DHCP Snooping Flashcards

1
Q

What does DHCP Snooping?

A

DHCP Snooping only allows DHCP exchanges to take place across certain trusted ports, and prevents rogue DHCP servers.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is the default port state once DHCP snooping is enabled?

A

By default, all ports are considered un-trusted.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the default action for DHCP snooping violations?

A

The offending port will be placed into err-disabled mode.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the three steps in configuring DHCP snooping?

A
  1. Enable DHCP snooping globally.
  2. Enable which VLANs DHCP snooping will enforce.
  3. Specify your trusted ports.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is the DHCP snooping validity check?

A

All DHCP discover/request packets will have the option 82 value replaced with the switch’s own value. If this value does not match on the DHCP replies, the packets are dropped.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is rate limiting?

A

Rate limiting sets how many DHCP packets are allowed across a trusted port per second.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is DHCP snooping necessary for?

A

Dynamic arp inspection and IP source guard.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly