Filter
Top Products
GS700TR Smart Switch Software Administration Manual
Configuring System Information 2-41
v1.0, May, 2008
2. Click Refresh to refresh the page with the most current data from the switch.
DHCP Filtering
DHCP Filtering is a useful feature that can be employed as a security measure against
unauthorized DHCP servers. A known attack is when an unauthorized DHCP server responds to a
client that is requesting an IP address. The server configures the gateway for the client to be equal
to the IP address of the server. At that point, the client sends all of its IP traffic destined to other
networks to the unauthorized machine. This gives the attacker the possibility of snooping traffic
for passwords or employing a ‘man-in-the-middle’ attack. DHCP Filtering works by allowing the
administrator to configure each port as either a trusted port or an untrusted port. The port that has
the authorized DHCP server should be configured as a trusted port. Any DHCP responses received
on a trusted port are forwarded. All other ports should be configured as untrusted. Any DHCP (or
BootP) responses received are discarded.
Configuration
Use the DHCP Filtering Configuration page to enable or disable the DHCP Filtering feature on the
switch.
To access the DHCP Filter Configuration page:
1. Click System > Services > DHCP Filtering > Configuration in the navigation tree.
2. In the Admin Mode field, select Enable or Disable to turn the DHCP Filtering feature on or
off, and then click Apply to apply the change to the system. Configuration changes take effect
immediately.
3. Click Refresh to refresh the page with the most current data from the switch.
Figure 2-26