09-08-2014 11:13 AM - edited 03-07-2019 08:40 PM
Hello,
I wish to setup DHCP Spoofing on my system. I just have a couple of questions please.
1. Do I need to configure this on every switch on the system? Or just the core Layer 3 switch that hosts the VLANS?
2. Can I put the port trust command on a trunk port? I have my DHCP server as a virtual machine, the VM hosts are connected a few trunk ports on our core.
Many Thanks
Solved! Go to Solution.
09-08-2014 01:45 PM
Hi zakfleming1,
- DHCP Snooping should be configured in all switches/VLANs that will handle DHCP traffic in your network.
- You need to "trust" only ports/uplinks where "DHCP Offer" packets from the DHCP server will come in; ports connected to VM hosts(DHCP clients) should not be trusted.
Hope this helps
Caleb Quiros
09-08-2014 01:45 PM
Hi zakfleming1,
- DHCP Snooping should be configured in all switches/VLANs that will handle DHCP traffic in your network.
- You need to "trust" only ports/uplinks where "DHCP Offer" packets from the DHCP server will come in; ports connected to VM hosts(DHCP clients) should not be trusted.
Hope this helps
Caleb Quiros
07-22-2015 05:24 AM
Thanks, sorry for the very late reply. I ended up moving jobs and totally forgot I posted this. Thanks for your help.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide