Got it
Huawei Enterprise Support Community
Community Forums Routing & Switching
Locate the DHCP bogus ser...

Locate the DHCP bogus server

Created: Apr 29, 2020 11:39:11Latest reply: Apr 29, 2020 13:30:19 322 3 0 0 0
  Rewarded HiCoins: 0 (problem resolved)
View the author 1#

Hi,

We are facing a DHCP bogus server problem. Though we can fail the bogus server, but for the further consideration, we are planning to find out it.

Please suggest how to find out the physical location.

BTW, DHCP relay is configured between the DHCP clients and DHCP server due to the physical seperation.

Thanks.


Like (0) Dislike (0) Favorite(0) Share Report
Previous: How Can I Delete the Device Configuration?
Next: Why Is Port Isolation Configured?
Featured Answers

Recommended answer

(0) (0)
chenhui
Admin Created Apr 29, 2020 13:05:28

Hi @ViktorJr
You can follow the steps below to locate the interface which the bogus server connects to:
1. Find out the bogus server IP when get the assigned IP from the bogus server.
2. Exame the ARP table to find out the interface or equipment which learns the bogus srever.
Repeat step 2 to find out the equipment which bogus server directly connects to, and find out the interface on the equipment to locate the bogus server physical position.
View more
  • x
  • convention:
All Answers
(0) (0)
2#
chenhui
chenhui Admin Created Apr 29, 2020 11:40:07

Hi,
Kindly wait a second, we are processing on your problem already.
View more
  • x
  • convention:
(0) (0)
3#
chenhui
chenhui Admin Created Apr 29, 2020 13:05:28

Hi @ViktorJr
You can follow the steps below to locate the interface which the bogus server connects to:
1. Find out the bogus server IP when get the assigned IP from the bogus server.
2. Exame the ARP table to find out the interface or equipment which learns the bogus srever.
Repeat step 2 to find out the equipment which bogus server directly connects to, and find out the interface on the equipment to locate the bogus server physical position.
View more
  • x
  • convention:
(0) (0)
4#
Peterhof
Peterhof Author Created Apr 29, 2020 13:30:19

Hello!
You can enable DHCP snooping to prevent such situations for the future:

Commands that enable it at the switch:
dhcp enable
dhcp snooping enable

After that you need to configure trusted interface at witch DHCP server packets will not be droped:
dhcp snooping trusted

After that no bogus DHCP server can work at that switch. It helps me.
You can also fins the alarms that are generated when bogus switch is start to send DHCP packets. I use eSight and it show them for me. I think that something like display alarms active can help with it.
View more
  • x
  • convention:
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.