RE: DHCP server security

From: Charles Church (cchurch@wamnet.com)
Date: Sat Apr 26 2003 - 00:48:11 GMT-3

• Next message: kasturi cisco: "Re: Router ISIS"
• Previous message: folivore: "Dialer load-threshold question"
• Maybe in reply to: aansar@sscomp.com.sg: "DHCP server security"
• Next in thread: Charles Church: "RE: DHCP server security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Check out:
http://www.cisco.com/en/US/about/ac123/ac114/ac173/ac172/about_cisco_packet_
department09186a00800a33f4.html

I know on the newer switches (2950s, 3550s, 6500) you can use VLAN and port
ACLs to prevent this.

Chuck Church
CCIE #8776, MCNE, MCSE
Wam!Net Government Services
13665 Dulles Technology Dr. Ste 250
Herndon, VA 20171
Office: 703-480-2569
Cell: 585-233-2706
cchurch@wamnet.com

-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
aansar@sscomp.com.sg
Sent: Friday, April 25, 2003 9:39 PM
To: ccielab@groupstudy.com; nobody@groupstudy.com
Subject: DHCP server security

Dear All
How can i restrict the clients to obtain address from only one dhcp server
(designated server) . i am using cat5509.
If someone accidentally bring up the duplicate DHCP server in the network
the clients shouldn't get the address from it , most of the time it happens
creating the big problem..
pls help ..

• Next message: kasturi cisco: "Re: Router ISIS"
• Previous message: folivore: "Dialer load-threshold question"
• Maybe in reply to: aansar@sscomp.com.sg: "DHCP server security"
• Next in thread: Charles Church: "RE: DHCP server security"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu May 01 2003 - 13:36:07 GMT-3