Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Verify that router is not allowing DHCP packets

Hi all. I have an 1811 router that connects two dissimilar networks.

My question is, how can I verify that the 1811 is not allowing dhcp packets to pass through it? I realize that routers stop broadcast, hence dhcp, but how can I verify that if a non-cisco person wants proof that dhcp packets are being discarded at the ingress interface?

1 REPLY
New Member

Re: Verify that router is not allowing DHCP packets

DHCP operates using two mechanisms: The initial request for an address is indeed broadcast, however subsequent transactions are unicast. Short of using ip helpers to forward the broadcast requests to a DHCP server, stopping the broadcast will stop that initial discovery.

If you want to make 100% sure DHCP doesn't cross the networks (this could happen in the case a mobile user already thinks it has an address, moves to the other network, and tries to renew by unicast), a simple ACL against UDP port 67 will stop that.

123
Views
0
Helpful
1
Replies
CreatePlease to create content