Solved

DHCP Snooping

Posted on 2008-06-21
4
672 Views
Last Modified: 2010-08-30
I have cisco 3560 as my access layer switches.All my PCs connecting to the network will be getting IP Address from the DHCP server.I dont want any PC or Laptop to connect to my network via static IP Address, only PCs asking for DHCP request will be allowed to have network access..Let me know how
DHCP snooping configuration can prevent the PCs with static IP Address .
0
Comment
Question by:RajeevSrikant
  • 2
  • 2
4 Comments
 
LVL 50

Expert Comment

by:Don Johnston
ID: 21837288
No. The purpose of DHCP Snooping is to prevent someone an unauthorized DHCP server from being connected to the network.
0
 

Author Comment

by:RajeevSrikant
ID: 21837339
So is there any way to prevent network access for PCs using static IP address to get connect to the network.
0
 
LVL 50

Expert Comment

by:Don Johnston
ID: 21837345
Not that I'm aware of.

There's MAC address port security which only allows specific MAC addresses on a port. There's 802.1x which can allow port access based on authentication.

But I don't know of anything that restricts access based on whether the IP address was defined by a DHCP server.
0
 

Accepted Solution

by:
RajeevSrikant earned 0 total points
ID: 21837370
Thank you for your reply.
I am not looking for port security or 802.1x.
I will be using a solution where any PC getting connected to the network will be authenticated based on the MAC address when it generated the DHCP request to the DHCP server. The DHCP server will check the MAC address of the requesting PC in its database. If it matches then it gives the IP Address or else it denys giving the IP Address.
This soltion will work for PCs who reqests DCHP IP address.
But this soltuion will not work for PC using Static IPs.
So I am looking for similar soution for PC using static IPs.



0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Cisco 2960 PACL 9 95
connect poe switch to non poe switch 3 45
Layer 2 versus layer 3 10 58
What is mean " No service tcp-small-servers , No service udp-small-servers " ? 3 39
I see many questions here on Experts Exchange regarding switch port configurations and trunks. This article is meant for beginners in the subject to help to get basic knowledge about Virtual Local Area Network (VLAN (http://en.wikipedia.org/wiki/Vir…
Configuring network clients can be a chore, especially if there are a large number of them or a lot of itinerant users.  DHCP dynamically manages this process, much to the relief of users and administrators alike!
This Micro Tutorial will give you a basic overview how to record your screen with Microsoft Expression Encoder. This program is still free and open for the public to download. This will be demonstrated using Microsoft Expression Encoder 4.
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

864 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

25 Experts available now in Live!

Get 1:1 Help Now