Configure DHCP Snooping on Cisco IOS

DHCP snooping allows you to create a white-list of interfaces for which trusted dhcp servers are connected. All dhcp specific traffic which passes through "untrusted" interfaces will be dropped. This helps guard against rogue dhcp servers.

akonkol
February 16, 2012


conf t

!!!enables dhcp snooping!!!
ip dhcp snooping

!!!the vlan you want to enable dhcp snooping on!!!
ip dhcp snooping vlan %{vlan_id}%

!!!this should be the port that a trusted dhcp server is connected to!!!
interface %{interface_name}%
   ip dhcp snooping trust
   end
copy run start