11-15-2016 02:56 PM - edited 03-08-2019 08:10 AM
Hi,
is it somehow possible to achieve same state as on WLC - "DHCP Addr. Assignment required" on Catalyst switches? I want to prohibit all users to assign static IPs on their laptops and use only DHCP and make exceptions only on some ports where are some appliances which must have static IP.
Thanks
11-15-2016 08:38 PM
If you want to block a port when its client is using static IP address, you must use IP DHCP Snooping. In this scenario, the ports which are allowed to carry static ip addresses, are Trusted .
You can have a network with combination of static and dynamic IP addresses and you can also configure DHCP on Cisco Catalyst switches.
12-20-2016 01:50 AM
do you have any link to real example how to implement it? thanks
12-20-2016 05:57 AM
Hello
DHCP snooping , RACL and MACLs can negate rouge dhcp servers
However to negate users from applying statics to their pcs would require a local group policy on each pc to tie down access to the nic properties
This is something active directory can do but not i am aware it's possible from a Cisco perspective
res
paul
 
					
				
				
			
		
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide