Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
429
Views
0
Helpful
1
Replies

Enabling DHCP Snooping for profiling without blocking DHCP requests

BTinNC
Level 1
Level 1

‎04-27-2016 02:13 PM - edited ‎03-10-2019 11:42 PM

I am reading through a lot of documentation trying to increase my knowledge on how ISE Profiling works.

I have found many design guides that say to enable these commands:

ip dhcp snooping

ip dhcp snooping vlan [VLAN ID's]

I understand the basic concept of what DHCP snooping does, but if I enable it and enable it on a VLAN, what is preventing the switch from dropping the DHCP packets because I havent configured any of the dhcp trust interfaces? 

Labels:
0 Helpful
1 Reply 1

nspasov
Cisco Employee
Cisco Employee

‎04-30-2016 11:16 AM

Hi Brian-

If you want to use DHCP Snooping then you must define the trusted ports. Otherwise, as you have already mentioned, your clients will not get addresses from DHCP. 

With that being said, what are your concerns with enabling trust interfaces?

Thank you for rating helpful posts!

Thank you for rating helpful posts!
0 Helpful
Related community topics
Top