Dhcp snooping, Dhcp snooping overview – Dell PowerEdge VRTX User Manual
Page 385
385
FILE LOCATION: C:\Users\gina\Desktop\Checkout_new\Dell Plasma\User
Guide\Plasma_UGSwitching_DHCP.fm
D E L L CO N F I D E N T I A L – P R E L I MI N A RY 4/ 1 8 /1 3 - F O R PR O O F O N LY
17
DHCP Snooping
This section describes DHCP snooping.
It contains the following topics:
•
DHCP Snooping Overview
•
•
•
•
DHCP Snooping Overview
DHCP snooping expands network security by providing layer security
between untrusted interfaces and DHCP servers. By enabling DHCP
snooping, network administrators can differentiate between trusted interfaces
connected to end-users or DHCP Servers, and untrusted interfaces located
beyond the network firewall.
DHCP snooping filters untrusted messages, and stores these messages in a
database. Interfaces are untrusted if the packet is received from an interface
outside the network, or from an interface beyond the network firewall.
Trusted interfaces receive packets only from within the network or the
network firewall.
The DHCP Snooping Binding database contains the untrusted interfaces’
MAC address, IP address, Lease Time, VLAN ID, and interface information.
Table 17-1 describes how DHCP packets are handled when DHCP snooping
is enabled on an interface.