Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
675
Views
0
Helpful
1
Replies

DHCP snooping trust command info

Go to solution
mahesh18
Level 6
Level 6

‎07-29-2012 12:14 PM - edited ‎03-07-2019 08:02 AM

Hi all,

I had layer 3 switches Providing DHCP to clients.

Users connect to access layer switch and that has trunk connection to layer 3.

Layer config

ip dhcp snooping

ip dhcp snooping vlan 20

Now layer 2 switch has no dhcp snooping config.

When user connects to layer 2 switch he gets the IP address.

On layer 3 switch i can see that dhcp snooing binding.

My question is  this right decesion if switch is providing the DHCP?

Second  question  is that it is working fine without marking any trust port on layer 2 or layer 3 switch?

Thanks

MAhesh

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni

‎07-29-2012 01:39 PM

Hello Manesh,

That is one of the many designs.

The switch will act as the DHCP server and DHCP snooping database, that will mean all of it's ports will be on the untrusted state.

You should not have any issues.

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni

‎07-29-2012 01:39 PM

Hello Manesh,

That is one of the many designs.

The switch will act as the DHCP server and DHCP snooping database, that will mean all of it's ports will be on the untrusted state.

You should not have any issues.

Regards,

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card