Hi all. I have an 1811 router that connects two dissimilar networks.
My question is, how can I verify that the 1811 is not allowing dhcp packets to pass through it? I realize that routers stop broadcast, hence dhcp, but how can I verify that if a non-cisco person wants proof that dhcp packets are being discarded at the ingress interface?
Re: Verify that router is not allowing DHCP packets
DHCP operates using two mechanisms: The initial request for an address is indeed broadcast, however subsequent transactions are unicast. Short of using ip helpers to forward the broadcast requests to a DHCP server, stopping the broadcast will stop that initial discovery.
If you want to make 100% sure DHCP doesn't cross the networks (this could happen in the case a mobile user already thinks it has an address, moves to the other network, and tries to renew by unicast), a simple ACL against UDP port 67 will stop that.
We are pleased to announce availability of Beta software for 16.6.3.
16.6.3 will be the second rebuild on the 16.6 release train targeted
towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are
looking for early feedback from customers befor...
Introduction Featured Speakers Luis Espejel is the Telecommunications
Manager of IENova, an Oil & Gas company. Currently he works with Cisco
IOS® and Cisco IOS XE platforms, and NX to some extent. He has also
worked as a Senior Engineer with the Routing P...
In this session you can learn more about Layer 3 multicast and the best
practices to identify possible threats and take security measures. It
provides an overview of basic multicast, the best security practices for
use of this technology, and recommendati...