Cisco 350 Series Administration Manual page 500
Managed switches
Hide thumbs
Also See for 350 Series:
- Hardware installation manual (96 pages) ,
- Quick start manual (61 pages) ,
- Manual (10 pages)
Table of Contents
Advertisement
Security
IP Source Guard
STEP 1
STEP 2
STEP 3
STEP 4
STEP 5
STEP 6
STEP 1
STEP 2
STEP 3
Cisco 350, 350X and 550X Series Managed Switches, Firmware Release 2.4, ver 0.4
IP Source Guard Work Flow
To configure IP Source Guard:
Enable (DHCP Snooping)
Define the VLANs on which DHCP Snooping is enabled in the (DHCP Snooping)
Settings
page.
Configure interfaces as trusted or untrusted in the (DHCP Snooping)
Enable IP Source Guard in the (IP Source Guard)
Enable IP Source Guard on the untrusted interfaces as required in the (IP Source Guard)
Interface Settings
page.
View entries to the Binding database in the (IP Source Guard)
Properties
To enable IP Source Guard globally:
Click Security > IP Source Guard > Properties.
Select Enable to enable IP Source Guard globally.
Click Apply to enable IP Source Guard.
Interface Settings
If IP Source Guard is enabled on an untrusted port/LAG, DHCP packets, allowed by DHCP
Snooping, are transmitted. If source IP address filtering is enabled, packet transmission is
permitted as follows:
•
IPv4 traffic — Only IPv4 traffic with a source IP address that is associated with the
specific port is permitted.
•
Non IPv4 traffic — All non-IPv4 traffic is permitted.
See
Interactions with Other Features
interfaces.
Properties
page.
Properties
for more information about enabling IP Source Guard on
Interface
Interface Settings
page.
Binding Database
page.
17
page.
357
Hide quick links:
Advertisement
Table of Contents
