Ethernet Switching
Ethernet Switching

Blocking rogue DHCP servers

08.10.17   |  
‎08-10-2017 08:27 AM

In order to block rogue DHCP servers on my access switches will the following command be sufficent or would i need to add more ?

 set ethernet-switching-options secure-access-port interface all no-dhcp-trusted

1 REPLY
Ethernet Switching

Re: Blocking rogue DHCP servers

[ Edited ]
08.13.17   |  
‎08-13-2017 03:18 AM

Yes, all you need to block dhcp server on the port is to have the no-dhcp-trusted applied.

 

https://www.juniper.net/documentation/en_US/junos/topics/example/port-security-protect-from-rogue-dh...

Steve Puluka BSEET
Juniper Ambassador
Senior IP Engineer - DQE Communications Pittsburgh, PA (Metro Ethernet & ISP)
JNCIA-Junos JNCIS-SEC JNCIP-SEC JNCSP-SEC
JNCIS-FWV
JNCDA JNCDS-DC JNCDS-SEC
JNCIS-SP
ACE PanOS 6 ACE PanOS 7
http://puluka.com/home