Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
205
Views
0
Helpful
2
Replies

DHCP Snooping & DAI on same vlan as mgmt of switch

katerina.dardoufa
Level 4
Level 4

‎03-14-2014 04:55 AM - edited ‎03-07-2019 06:42 PM

Hi all,

my company is thinking of implementing DHCP snooping and DAI on our infrastructure. The plan is to begin from the remote sites. My question is this:

On our remote sites we have only one vlan (say vlan x) for everything (users, printers, switch mgmt IP). If I configure DHCP Snooping and DAI on vlan x on the switch, is there any chance that I loose the switch, since its mgmt IP is on the same vlan?

I have no way to test this in a lab environment, so if anyone has insight on the matter I would much appreciate it!

 

Thanks in advance,

Katerina

Labels:
0 Helpful
2 Replies 2

devils_advocate
Level 7
Level 7

‎03-14-2014 07:26 AM

You should configure the any uplink/downlink ports as trusted before you enable DAI and DHCP Snooping.

You should not lose access to the switches.

0 Helpful

katerina.dardoufa
Level 4
Level 4

‎03-17-2014 06:07 AM

Thanks for your reply!

my uplinks will be trusted. Usually the mgmt of the switch is in a dedicated mgmt vlan, different than the user vlan on which DAI & DHCP snooping will be applied to. That is why I was wondering...

Anyways, I suppose there won't be a problem...
 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card