DHCP Snooping Flashcards
What does DHCP Snooping?
DHCP Snooping only allows DHCP exchanges to take place across certain trusted ports, and prevents rogue DHCP servers.
What is the default port state once DHCP snooping is enabled?
By default, all ports are considered un-trusted.
What is the default action for DHCP snooping violations?
The offending port will be placed into err-disabled mode.
What are the three steps in configuring DHCP snooping?
- Enable DHCP snooping globally.
- Enable which VLANs DHCP snooping will enforce.
- Specify your trusted ports.
What is the DHCP snooping validity check?
All DHCP discover/request packets will have the option 82 value replaced with the switch’s own value. If this value does not match on the DHCP replies, the packets are dropped.
What is rate limiting?
Rate limiting sets how many DHCP packets are allowed across a trusted port per second.
What is DHCP snooping necessary for?
Dynamic arp inspection and IP source guard.