Secure DHCP Server on switches with Nebula
Hello,
I'm deploying some switches on the field, all of them connected with Nebula so remotely managed.
I do not want that if someone plugs a router, in a RJ45 port of a switch
(e.g. SwitchABC), this could modify the DHCP server of the SwitchABC
creating chaos inside its peripherals.
I saw the option DHCP Server Guard (NCC - Switch - Configure - Switch settings) that, when enabled, seems to lock (with the icon of a closed lock) the DHCP server in status area in NCC - Switch - Monitor - Switch - NameOfTheSwitch
The question is how to secure 2-3 different DHCP servers instead of only one.
I want to enable the possibility to let people move the switch from one site to another (of the same Company) and reconnect it always working.
Different sites means different network leases.
So how can I tell SwitchABC to accept DHCP management from:
192.168.1.1
192.168.2.1
192.168.3.1
IPs of firewalls that I have linked to manage those different sites' networks?
Thanks a lot.
0
All Replies
-
Hi @GiuseppeR,
You could add some ACLs to secure 2-3 different DHCP servers instead of only one.
This FAQ shows you how to configure the ACL when there's only one trusted DHCP server, you could add more rules to achieve your requirement.
Hope it helps.0
Categories
- All Categories
- 184 Beta Program
- 1.7K Nebula
- 89 Nebula Ideas
- 63 Nebula Status and Incidents
- 4.7K Security
- 236 Security Ideas
- 1.1K Switch
- 51 Switch Ideas
- 914 WirelessLAN
- 27 WLAN Ideas
- 5.4K Consumer Product
- 174 Service & License
- 295 News and Release
- 65 Security Advisories
- 14 Education Center
- 983 FAQ
- 426 Nebula FAQ
- 255 Security FAQ
- 100 Switch FAQ
- 115 WirelessLAN FAQ
- 21 Consumer Product FAQ
- 66 Service & License FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 68 About Community
- 52 Security Highlight