[Last Call] Learn about multicloud storage options and how to improve your company's cloud strategy. Register Now

x
?
Solved

DHCP Snooping

Posted on 2008-06-21
4
Medium Priority
?
680 Views
Last Modified: 2010-08-30
I have cisco 3560 as my access layer switches.All my PCs connecting to the network will be getting IP Address from the DHCP server.I dont want any PC or Laptop to connect to my network via static IP Address, only PCs asking for DHCP request will be allowed to have network access..Let me know how
DHCP snooping configuration can prevent the PCs with static IP Address .
0
Comment
Question by:RajeevSrikant
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 50

Expert Comment

by:Don Johnston
ID: 21837288
No. The purpose of DHCP Snooping is to prevent someone an unauthorized DHCP server from being connected to the network.
0
 

Author Comment

by:RajeevSrikant
ID: 21837339
So is there any way to prevent network access for PCs using static IP address to get connect to the network.
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 21837345
Not that I'm aware of.

There's MAC address port security which only allows specific MAC addresses on a port. There's 802.1x which can allow port access based on authentication.

But I don't know of anything that restricts access based on whether the IP address was defined by a DHCP server.
0
 

Accepted Solution

by:
RajeevSrikant earned 0 total points
ID: 21837370
Thank you for your reply.
I am not looking for port security or 802.1x.
I will be using a solution where any PC getting connected to the network will be authenticated based on the MAC address when it generated the DHCP request to the DHCP server. The DHCP server will check the MAC address of the requesting PC in its database. If it matches then it gives the IP Address or else it denys giving the IP Address.
This soltion will work for PCs who reqests DCHP IP address.
But this soltuion will not work for PC using Static IPs.
So I am looking for similar soution for PC using static IPs.



0

Featured Post

How to Use the Help Bell

Need to boost the visibility of your question for solutions? Use the Experts Exchange Help Bell to confirm priority levels and contact subject-matter experts for question attention.  Check out this how-to article for more information.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Learn how to PXE Boot both BIOS & UEFI machines with DHCP Policies and Custom Vendor Classes
Arrow Electronics was searching for a KVM  (Keyboard/Video/Mouse) switch that could display on one single monitor the current status of all units being tested on the rack.
In this video, Percona Solution Engineer Rick Golba discuss how (and why) you implement high availability in a database environment. To discuss how Percona Consulting can help with your design and architecture needs for your database and infrastr…
Is your data getting by on basic protection measures? In today’s climate of debilitating malware and ransomware—like WannaCry—that may not be enough. You need to establish more than basics, like a recovery plan that protects both data and endpoints.…

650 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question