Regarding Blocking DHCP broadcasting 1

[9826024006]

Hi All,

I need a help. I want to block DHCP brodcast in my network so that only one DHCP server is able to provide DHCP IPs to client none of DHCP server other than this DHCP server shud b able to provide DHCP to clients..I hv 2950 & 3550 Switches in my network....

Fast reply wud be appericiated....

Thanks
NK

 

[vipergg]

you need to provide more info , like is everyone on the same subnet , or are you talking multiple subnets ?

 

[ADB100]

DHCP Snooping will achieve what you want here. What switches do you have - you will need at least 2950's to support DHCP snooping. You enable it globally per-VLAN and then configure 'trust' on your DHCP server interface and on your uplinks:

ip dhcp snooping vlan 10
no ip dhcp snooping information option
ip dhcp snooping
!
interface FastEthernet0/1
description DHCP Server Connection
ip dhcp snooping trust
!
interface FastEthernet0/1
description User Access Port
ip dhcp snooping limit rate 100
!
interface GigabitEthernet0/1
description 802.1q uplink to Distribution
ip dhcp snooping trust
!

http://www.cisco.com/en/US/products...figuration_guide_chapter09186a008062ceda.html

HTH

Andy

 

[DanInRaleigh]

..just a note i gave a star for this post and for Andy's reply.
...i ran into this problem (actually caused the problem) a year or so ago. never had time to research avoidance scenarious.
..thanx for the learning tip!!

CCNP,CCSP,MCSE,Sec+,Net+,A+...