From the course: Cisco CCNP SCOR Security (350-701) Cert Prep: 1 Security Concepts and Network Security

Unlock this course with a free trial

Join today to access over 22,600 courses taught by industry experts.

Dynamic ARP inspection

Dynamic ARP inspection

From the course: Cisco CCNP SCOR Security (350-701) Cert Prep: 1 Security Concepts and Network Security

Start my 1-month free trial Buy for my team

Dynamic ARP inspection

- [Instructor] Now that we have DHCP Snooping enabled, let's look at dynamic ARP inspection or DAI. We're working with the same typology as we did in our DHCP Snooping video, but we've introduced another host for the network as you can see in the topology. DAI is used to validate address resolution protocol packets in a network. It allows us to intercept log and discard our packets that have invalid Mac to IP address bindings as defined by the DHCP Snooping Binding Database. So here on the switch, if I say show ip dhcp snooping binding we can see results from our DHCP snooping video we have a single Mac to IP address binding in our DHCP Snooping Binding Database, and that's where DHCP client 1. Enabling DAI is going to allow us to protect against things like men in the middle attacks and ARP cache poisoning. Since we built this DHCP Snooping Database without the second host connected that host will be considered as having invalid ARP requests when we try to obtain a DHCP address. If…

Contents