Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2711
Views
0
Helpful
3
Replies

Host with same IP of default gateway. How to prevent?

Go to solution
guibarati
Level 4
Level 4

‎11-11-2008 10:34 AM - edited ‎03-09-2019 09:47 PM

Hi,

I had a problem this week in the network. A host was plugged in the network with the same IP address of the default gateway of that Vlan.

Is there someway to prevent it? I know with 802.11x I could know who is doing that, but it would not avoid the problem to occur.

Is there anyway to force the hosts to use DHCP or something?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
darrenj
Level 1
Level 1
In response to guibarati

‎11-12-2008 04:49 AM

It will also prevent an unauthorised DHCP server on an untrusted interface. It ensures (on an untrusted interface) only DHCP client messages such as DHCP requests (denies DHCP server messages such as DHCP replies) and only allows source IP addresses from packets that it knows have been assigned by DHCP. Does that make sense?

Darren

View solution in original post

0 Helpful
3 Replies 3

Go to solution
darrenj
Level 1
Level 1

‎11-11-2008 12:59 PM

Hey there. You want to look at DHCP snooping ;-) Make sure you have a DHCP server configured, and DHCP snooping enabled on your switch. If a device tries to use any static assigned IP addresses, the switch interface will block it (it must be DHCP assigned). For your router interface, make sure you trust the interface (as you will have a static IP address assigned).

Hope this helps, good luck

Dazzler

0 Helpful

Go to solution
guibarati
Level 4
Level 4
In response to darrenj

‎11-11-2008 06:24 PM

Thanks, I didn't think dhcp snooping would work this way, i thought it would only prevent an unautoryzed DHCP server to be installed on the network.

I will test that and rate.

0 Helpful

Go to solution
darrenj
Level 1
Level 1
In response to guibarati

‎11-12-2008 04:49 AM

It will also prevent an unauthorised DHCP server on an untrusted interface. It ensures (on an untrusted interface) only DHCP client messages such as DHCP requests (denies DHCP server messages such as DHCP replies) and only allows source IP addresses from packets that it knows have been assigned by DHCP. Does that make sense?

Darren

0 Helpful
Customers Also Viewed These Support Documents