Secure DHCP Server on switches with Nebula
Hello,
I'm deploying some switches on the field, all of them connected with Nebula so remotely managed.
I do not want that if someone plugs a router, in a RJ45 port of a switch
(e.g. SwitchABC), this could modify the DHCP server of the SwitchABC
creating chaos inside its peripherals.
I saw the option DHCP Server Guard (NCC - Switch - Configure - Switch settings) that, when enabled, seems to lock (with the icon of a closed lock) the DHCP server in status area in NCC - Switch - Monitor - Switch - NameOfTheSwitch
The question is how to secure 2-3 different DHCP servers instead of only one.
I want to enable the possibility to let people move the switch from one site to another (of the same Company) and reconnect it always working.
Different sites means different network leases.
So how can I tell SwitchABC to accept DHCP management from:
192.168.1.1
192.168.2.1
192.168.3.1
IPs of firewalls that I have linked to manage those different sites' networks?
Thanks a lot.
0
All Replies
-
Hi @GiuseppeR,
You could add some ACLs to secure 2-3 different DHCP servers instead of only one.
This FAQ shows you how to configure the ACL when there's only one trusted DHCP server, you could add more rules to achieve your requirement.
Hope it helps.Melen0
Categories
- 8.1K All Categories
- 1.6K Nebula
- 60 Nebula Ideas
- 54 Nebula Status and Incidents
- 4.4K Security
- 224 Security Ideas
- 963 Switch
- 45 Switch Ideas
- 868 WirelessLAN
- 20 WLAN Ideas
- 5.2K Consumer Product
- 139 Service & License
- 268 News and Release
- 53 Security Advisories
- 12 Education Center
- 573 FAQ
- 273 Nebula FAQ
- 132 Security FAQ
- 73 Switch FAQ
- 72 WirelessLAN FAQ
- 7 Consumer Product FAQ
- Documents
- 34 Nebula Monthly Express
- 71 About Community
- 44 Security Highlight