NETGEAR GS728TS - Services - DHCP Snooping

NETGEAR GS728TS

329 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

92

GS728TS, GS728TPS, GS752TS, and GS752TPS Gigabit Smart Switches

Services — DHCP Snooping

DHCP Snooping is a useful feature that provides security by filtering untrusted DHCP

messages and by building and maintaining a DHCP snooping binding table. An untrusted

message is a message that is received from outside the network or firewall and that can

cause traffic attacks within your network. A known attack is when an unauthorized DHCP

server responds to a client that is requesting an IP address. The server configures the

gateway for the client to be equal to the IP address of the server. At that point, the client

sends all of its IP traffic destined to other networks to the unauthorized machine. This gives

the attacker the possibility of snooping traffic for passwords or employing a

man-in-the-middle attack.

The DHCP snooping binding table contains the MAC address, IP address, lease time,

binding type, VLAN number, and interface information that corresponds to the local untrusted

interfaces of a switch. An untrusted interface is an interface that is configured to receive

messages from outside the network or firewall. A trusted interface is an interface that is

configured to receive only messages from within the network.

DHCP snooping acts like a firewall between untrusted hosts and DHCP servers. It also

provides way to differentiate between untrusted interfaces connected to the end-user and

trusted interfaces connected to the DHCP server or another switch.

From the Services link, you can access the following pages:

• DHCP Snooping Global Configuration on page 93

• Interface Configuration on page 94

• Binding Configuration on page 95

• Persistent Configuration on page 97

• Statistics on page 98

Network Policies

Application Type Specifies the media application type associated with the policy advertised by

the remote device.

VLAN ID Specifies the VLAN ID associated with the policy.

VLAN Type Specifies whether the VLAN associated with the policy is tagged or untagged.

User Priority Specifies the priority associated with the policy.

DSCP Specifies the DSCP associated with a particular policy type.

LLDP Unknown TLVs

Type Displays the unknown TLV type field.

Value Displays the unknown TLV value field.

Field Description

Table of Contents

Other manuals for NETGEAR GS728TS

Specifications3 pages

Hardware Installation Guide42 pages

Related product manuals

Preview: NETGEAR GS728TP

NETGEAR GS728TP

Preview: NETGEAR GS728TPv2

NETGEAR GS728TPv2

Preview: NETGEAR ProSafe GS728TP

NETGEAR ProSafe GS728TP

Preview: NETGEAR GS724TPv2

NETGEAR GS724TPv2

Preview: NETGEAR GS724T GS724T GS724T

NETGEAR GS724T GS724T GS724T

Preview: GS724Tv3 - ProSafe Gigabit Managed Switch

GS724Tv3 - ProSafe Gigabit Managed Switch

Preview: GS724TS - ProSafe 24 Port Gigabit Stackable Smart Switch

GS724TS - ProSafe 24 Port Gigabit Stackable Smart Switch

Preview: NETGEAR GS748T

Preview: NETGEAR GS752TPv2

NETGEAR GS752TPv2

NETGEAR Prosafe GS716T

Preview: NETGEAR ProSafe GS748T

NETGEAR ProSafe GS748T

NETGEAR ProSafe GS716T-200