[c-nsp] DHCP Snopping with 3560 switches as DHCP server
Dave Lim
dave.daturax at gmail.com
Thu Jan 25 09:11:06 EST 2007
To add on, the DHCP servers are running off the 3560 switches.
On 1/25/07, Dave Lim <dave.daturax at gmail.com> wrote:
>
> I have recently implemented a few 3560 switches and 1 2960G and am running
> the DHCP servers for the vlan on the 3560 switches.. I am facing a problem
> because someone will always plug in their SOHO Linksys WRT54G and start
> leasing out unauthorized IP.
>
> Now how do I configure DHCP snooping. I have narrowed the rogue linksys
> wireless router to be on the 2960G on a specific vlan. do i configure all
> access ports on that switch as untrust and trust only the trunk uplinks to
> my core switch?
>
> And since my dhcp server is on the switch, where do I enable the layer 2
> dhcp trust interface?
>
>
More information about the cisco-nsp
mailing list