• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 684
  • Last Modified:

DHCP Snooping

I have cisco 3560 as my access layer switches.All my PCs connecting to the network will be getting IP Address from the DHCP server.I dont want any PC or Laptop to connect to my network via static IP Address, only PCs asking for DHCP request will be allowed to have network access..Let me know how
DHCP snooping configuration can prevent the PCs with static IP Address .
0
RajeevSrikant
Asked:
RajeevSrikant
  • 2
  • 2
1 Solution
 
Don JohnstonInstructorCommented:
No. The purpose of DHCP Snooping is to prevent someone an unauthorized DHCP server from being connected to the network.
0
 
RajeevSrikantAuthor Commented:
So is there any way to prevent network access for PCs using static IP address to get connect to the network.
0
 
Don JohnstonInstructorCommented:
Not that I'm aware of.

There's MAC address port security which only allows specific MAC addresses on a port. There's 802.1x which can allow port access based on authentication.

But I don't know of anything that restricts access based on whether the IP address was defined by a DHCP server.
0
 
RajeevSrikantAuthor Commented:
Thank you for your reply.
I am not looking for port security or 802.1x.
I will be using a solution where any PC getting connected to the network will be authenticated based on the MAC address when it generated the DHCP request to the DHCP server. The DHCP server will check the MAC address of the requesting PC in its database. If it matches then it gives the IP Address or else it denys giving the IP Address.
This soltion will work for PCs who reqests DCHP IP address.
But this soltuion will not work for PC using Static IPs.
So I am looking for similar soution for PC using static IPs.



0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now