Q

How do I block DHCP requests and replies from different segments of my network?

I have a wide area network with five T1 feeds coming in from different entry points. I have all manageable switches and would like to block DHCP requests and replies from different segments of my network. I blocked the DHCP server's mac address from the switch using the Unicast filter, but it still blows right through. Any ideas on how to block just DHCP requests and replies to force the clients to use the closer IP sources?
DHCP request are broadcast, so blocking DHCP's mac address will not help. Instead you need to block port 67 for UDP so that DHCP requests are blocked. Also use IP helper address <server ip address> to force the clients to the nearest server.
This was first published in August 2004

Dig deeper on Network Design

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

SearchSDN

SearchEnterpriseWAN

SearchUnifiedCommunications

SearchMobileComputing

SearchDataCenter

SearchITChannel

Close