Internet Security Issues and Prevention (DHCP Snooping)

Internet has various Security issues like

• DNS attack- It involves no authentication as the original website has been attacked.
• Phising - It involves in security breach of entering login information on fake websites.
• Spams - It includes all fake emails and messages, mostly sent through botnets of infected computers.

Protecting Layer 2-

• Attacks on Switch- DHCP Snooping is the common attack where DHCP Servers are attacked. It is the man in the middle attack which migrates the traffic going to DHCP Server, by attacking it.
• This can be prevented by protecting switch ports by not allowing offers & acknowledgement on untrusted ports.

SW1(config)# ip dhcp snooping vlan3

SW1(config)# ip dhcp snooping

SW1(config)# int g 0/1

SW1(config)# ip dhcp snooping trust

IN DHCP Snooping, it doesnt trust all access ports, we have to specify port as trusted ones.