Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1921
Views
0
Helpful
1
Replies

DHCP Snooping on multiple switches

ibrunello
Level 1
Level 1

‎08-28-2009 06:52 AM - edited ‎03-06-2019 07:29 AM

I'd like to configure dhcp snooping on a multiple switch environment (almost all 6500s), but I have some concerns on trunking ports.

1) not-so-simple question:

I have this layout

- dhcp server connecting to port 1 of switch 1; access vlan on vlan 1

- dhcp client connecting to port 2 of switch 2; access vlan on vlan 2

switch 1 and 2 are connected via a trunk port (port 3 on both).

L3 for both vlan 1 and 2 is configured on switch 1.

Should I configure port 3 of switch 2 as a trusted port?

TIA

Ivan

Labels:
0 Helpful
1 Reply 1

Giuseppe Larosa
Hall of Fame
Hall of Fame

‎08-28-2009 07:05 AM

Hello Ivan,

>> Should I configure port 3 of switch 2 as a trusted port?

yes otherwise legitimate traffic could be dropped.

DHCP snooping looks at the source ip address and you are likely to receive traffic with arbitrary source ip address on this port to the default gateway coming from all other possible vlans/subnets or even from internet

Hope to help

Giuseppe

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card