP address assigned).


Hope this helps, good luck


Dazzler

guibarati Tue, 11/11/2008 - 18:24

Thanks, I didn't think dhcp snooping would work this way, i thought it would only prevent an unautoryzed DHCP server to be installed on the network.


I will test that and rate.

Correct Answer
darrenj Wed, 11/12/2008 - 04:49

It will also prevent an unauthorised DHCP server on an untrusted interface. It ensures (on an untrusted interface) only DHCP client messages such as DHCP requests (denies DHCP server messages such as DHCP replies) and only allows source IP addresses from packets that it knows have been assigned by DHCP. Does that make sense?


Darren

Actions

This Discussion