"When you enable DHCP snooping on a switch, the interface acts as a Layer 2 bridge, intercepting and safeguarding DHCP messages going to a Layer 2 VLAN. When you enable DHCP snooping on a VLAN, the switch acts as a Layer 2 bridge within a VLAN domain. "
I do not understand : the interface acts as a Layer 2 bridge, intercepting and safeguarding DHCP messages going to a Layer 2 VLAN
Is it to say that DHCP packets are blocked for all vlans by default, and that when you list the vlans that the inspection (regarding trusted and untrusted interface) is done only for those vlans.
For any other vlans not listed, then all DHCp request are blocked ?
Maybe I miss understand. Can someone give me some more information/explaination ?
The link you have included in your post has slightly confused me as well
Nevertheless, this is how I understand it: If you want to deploy the DHCP Snooping, you have first to activate the support on the global level using the ip dhcp snooping command, and subsequently, activate the DHCP Snooping for the selected VLAN using the command ip dhcp snooping vlan N. All other VLANs for which the DHCP Snooping is not activated explicitly are not influenced by the DHCP Snooping and there is no limiting nor protection on the DHCP communication. Only the explicitly specified VLANs will be affected by the DHCP Snooping feature.
Hi, I have different questions about tunnels management. 1) Imagine that you have 2 router (A,B) with a GRE Tunnel, but inside you have also 2 different routers o firewall with a vpn connection (image1 attached). Which would be the n...
Hello!I make syslogcollector + RESTAPI for collect syslog messages.It have next iterested features:1. Can recognise header from Cisco/Moxa and more devices and write it in dedicated field2. Have API for integrated with other tools3. Work with Mongodb4. We...
Cisco Digital Network Architecture Center Modules (Design Module)Part.3In this article, we are going to talk about the Cisco Digital Network Architecture Center design Module.Cisco DNA Center gives us the flexibility and scalability to configure mult...
Cisco 2509-RJ freezes during start-up I bought some Cisco 2509-RJ terminal server to work on my labs and was working fine. Today I turned it on and half way through starting up it seems to freeze. I can only find one instance of this happing to ...
Cisco Digital Network Architecture Center Modules(Design Module)Part.2In this article, we are going to talk about the Cisco Digital Network Architecture Center design Module. Cisco DNA Center gives us the flexibility and availability to con...