C
HAPTER
25
| General Security Measures
DHCP Snooping
– 667 –
â—† When an untrusted port is changed to a trusted port, all the dynamic
DHCP snooping bindings associated with this port are removed.
◆ Additional considerations when the switch itself is a DHCP client – The
port(s) through which it submits a client request to the DHCP server
must be configured as trusted.
EXAMPLE
This example sets port 5 to untrusted.
Console(config)#interface ethernet 1/5
Console(config-if)#no ip dhcp snooping trust
Console(config-if)#
RELATED COMMANDS
ip dhcp snooping (661)
ip dhcp snooping vlan (665)
clear ip dhcp
snooping database
flash
This command removes all dynamically learned snooping entries from flash
memory.
COMMAND MODE
Privileged Exec
EXAMPLE
Console(config)#ip dhcp snooping database flash
Console(config)#
To Next Page
Loading...
Need help?
General