01-11-2011 02:28 AM - edited 03-03-2019 06:10 AM
Hi,
Is it required to enable dhcp trust on trunk ports if server is connected to a core switches and pc's are connected to access switches. access switch and core switches have trunk ports.
01-11-2011 01:02 PM
Hi,
On your access switches you must trust on ports going to your server as by defult all ports are untrusted and so no DHCP replies from your server
will hit your clients.
Regards.
Alain.
01-12-2011 12:23 AM
Thanks Alain,
But in my case, server is connected to Core switches. We have 2-tier structure.
Access switches connected to core switches , core switches connected to router and then to wan.
All PCs are connected to Access Switches.
Dhcp server is connected to Core Switch.
Access switch and core switch are connected via trunk ports.
as shown in the attached visio diagram. My doubt is, is it required to make both the trunk ports on access switches as trust ports and what all need to be considered to implement dhcp snooping this scenario.
01-12-2011 10:17 AM
Hi,
But in my case, server is connected to Core switches. We have 2-tier structure.
it makes no difference you must trust links going towards server on your access switches.
I can't read visio files so I can't tell you on which switch to implement snooping but I can tell you for sure that when
it is enabled all ports are untrusted and so no dhcp replies can transit these ports and so that's why you must trust the interfaces which are going to your dhcp server so that replies can enter this ports.
Regards.
Alain.
01-13-2011 11:07 AM
Can you please give me the commands to enable dhcp snooping on CAT OS.
and also how to revert(disable dhcp snooping).
01-13-2011 11:55 AM
Hi,
http://home.btconnect.com/bt--uk-connect0123/Switch/DHCPSnooping_Cat.htm
Regards.
Alain.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide