Contents
18
Cisco 7600 Series Router Cisco IOS Software Configuration Guide, Release 12.2SX
OL-4266-08
DHCP Snooping Configuration Restrictions and Guidelines 7
DHCP Snooping Configuration Restrictions 7
DHCP Snooping Configuration Guidelines 7
Minimum DHCP Snooping Configuration 8
Configuring DHCP Snooping 9
Enabling DHCP Snooping Globally 9
Enabling DHCP Option-82 Data Insertion 10
Enabling the DHCP Option-82 on Untrusted Port Feature 10
Enabling DHCP Snooping MAC Address Verification 11
Enabling DHCP Snooping on VLANs 12
Configuring the DHCP Trust State on Layer 2 LAN Interfaces 13
Configuring DHCP Snooping Rate Limiting on Layer 2 LAN Interfaces 14
Configuring the DHCP Snooping Database Agent 14
Configuration Examples for the Database Agent 15
Displaying a Binding Table 18
Configuring Dynamic ARP Inspection 1
Understanding DAI 1
Understanding ARP 2
Understanding ARP Spoofing Attacks 2
Understanding DAI and ARP Spoofing Attacks 2
Interface Trust States and Network Security 3
Rate Limiting of ARP Packets 4
Relative Priority of ARP ACLs and DHCP Snooping Entries 4
Logging of Dropped Packets 5
Default DAI Configuration 5
DAI Configuration Guidelines and Restrictions 6
Configuring DAI 6
Enabling DAI on VLANs 7
Configuring the DAI Interface Trust State 8
Applying ARP ACLs for DAI Filtering 8
Configuring ARP Packet Rate Limiting 9
Enabling DAI Error-Disabled Recovery 11
Enabling Additional Validation 11
Configuring DAI Logging 13
Displaying DAI Information 15
DAI Configuration Samples 16
To Next Page
Loading...
Need help?
General
