Table 404: Components of the Port Security Topology
Properties
Switch hardware
VLAN name and ID
VLAN subnets
Interfaces in
employee-vlan
Interface for DHCP server
Copyright © 2010, Juniper Networks, Inc.
Figure 77: Network Topology for Basic Port Security
The components of the topology for this example are shown in Table 404 on page 3085.
Settings
One EX3200-24P, 24 ports (8 PoE ports)
employee-vlan
192.0.2.16/28
192.0.2.17
192.0.2.31
ge-0/0/1
ge-0/0/8
In this example, the switch has already been configured as follows:
Secure port access is activated on the switch.
DHCP snooping is enabled on the VLAN
The interface (port) where the rogue DHCP server has connected to the switch is
currently trusted.
Chapter 100: Examples: Port Security Configuration
, tag
20
through
192.0.2.30
is the subnet's broadcast address
,
,
,
ge-0/0/2
ge-0/0/3
ge-0/0/8
.
employee-vlan
3085