[c-nsp] ME3600X mLDP
Gert Doering
gert at greenie.muc.de
Fri Jul 10 11:12:32 EDT 2015
Hi,
On Fri, Jul 10, 2015 at 05:07:50PM +0200, Lukas Tribus wrote:
> DHCP Snooping is also supposed to drop certain requests/responses, like
> a bogus DHCP server on a untrusted port, or inserting option 82 in the
> DHCP request. Therefor you can't just forward in hardware and "learn"
> the leases in software (like mac address learning), but you have to take
> forward/drop/modify decisions in software.
True, if you modify the packet, you can't forward it in hardware.
I thought it does what the name says, namely, "snoop" :-) - so ignore
what I said.
gert
--
USENET is *not* the non-clickable part of WWW!
//www.muc.de/~gert/
Gert Doering - Munich, Germany gert at greenie.muc.de
fax: +49-89-35655025 gert at net.informatik.tu-muenchen.de
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 291 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/cisco-nsp/attachments/20150710/b4bef161/attachment.sig>
More information about the cisco-nsp
mailing list