Skip to content

Site Settings🔗

To view Site Settings go to Topology -> Site Settings

alt text

Enable DHCP Snooping🔗

This feature enables DHCP Snooping.

DHCP Snooping is a security feature that helps protect against rogue DHCP servers, and along with the IP Source Guard capability, it protects against man-in-the-middle attacks or IP address conflicts. Rogue DHCP servers can assign incorrect IP addresses to devices, potentially leading to network downtime or security vulnerabilities.

The Enable DHCP Snooping feature is used to learn IP addresses offered to clients on ‘Untrusted Ports’. DHCP Snooping protects your network by monitoring DHCP traffic and associating MAC addresses with assigned IP addresses on untrusted ports. As a side effect, only ports designated as trusted are allowed to forward DHCP OFFER messages. This is independent of the Verity Service feature, which blocks DHCP Servers.

When the system is in a secure ‘lock down’ mode, ‘IP source guard’ is enabled. All traffic from client devices that do not match the learned IP address and MAC address bindings is blocked. IP addresses can also be set statically.

Aggressive Reporting🔗

This setting decreases the interval (and increases the polling rate) of switch controllers to 5 seconds.

CRC Failure Threshold🔗

The maximum number of CRC errors per second that will trigger automatic disabling of the port if it's part of a Link Aggregation Group (LAG).