Solved

DHCP snooping, Arp inspect

Posted on 2011-09-15
2
479 Views
Last Modified: 2012-05-12
I have a L2 LAN stack, 3750's.

If I add the following in this order:

Switch(config)# ip dhcp snooping
Switch(config)# ip dhcp snooping vlan 10
Switch(config)# ip arp inspection vlan 10

Port-Channel Trunk
Switch(config-if)# ip dhcp snooping trust
Switch(config-if)# ip arp inspection trust

int gi4/0/2
Switch(config-if)# ip dhcp snooping trust
Switch(config-if)# ip arp inspection trust

Is this safe to do on production device during day.




0
Comment
Question by:s_coad5
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 26

Accepted Solution

by:
Soulja earned 500 total points
ID: 36545609
Well considering once you enable dhcp snooping all the ports are untrusted until you trust some of the ports. Otherwise, while I wouldn't recommend entering it during the day, it don't see why it would disrupt anything. The risk is yours to take. I would wait till off hours for any change though. Sometimes things can unexpectedly happen that you don't expect. Better to be safe than sorry.
0
 

Author Closing Comment

by:s_coad5
ID: 36545740
awesome!, thanks
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Raid 6 or Raid 10 configuration 10 126
Low ampere 10 116
Spam Attack - Exchange 2010 14 39
Firewall support--by the month? 10 61
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question