Wednesday, July 4, 2018

DHCP snooping blocked no legitimate requests

Hi All

Tried implementing DHCP snooping on a stack of Cisco SG550 switches today and it caused issues.

Basically we have two SG550’s in a stack, they are layer 3 and the DHCP server is also connected to this stack.

Set the port going to DHCP as trusted and everything else as untrusted. When I enabled snooping on a VLAN (only did one to test) and all was fine for a while, I started to see the binding database populate then eventually random people (about half the clients) started failing to get a DHCP address.

Anyone have any experience as to why. I thought that if I had set the DHCP server port to trusted it would be fine.

TIA Ben



No comments:

Post a Comment