- Total 1 Answer
- 1564
DHCP Is Dynamic Host Configuration protocol It Will Provide Dynamic Address To Network Devices
DHCP Attacks Can Be Classfied Into Several Types
DHCP Snooping : Create Fake DHCP Server And Provide Ip Address To Network Devices Even Real DHCP Server Not Able Respond On These Time There Are SO Many Tools Create DHCP Fake Server In Linux Pentest Os We Can Create Fake DHCP Server With Few Commands And The Response (Working Functionality OF DHCP Server Very High (Very Fast To Offer DHCP Offer Packets)
So We Can Prevent These Type Of Attacks BY Enable Security Mechanism On Switch Is Called DHCP Snoping
COnfiguration
Conf t
ip dhcp snooping
ip dhcp snooping verfiy mac address (It Will Check mac address whether its fake or original
on interface configuration
ip dhcp snooping trust
Configures the interface as a trusted interface for DHCP snooping. The no option configures the port as an untrusted interface.
Follow The Link For Configuration
http://www.cisco.com/c/en/us/td/docs/switches/datacenter/sw/4_1/nx-os/security/configuration/guide/sec_nx-os-cfg/sec_dhcpsnoop.html
- How can you guarantee a job for students who has no experience in Networking field?
- How to configure VPN between Cisco Router and ASA Firewall?
- How to configure RIPV2 with no auto summary?
- How to configure PAT (Port Address Translation)?
- How to configure Default Routing on Cisco Routers?
- What is the scope of CCNA course in India?
- What is scope of CCIE?
- How to remember 7 layers of OSI Model?
- How much salary can we get after doing CCNA course in Delhi Gurgaon?
- How many CCIE’s are there worldwide?
- Is it possible to pass CCIE Certification in 1st attempt?