Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
801
Views
0
Helpful
2
Replies

new Voice VLAN - IP ARP INSPECTION - DHCP SNOOPING

hi.sadiki
Level 1
Level 1

‎01-09-2017 05:56 AM - edited ‎03-08-2019 08:50 AM

Hello,

Can anyone help please ?

I have IP phones  connected to a switch. Voice vlan 101.

I have ip Arp inspection and IP Dhcp snooping configured for the  voice vlan 101 also. That works perfectly.

This morning I had to change the voice vlan on switch ports from 101 to  the new voice vlan 102.  I forgot to change it on IP ARP Inspection and DHCP snooping.

My surprise is that my IP phones continued to be Pingable even if the new voice 102 vlan was not added to IP ARP Inspection and DHCP snooping.

Does anyone have an exlaination please ???

Many thanks

Labels:
0 Helpful
2 Replies 2

Mahammadali Aghabayli
Level 1
Level 1

‎10-09-2018 11:41 PM

Hi  Sadiki

 

If DHCP snooping and arp inspection not enabled on specified VLAN then switch will not check it.

 

Thanks,

Mahammadali Aghabayli.R

0 Helpful

Seb Rupik
VIP Alumni
VIP Alumni

‎10-10-2018 12:00 AM

Hi there,

ARP inspection and DHCP snooping are security measures to prevent rogue devices from effecting normal traffic and being implemented is considered best practice. Not being enable on a VLAN won't stop it from functioning, just make it slightly more vulnerable.

 

cheers,

Seb.

 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card