Need to edge out the competition for your dream job? Train for certifications today.
Experts Exchange Solution brought to you by
"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.
When enabling DHCP snooping on an EX Series switch, the following
guidelines should be kept in mind:
1. All access ports clients are typically expected to be connected to
are untrusted, and trunk ports, which the network infrastructure is
facing, are trusted by default.
2. On untrusted ports, only DHCP client-type messages such as
discoveries/requests are allowed; all other DHCP packets are
dropped. The switch also builds a DHCP snooping database on
these ports where MAC addresses, port locations, VLAN, and
IP-binding from DHCP exchanges between the client and server
are stored in the database.
3. If you move a network device from one VLAN to another, where
typically the device has to acquire a new IP address, its entry in the
DHCP snooping binding database including the VLAN ID is
It is important to remember that DAI is entirely dependent on DHCP
snooping, specifically the DHCP snooping binding database. If there is
no corresponding DHCP snooping entry in the binding database, any
ARP packets received on the untrusted port are dropped.
Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.
Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.
From novice to tech pro — start learning today.
Premium members can enroll in this course at no extra cost.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Please enter a first name
Please enter a last name
Must be at least 4 characters long.
Join and Comment