Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

prevent rogue dhcp server

can someone please offer a suggestion or some documentation for preventing rogue dhcp servers from being connected to the network? i'm mosly concerned with one being connected at an access switches where only port security is currently used.

thanks.

1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Blue

Re: prevent rogue dhcp server

Hi

You can use a feature called DHCP Snooping which allows you to define trusted ports where you connect your DHCP servers into and non-trusted ports for DHCP clients. As long as the person attaching the server does not have access to the switch config this would be fairly effective.

I don't know what type of access switches you have but i have included a link to configuration of DHCP Snooping on the 3750 switch.

HTH

Jon

1 REPLY
Hall of Fame Super Blue

Re: prevent rogue dhcp server

Hi

You can use a feature called DHCP Snooping which allows you to define trusted ports where you connect your DHCP servers into and non-trusted ports for DHCP clients. As long as the person attaching the server does not have access to the switch config this would be fairly effective.

I don't know what type of access switches you have but i have included a link to configuration of DHCP Snooping on the 3750 switch.

HTH

Jon

761
Views
0
Helpful
1
Replies