I have DHCP snooping turned on and everything is running fine. I'm now getting ready to move toward turning on verify source, however I want to make sure all devices are set with DHCP or have a static map.
Is there an easy way to do this?
Is there a way to turn on verify source to log only what it would block? Kind of like a test mode.
I'm also in the same position above. I have configured DHCP snooping etc all working ok.
I have IP phones being assigned addresses from the Layer 3 switch, I have clients being assign IP's from a local DHCP server.
I have configure a static binding for my DHCP server, but as soon as I enter the interface command "ip verify source port-secuirty", any new client that is not already in the DHCP snooping database fails to get an IP addresses. The IP phones are unaffected and carry on working normally -
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...
We have 3 identical switches configured by someone else and would like to claim some of the Gigabit ports(G1/G2/G3/G4) for use on servers. When we try to change the wiring and configuration, we run in to connectivity issues. Attached is a des...