All,
Should I receive a syslog message when a DHCP Snooping violation occurs?
I just configured DHCP Snooping on a Cisco 3850 switch running 3.6.4. When a rogue DHCP server responds to a DHCP discovery broadcast, the switch drops packet and the drops increase in the show ip dhcp snooping statistics. However, I do not see a new entry in the logs. Should I see one?
When I have the following debugs on,
ip dhcp snooping packet
ip dhcp snooping event
I see the following in the logs:
DHCP_SNOOPING_SW: bridge packet output port set is null, packet is dropped.
Thank you,
T.J.