Secure DHCP Server on switches with Nebula
Options
Hello,
I'm deploying some switches on the field, all of them connected with Nebula so remotely managed.
I do not want that if someone plugs a router, in a RJ45 port of a switch
(e.g. SwitchABC), this could modify the DHCP server of the SwitchABC
creating chaos inside its peripherals.
I saw the option DHCP Server Guard (NCC - Switch - Configure - Switch settings) that, when enabled, seems to lock (with the icon of a closed lock) the DHCP server in status area in NCC - Switch - Monitor - Switch - NameOfTheSwitch
The question is how to secure 2-3 different DHCP servers instead of only one.
I want to enable the possibility to let people move the switch from one site to another (of the same Company) and reconnect it always working.
Different sites means different network leases.
So how can I tell SwitchABC to accept DHCP management from:
192.168.1.1
192.168.2.1
192.168.3.1
IPs of firewalls that I have linked to manage those different sites' networks?
Thanks a lot.
0
All Replies
-
Hi @GiuseppeR,
You could add some ACLs to secure 2-3 different DHCP servers instead of only one.
This FAQ shows you how to configure the ACL when there's only one trusted DHCP server, you could add more rules to achieve your requirement.
Hope it helps.Zyxel Melen
0
Categories
- All Categories
- 390 Beta Program
- 2.1K Nebula
- 116 Nebula Ideas
- 78 Nebula Status and Incidents
- 5.1K Security
- 51 USG FLEX H Series
- 247 Security Ideas
- 1.3K Switch
- 69 Switch Ideas
- 914 WirelessLAN
- 34 WLAN Ideas
- 5.9K Consumer Product
- 211 Service & License
- 332 News and Release
- 71 Security Advisories
- 21 Education Center
- 5 [Campaign] Zyxel Network Detective
- 1.9K FAQ
- 879 Nebula FAQ
- 414 Security FAQ
- 220 Switch FAQ
- 194 WirelessLAN FAQ
- 46 Consumer Product FAQ
- 137 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 72 About Community
- 61 Security Highlight