Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
440
Views
1
Helpful
2
Replies

Fragmentation to Defeat DHCP Snooping?

aalton
Level 1
Level 1

‎07-12-2005 07:20 AM - edited ‎03-09-2019 11:48 AM

Could fragmented packets be used to defeat checks like DHCP Snooping? If a frame doesn't contain the full packet, how would the switch deal with it? A later fragmented frame might be the one that contains a phoney CHADDR (hardware address) field in the DHCP part of the packet even though the layer 2 MAC address might be correct.

Labels:
0 Helpful
2 Replies 2

umedryk
Level 5
Level 5

‎07-18-2005 07:42 AM

This depends on type of switching prevailing.

aalton
Level 1
Level 1
In response to umedryk

‎08-05-2005 12:51 PM

What does the "type of switching" mean? Let's say it is a 3750 switch used to supply access ports to user PCs. DHCP Snooping is on as is IP Source Guard and Dynamic ARP Inspection. Can fragmented packets defeat some of these checks?

0 Helpful
Customers Also Viewed These Support Documents