Thameem,
DHCP snooping must be enabled for DAI to work, unless you have configured
the "static" keyword, in which case you don't need the Dhcp snooping, and
you are going to rely on the ARP access-list.
On Tue, Mar 23, 2010 at 12:01 PM, Thameem Maranveetil Parambath <
security.goodie_at_gmail.com> wrote:
> DAI.. is the one that protects from Maninthemiddle attacks.. Basically what
> it does is it depends on dhcp snooping database or arp access list for the
> correct arp request or reply..
>
> dhcp snooping Must be enabled for DAI to work...
>
> regards
> Thameem
>
>
>
>
> On Tue, Mar 23, 2010 at 10:36 PM, olugbenga lasisi <logpoet_at_gmail.com
> >wrote:
>
> > Experts,
> >
> > How does Cisco switches protect againt ARP poisoning?
> >
> > Gbenga.
> >
> >
> > Blogs and organic groups at http://www.ccie.net
> >
> > _______________________________________________________________________
> > Subscription information may be found at:
> > http://www.groupstudy.com/list/CCIELab.html
>
>
> Blogs and organic groups at http://www.ccie.net
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
>
>
>
>
>
>
>
-- Narbik Kocharians CCSI#30832, CCIE# 12410 (R&S, SP, Security) www.MicronicsTraining.com Sr. Technical Instructor YES! We take Cisco Learning Credits! Training And Remote Racks available Blogs and organic groups at http://www.ccie.netReceived on Tue Mar 23 2010 - 12:10:17 ART
This archive was generated by hypermail 2.2.0 : Thu Apr 01 2010 - 07:26:35 ART